Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Biometric Match-on-Card solution

October 2013 Access Control & Identity Management, Products & Solutions

Card-based fraud continues to cost South African financial service providers millions of rands, due to card and PIN theft at ATMs, fraudulent online purchasing and basic identity misrepresentation with stolen cards at retailers.

As security becomes an ever-more critical business need, organisations have generally come to accept the necessity of using biometric data for this purpose. While far more secure than PIN numbers and passwords, which are all too often forgotten or compromised through sharing or written reminders, biometric data nonetheless has its own potential points of failure. Most notably, the need to send such data to an external server for verification opens the possibility that the data could be corrupted while in transition.

However, Bytes Technology Group (BTG) offers a biometric customer identity verification solution called Match-on-Card, which obviates the need to send the data to an external server. Instead, the Match-on-Card solution involves matching and storing a fingerprint biometric directly on a smart card, making this an even more secure form of fingerprint authentication.

“Obviously, it does mean that the smart card used requires a greater processing power and memory in order to run the algorithm to match the data, and to store the biometric. But this is more than made up for by the fact that the card makes the decision, rather than having to rely on a third party to confirm a match,” says Dave Crawshay-Hall, CTO of Brand New Technologies (BNTech), which was recently acquired by BTG.

“The trouble with standard biometric smart cards is that if a match is done on the PC and then a command is sent to the card to instruct it to perform a particular action, there is no way for the card to know that the fingerprint was actually matched. With Match-on-Card, the smart card physically does the match itself, thereby allowing it to decide internally what action to process, such as allowing access to private data.”

The technology allows access to the digital certificates on the card that can then be used for Windows log-on, digital signing, file and volume encryption, secure VPN access and other PKI applications, continues Crawshay-Hall.

He adds that the matching of fingerprints involves two stages, namely ‘feature extraction’ and ‘matching’. Feature extraction, he says, requires a lot of computing power, so this is still done on the PC, with only the actual matching taking place on the card. Despite this, he points out, for the card to accurately perform the match in an acceptable time frame, it still has to have a powerful processor with enough RAM.

“A critical element of a Match-on-Card solution is clearly high quality enrolment of the fingerprint itself, which is used to enrol fingerprints and create fingerprint templates which are stored in the smart card, and possibly elsewhere for back up.

“For this reason, BTG offers an end-to-end solution that includes the card, MOC card applet, customised card applet, fingerprint algorithms and fingerprint scanners. While the algorithms, fingerprint scanners and cards are supplied by third-party vendors, Bytes provides the consultation, integration, implementation and support.”

Nick Perkins, divisional director, identity management solutions at Bytes Systems Integration points out that by using a Match-on-Card solution, organisations are able to establish the physical presence of the cardholder using two-factor authentication, namely fingerprint and smart card. “This can be increased to three factor authentication by adding a PIN.”

Perkins indicates that this technology can be used for a multitude of private sector security issues, from simple customer identity verification before performing a transaction, to internally within an organisation to manage a business solution or ERP login and transaction approval control. It can also be used in retail point of sale terminals, he states, through integration where cashiers can login biometrically to till points and supervisors can approve voids/credits biometrically. This, in turn, eliminates password abuse and provides clear auditability of transactions.

“Moreover, the Match-on-Card solution is the end result of what should become a far more detailed customer take-on process. Organisations can leverage technologies provided by BTG to ensure an accurate and verified documentation and identity collation before issuing the card in the first place. This effectively introduces a two factor verification process for the financial services provider, ensuring that the person sitting in front of them applying for some form of finance is actually the person represented through the documents that they are presenting.

“Furthermore, re-verification takes place at each transaction point by re-confirming the identity of the card holder before commencing with the transaction, ultimately putting processes in place which we expect will massively reduce card based fraud,” Perkins concludes.

For more information contact Lise West, Bytes Systems Integration, +27 (0)11 205 7000, lise.west@bytes.co.za





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Who are you?
Access Control & Identity Management Information Security
Who are you? This question may seem strange, but it can only be answered accurately by implementing an Identity and Access Management (IAM) system, a crucial component of any company’s security strategy.

Read more...
Recording 40 high-resolution channels
Dallmeier Electronic Southern Africa Surveillance Products & Solutions
With the new MK4 revision of the DMS 2400, Dallmeier introduces a more powerful version of its video appliance, enabling the recording of up to 40 high-resolution video streams, and offering significantly increased capacity.

Read more...
Short-range indoor LiDAR sensor
OPTEX Perimeter Security, Alarms & Intruder Detection Infrastructure Products & Solutions
The REDSCAN Lite RLS-1010L has been developed to provide comprehensive coverage and protect high-risk security zones and vulnerable, narrow indoor spaces that are difficult to protect with traditional sensors.

Read more...
Who has access to your face?
Access Control & Identity Management AI & Data Analytics
While you may be adjusting your privacy settings on social media or thinking twice about who is recording you at public events, the reality is that your facial features may be used in other contexts.

Read more...
Is your entrance security secure?
SMART Security Solutions Centurion Systems Technews Publishing News & Events Access Control & Identity Management Smart Home Automation
While Centurion Systems may be known as a leader in gate and door motors in 72 countries, the company has developed more than hardware and now offers an automation ecosystem for access control security.

Read more...
Continuum launches centralised access and identity management
Editor's Choice Access Control & Identity Management Integrated Solutions Facilities & Building Management
Continuum Identity is a newly launched company in the identity management and access control sector, targeting the complexity of managing various Access and Identity Management (AIM) systems.

Read more...
Innovations shaping the safety and security landscape
Integrated Solutions Products & Solutions
TMT Services and Supplies is excited to connect with all attendees, share insights, and explore the latest trends and innovations shaping the safety and security landscape.

Read more...
Putting security in gear
Asset Management Products & Solutions
The inaugural Securex Cape Town 2025 will showcase a number of companies focused on vehicle and fleet security on South Africa’s dangerous and often crime-infested roads.

Read more...
Managing assets and clear communication
Asset Management Products & Solutions
Communication is essential for security management as well as efficient asset control. A few companies at Securex Cape Town 2025 might have the solution you are looking for.

Read more...
Drones and a hint of access control
Surveillance Products & Solutions
Drones are an indispensable tool for security operations, with more functionality and capabilities than ever. Securex Cape Town 2025 will naturally have drone service providers available to light the way for interested parties.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.