1 / 27

I will talk about...

Increased Security, while protecting Privacy ? True or False ? Christer Bergman, President and CEO, Precise Biometrics. I will talk about. Precise Biometrics (very brief) Biometrics..? Smart Card & Smart ID Card Fingerprint matching on card

ori-meadows
Télécharger la présentation

I will talk about...

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Increased Security, while protecting Privacy ?True or False ?Christer Bergman, President and CEO, Precise Biometrics

  2. I will talk about... • Precise Biometrics (very brief) • Biometrics..? • Smart Card & Smart ID Card • Fingerprint matching on card • ”Increased Security, while protecting Privacy? True or False?

  3. This is Precise Biometrics • World leading security solutions based on fingerprint • Holds world’s first patent within “Match-on-Card” • Founded in 1997 in Lund, Sweden • Offices in Lund (40), Stockholm (2) and Washington DC (6) • Listed on the Stockholm Stock Exchange O-list since 2000

  4. What we do We create fingerprint-based security solutions for companies, organizations, authorities and private individuals that replaces PIN:s, passwords and keys.

  5. Biometrics ....?

  6. Trends that fuel the need for biometrics • Market trends: • Globalization • Mobility and flexibility • Digitalization • Technology enablers: • Internet • Wireless • e-business and smart cards All driving a cumbersome growth of PIN-codes and passwords

  7. Problems • Concern that sensitive data is accessed by unauthorized users • e-business without trust – who’s at the other end of the Internet? • Passwords, PIN-codes, keys, etc are a hassle => security is often cheated, or upheld at high admin cost

  8. Solutions • Confidentiality – encryption • Authentication – digital certificates • Non-repudiation – digital signatures • Convenience + personal security – biometrics Digital identity management, smart cards and biometrics enables security and convenience by making the digital identity personal

  9. Why biometrics? • Uniquely linked to a person, who is present • Secure and convenient • “No more passwords” (or “Post-It” stickers…) • Convenient = it will be used • Cannot be borrowed, stolen or forgotten • Saves money • Less fraud • Less cost for password administration

  10. What is biometrics?

  11. Market share by technology

  12. What biometrics, and how ? • Surveillance vs. Access to a service • Identification vs. Authentication • 1-to-many vs. 1-to-1 • Enrollment & Verification • Fingerprint Image vs. Biometric Template • Traditional Feature (Minutia) Matching • More advanced pattern or hybrid matching • Match-on-Server, Match-on-PC or Match-on Card • Security or Privacy or Both ?!

  13. What is Smart Card ?

  14. Smart Cards - A small computer and a crytographic token • Contains and handles sensitive data • transactions / e-cash / identity / health profiles • secret codes and keys • biometric templates • Performs cryptographic computations for • authentication / digital signatures • confidentiality by encryption • key management protocols • biometric match-on-card

  15. Active Duty U.S. Navy Johnson, Jane Marie Social Security Number Date of Birth 742-76-0064 1969JAN09 Issue Date Expiration Date 1999SEP03 2003SEP01 Pay Grade Geneva Conv. Cat. LTCOL VI Rank A1 Geneva Conventions Identification Card DMDC Smart ID Card = Smart Card + ID Card

  16. Privacy or Security

  17. Factors affecting privacyin ID systems Very High High Privacy concerns Amount of data Low High Sensitivity of data

  18. Unique security solutions Something You Have + Something You Know + Something You Are Relative Security Level + + Something You Have + Something You Are + Biometric Something You Have + Something You Know + ID Card Something You Have Something You Know PIN, Password Solutions Key or Card

  19. Fingerprint matching on card

  20. Match-On-Card technology • Fingerprint matching on smart cards and SIM / WIM cards • Brings biometrics and PKI together • Make digital signatures and encryption of e-mails or documents more secure and convenient • Makes it possible to replace PIN:s with fingerprints and to store and match the fingerprint on a smart card instead of a less secure computer

  21. PKI with PIN-codes 4563 6437 Secure INTERNET PKI with Biometrics Secure INTERNET PKI & Fingerprint Match On Card

  22. Reference Storage Match-On-Card 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 UNSECURE 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 PC Hard Drive 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 Not Scalable Network Server 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 Smart Card Capture Enrollment Verification

  23. Match-On-Card Reference Storage 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 • Reference template is exposed during verification UNSECURE PC Hard Drive 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 • Best practices require template to be encrypted and signed • Secret shared by all workstations Not Scalable Network Server • Card independent • Sensor independent • Compatible with DoD Common Access Card • Available for Java Card and Multos 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 010100100110101010010 110101110101101010011 101111010100100100011 100101010001010100100 Smart Card Verification Matching to reference template

  24. Why Match-on-Card? • Scalability The matching is performed locally on the card – the system scalability doesn’t have any limit – the matching is fast and independent of open networks • Security Two factor authentication – demanding both a valid smart card, where fragments of your fingerprint are securely stored – and your fingerprint • Privacy The template never leaves the secure environment – it cannot be copied or stolen – the privacy issue is radically resolved

  25. How it works Match-on-Card™

  26. ! Privacy and Security

  27. Increased Security, while protecting Privacy ? True ! Thank you! christer.bergman@precisebiometrics.com

More Related