classic | mobile
Follow us on:
Follow us on Facebook  Share via Twitter  Share via LinkedIn
 

Search...
Hi-Tech Security Solutions Business Directory


Embedded biometrics provide an extra layer of security
March 2006, Identity Management

Breaches of security are minimised in many ways. One way is to literally limit the windows of opportunity for infringement. For instance, if the database of those authorised for access to a facility is not reliant on networking hardware systems, the chance for someone to infiltrate the system is reduced as are the possibilities of downtime. One cannot hack what is not there. What is not there cannot break down.

That is what embedded biometrics add to a system. When biometrics are embedded, no PC nor other IT elements are involved in managing the database at the door. In some instances, this level of integration can be achieved without reporting to an external access control system.

If one is not authorised to enter, the reader at the location, without checking elsewhere, tells that person that they cannot enter. Likewise, if authorised, that person can enter without the reader having to verify from a remote location.

Embedded systems come in two different varieties. One has been used for some time and is seldom even thought of as an embedded system. It is the standalone biometric reader, which manages biometric templates within the reader. The other is newer, where the biometric template management is actually performed by a smartcard.

Standalone biometric systems have been employed since the late 1980s. The Recognition Systems HandKey II reader providing access to a unique private library and museum at the New York Weill Cornell Medical Center is a case in point. The museum is so secure that it is only accessible to a very small group of people.

New York Weill Cornell Medical Center
New York Weill Cornell Medical Center

"It was imperative that access be secured because of the value of our library and the museum's contents," explains Ben Scaglione, director of security at New York Weill Cornell Medical Center, which along with Columbia Presbyterian, makes up New York Presbyterian Hospital, one of the most comprehensive university hospitals in the world. "People come from all over the world to review and look at the books and artifacts located here."

According to Scaglione, New York Weill Cornell has a magnetic stripe system for the rest of the facility. However, the museum presented a special problem, needing something extremely reliable and foolproof. Instead of verifying a card or code, the HandKey reader verifies the person who is at the entrance. The exclusive users simply enter their unique ID numbers on the HandKey's keypad and present their hands to gain entry. No other equipment or system is involved.

Smartcard hand reader
Smartcard hand reader

Smartcards, embedded biometrics in your wallet

What is being installed at major seaports is but one example of how a smartcard can store both the user's ID number and hand geometry template on the card. Because of this, there is no need to distribute hand templates across a network of hand readers or require the access control system to manage biometric templates. This means integration to any existing access control application is greatly simplified and additional network infrastructure costs are eliminated. Since the template only resides on the card, the solution also eases individual privacy concerns.

Providing the best of smartcards and biometrics, the solution provides dual authentication by requesting both the right card and the right person. A smartcard reader is embedded into the biometric reader. A plastic cardholder is affixed to the side of the unit. The verification process takes approximately one second and is virtually foolproof.

In most applications involving smartcards and embedded biometrics, hand geometry is preferred since a hand template uses up only 9 bytes versus an average of 300 bytes required by fingerscan readers per finger.

The Port of Antwerp in Belgium, the second largest port in Europe and the tenth largest in the world, just installed an Internet-based ID-verification and credentialling card-management system employing electronic and biometric technologies. More than 8000 credentials have already been recorded by the system. When fully deployed, it is estimated that credentials for more than 20 000 longshoremen, truck drivers and other employees and visitors requiring access to the port will be validated and recorded by the system.

Each of the 20 000 electronic identification smartcards are equipped with radio frequency identification (RFID) technology allowing them to be read up to 10 centimetres away by each reader, facilitating fast movement through access points. The system stores information about employee certifications, work experience and access restrictions, as well as biometric identifiers.

However, the hand geometry template of each card recipient is prerecorded directly on each credentialling card for use at the terminals using the biometric hand readers. Template management remains on the card, not in the system.

When the smartcard is presented to the smartcard reader embedded in the hand reader, the user is requested to place their hand on the hand reader. It then compares the hand's length, width, thickness and surface area with the template stored in the smartcard to verify identity. The process takes approximately one second and is virtually foolproof.

Whether using embedded biometrics in a smartcard system in which many people must be credentialled or using a standalone biometric reader with its embedded biometrics at an access point used by few people, embedding biometrics should be considered in any access control overview.


  Share via Twitter   Share via LinkedIn      

Further reading:

  • Common failures in access control doors
    July 2015, The Lockshop/David Miller Security, Access Control, Identity Management, This Week's Editor's Pick
    David Miller looks at access control failures that do not relate to readers, keypads and software, but are often built-in defects which baffle contractors and users alike.
  • Key management in the spotlight
    July 2015, Amaya Industries, Zonke Monitoring Systems, Access Control, Identity Management, IT infrastructure in security
    Key management today is no longer a case of having your secretary keep the keys in her desk drawer and only hand it out to people she considers acceptable. It has become a science.
  • Efficient guarding with software
    July 2015, neaMetrics, EasyRoster, Access Control, Identity Management, Enterprise Solutions, Security Services & Risk Management
    The degree of success of a guarding company is largely determined by the degree of efficiency with which the company’s guard force is applied to the requirements of the company’s clients.
  • P2000 security management system
    July 2015, Johnson Controls, Access Control, Identity Management
    The versatility of P2000 supports a company’s business growth, providing more intelligence and enhanced functionality to the overall security of a business.
  • Growth in the access control ­industry
    July 2015, News, Access Control, Identity Management
    Despite continued geopolitical and global economic turbulence, IHS has estimated the global (excluding China) electronic access control market grew by 6.3% in 2014 and exceeded $3.1 billion.
  • Securex, another Suprema success
    July 2015, Suprema, News, Access Control, Identity Management
    The new BioStation 2 high performance fingerprint terminal and new BioStar 2 Cloud and Web-based IP access control suite were some of the products causing serious rubber necking and congestion.
  • Uniclox offers tailor-made solutions
    July 2015, Uniclox Technologies, Entertainment and Hospitality (Industry), Access Control, Identity Management
    At the Hotelier Summit Africa held in Morocco and attended by Uniclox, the company had the opportunity to present its solutions to hotel procurement personnel and hotel developers in northern and eastern Africa.
  • Centurion dissects new products
    July 2015, Centurion Systems, Perimeter Security, Alarms & Intruder Detection, Access Control, Identity Management, Products
    Centurion introduces two new linear swing gate operators to the security market.
  • Examinations Council registers and authenticates students
    July 2015, HID Global, Access Control, Identity Management, Case Studies, System Integration
    HID Global and Botosoft launch mobile student ID system in West Africa to authenticate over two million Nigerian students. Handheld mobile readers eliminate identity fraud, verify student attendance and manage rules in real time.
  • Biometric access evolves
    July 2015, Powell Tronics, Access Control, Identity Management
    Biometrics for access control has evolved over the past few years and new trends are currently emerging as customer demand continues for increased functionality and user friendliness.
  • Enhanced IP access control
    July 2015, Suprema, Access Control, Identity Management, Products
    Suprema’s Xpass S2 is an IP access control multi-smartcard reader and controller. Xpass S2 supports the reading of a number of card technology standards including MiFare, DESFire, ISO14443A/B, ISO15693 and FeliCa, as well as NFC.
  • Suprema BioStar 2
    July 2015, Suprema, Access Control, Identity Management, Products
    BioStar 2 is Suprema’s IP access control platform and offers a Web interface using the latest standards, reducing deployment time and can be used from workstations or mobile devices.

 
 
         
Contact:
Technews Publishing (Pty) Ltd
1st Floor, Stabilitas House
265 Kent Ave, Randburg, 2194
South Africa
Publications by Technews
Dataweek Electronics & Communications Technology
Electronic Buyers Guide (EBG)

Hi-Tech Security Solutions
Hi-Tech Security Business Directory (HSBD)

Motion Control in Southern Africa
Motion Control Buyers’ Guide (MCBG)

South African Instrumentation & Control
South African Instrumentation & Control Buyers’ Guide (IBG)
Other
Terms & conditions of use, including privacy policy
PAIA Manual
         
    Mobile | Classic

Copyright © Technews Publishing (Pty) Ltd. All rights reserved.