Hi-Tech Security Solutions Hi-Tech Security Solutions
Follow us on:
Follow us on Facebook  Share via Twitter  Share via LinkedIn
   
 




















 

Embedded biometrics provide an extra layer of security
March 2006, Identity Management

Breaches of security are minimised in many ways. One way is to literally limit the windows of opportunity for infringement. For instance, if the database of those authorised for access to a facility is not reliant on networking hardware systems, the chance for someone to infiltrate the system is reduced as are the possibilities of downtime. One cannot hack what is not there. What is not there cannot break down.

That is what embedded biometrics add to a system. When biometrics are embedded, no PC nor other IT elements are involved in managing the database at the door. In some instances, this level of integration can be achieved without reporting to an external access control system.

If one is not authorised to enter, the reader at the location, without checking elsewhere, tells that person that they cannot enter. Likewise, if authorised, that person can enter without the reader having to verify from a remote location.

Embedded systems come in two different varieties. One has been used for some time and is seldom even thought of as an embedded system. It is the standalone biometric reader, which manages biometric templates within the reader. The other is newer, where the biometric template management is actually performed by a smartcard.

Standalone biometric systems have been employed since the late 1980s. The Recognition Systems HandKey II reader providing access to a unique private library and museum at the New York Weill Cornell Medical Center is a case in point. The museum is so secure that it is only accessible to a very small group of people.

New York Weill Cornell Medical Center
New York Weill Cornell Medical Center

"It was imperative that access be secured because of the value of our library and the museum's contents," explains Ben Scaglione, director of security at New York Weill Cornell Medical Center, which along with Columbia Presbyterian, makes up New York Presbyterian Hospital, one of the most comprehensive university hospitals in the world. "People come from all over the world to review and look at the books and artifacts located here."

According to Scaglione, New York Weill Cornell has a magnetic stripe system for the rest of the facility. However, the museum presented a special problem, needing something extremely reliable and foolproof. Instead of verifying a card or code, the HandKey reader verifies the person who is at the entrance. The exclusive users simply enter their unique ID numbers on the HandKey's keypad and present their hands to gain entry. No other equipment or system is involved.

Smartcard hand reader
Smartcard hand reader

Smartcards, embedded biometrics in your wallet

What is being installed at major seaports is but one example of how a smartcard can store both the user's ID number and hand geometry template on the card. Because of this, there is no need to distribute hand templates across a network of hand readers or require the access control system to manage biometric templates. This means integration to any existing access control application is greatly simplified and additional network infrastructure costs are eliminated. Since the template only resides on the card, the solution also eases individual privacy concerns.

Providing the best of smartcards and biometrics, the solution provides dual authentication by requesting both the right card and the right person. A smartcard reader is embedded into the biometric reader. A plastic cardholder is affixed to the side of the unit. The verification process takes approximately one second and is virtually foolproof.

In most applications involving smartcards and embedded biometrics, hand geometry is preferred since a hand template uses up only 9 bytes versus an average of 300 bytes required by fingerscan readers per finger.

The Port of Antwerp in Belgium, the second largest port in Europe and the tenth largest in the world, just installed an Internet-based ID-verification and credentialling card-management system employing electronic and biometric technologies. More than 8000 credentials have already been recorded by the system. When fully deployed, it is estimated that credentials for more than 20 000 longshoremen, truck drivers and other employees and visitors requiring access to the port will be validated and recorded by the system.

Each of the 20 000 electronic identification smartcards are equipped with radio frequency identification (RFID) technology allowing them to be read up to 10 centimetres away by each reader, facilitating fast movement through access points. The system stores information about employee certifications, work experience and access restrictions, as well as biometric identifiers.

However, the hand geometry template of each card recipient is prerecorded directly on each credentialling card for use at the terminals using the biometric hand readers. Template management remains on the card, not in the system.

When the smartcard is presented to the smartcard reader embedded in the hand reader, the user is requested to place their hand on the hand reader. It then compares the hand's length, width, thickness and surface area with the template stored in the smartcard to verify identity. The process takes approximately one second and is virtually foolproof.

Whether using embedded biometrics in a smartcard system in which many people must be credentialled or using a standalone biometric reader with its embedded biometrics at an access point used by few people, embedding biometrics should be considered in any access control overview.


  Share via Twitter   Share via LinkedIn      

Further reading:

  • Smartcard solutions for higher education
    April 2014, Asset Management, EAS, RFID, Identity Management
    Colleges and universities must keep their campuses safe in as cost-effective manner as is possible. At the same time, each school has its own set of unique demands and challenges, requiring flexible system architectures that satisfy today’s demands while providing the foundation to meet future security needs.
  • Groote Schuur Hospital ­upgrades to ­biometrics
    April 2014, Castle Access Control Systems, Access Control, Identity Management
    In 2013, Groote Schuur Hospital took another step into the future, when it upgraded its RFID access cards and tags to include fingerprint biometric access to certain areas. The Granding biometric devices were supplied by Castle Access Control Systems and installed by Keep Electronics.
  • The future of authentication
    April 2014, Access Control, Identity Management
    SlickLogin focuses on a very important piece of the authentication puzzle – ease and simplicity for the user. The idea of just placing your phone near your laptop to logon sounds cool and simple.
  • FIDO Alliance opens its security standards to the public
    April 2014, Access Control, Identity Management
    The FIDO (Fast IDentity Online) Alliance, a security-minded industry consortium that includes tech giants such as Google, Netflix, and PayPal has released a public draft of new security standards that could someday make user passwords a thing of the past.
  • EntraPass v6.01 with exacqVision VMS integration
    April 2014, Tyco Security Products, Access Control, Identity Management
    EntraPass v6.01 features an integration with the cross-platform, open architecture exacqVision video management system (VMS) from Exacq.
  • Solar-friendly GateMate by Cartell
    April 2014, Access Control, Identity Management
    Cartell introduces the solar-friendly GateMate (CP-3) self-contained Free Exit System, offering the lowest stand-by current draw in the industry.
  • Secure ID at last
    April 2014, Access Control, Identity Management
    New ID cards will ensure that citizens can vote securely and help protect social grants. Each South African will, once issued with a smart ID card, have a secure, verifiable and digital identity.
  • New time-recording terminal
    April 2014, Access Control, Identity Management
    Latest in time recording terminal technology available through AWM360. The B-web 96 00 is an entry-level solution for simple time recording and access control applications.
  • Seamless user experience
    April 2014, Access Control, Identity Management
    White paper reviews key trends that will enable organisations to more easily support multiple access control use cases and identities on one card or smartphone.
  • Logical access from Tools4ever
    April 2014, Access Control, Identity Management
    Tools4ever’s core business offerings include a combination of robust software and consulting services in the Identity and Access Management (IDM/IAM) market.
  • Home automation means integration
    March 2014, Access Control, Identity Management
    The Utopian vision of home automation actually makes technology less evident in our environment where you don’t even see keyboards around the home anymore and interfacing to technology is achieved through natural user interfaces.
  • Key and asset management tips
    March 2014, Access Control, Identity Management
    Best practices provide best value when implementing key control and asset management systems from Fernando Pires, VP, sales and marketing, Morse Watchmans

 
 
 
Search...
Hi-Tech Security Solutions Business Directory


         
Contact:
Technews Publishing (Pty) Ltd
1st Floor, Stabilitas House
265 Kent Ave, Randburg, 2194
South Africa
Publications by Technews
Dataweek Electronics & Communications Technology
Electronic Buyers Guide (EBG)

Hi-Tech Security Solutions
Hi-Tech Security Business Directory (HSBD)

Motion Control in Southern Africa
Motion Control Buyers’ Guide (MCBG)

South African Instrumentation & Control
South African Instrumentation & Control Buyers’ Guide (IBG)
Other
Terms & conditions of use, including privacy policy
PAIA Manual
         
    Mobile | Classic

Copyright © Technews Publishing (Pty) Ltd. All rights reserved.