Putting a finger on multifactor authentication

August 2001 Access Control & Identity Management

Most major organisations employing some type of security access control employ badges. In the majority of cases, that badge is a passive proximity card. With it, employees can get through the front gate or door and into other rooms throughout the facility that do not rely on a high degree of security.

However, to gain access to more sensitive areas, such as the server room, laboratories or warehouses, these same organisations employ multifactor authentication, typically including biometrics. Such dual identify verification systems are also important for conducting important work on the computer system, such as making high value financial transactions and accessing confidential medical records.

Heightened security applications

Using a combination of authentication methods provides a stronger assurance that users are who they say they are. First of all, it is much harder for hackers to steal or intercept more than one authentication method, such as a card and a password. More importantly, while many authentication methods, such as cards and passwords, can be passed from one to another to breach a system, it is more than difficult to loan someone your finger.

Thus, in heightened security applications already using passive proximity throughout the organisation, site administrators configure their systems to require users to use both their proximity card and a fingerscan to enter these special areas or gain access to the computer or exclusive files. The proximity card reader is simply integrated into the fingerscan reader so that the card and finger are read simultaneously, resulting in a one-touch-and-you-are-in operation.

If the organisation is using active RFID or smartcards, the operation is equivalent with one major difference. Instead of the template for the fingerscan residing in the reader, it can be kept on the card as a travelling database, one that needs no administration or memory. Upon reaching the reader, the template is transmitted into the fingerscan unit for comparison.

Smartcards

When using contact smartcards, the user inserts the smartcard into the unit and the template is transferred. The user then places a finger and the comparison is made. If the fingerscan matches the template on the card, then, and only then, the employee gains access.

If the system employs contactless smartcards, the ID number and template are transferred as the user approaches the reader, eliminating the need and time to insert a card. The authorised user simply has to touch the fingerscan reader to gain access.

For further details contact Hi-Tec Laboratory, (011) 958 0703.





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Defending against SIM swap fraud
Access Control & Identity Management
Mobile networks must not be complacent about SIM swap fraud, and they need to prioritise the protection of customers, according to Gur Geva, Founder and CEO of iiDENTIFii.

Read more...
Access Selection Guide 2024
Access Control & Identity Management
The Access Selection Guide 2024 includes a range of devices geared specifically for the access control and identity management market.

Read more...
Biometrics Selection Guide 2024
Access Control & Identity Management
The Biometrics Selection Guide 2024 incorporates a number of hardware and software biometric identification systems aimed at the access and identity management market of today.

Read more...
Smart intercoms for Sky House Projects
Nology Access Control & Identity Management Residential Estate (Industry)
DNAKE’s easy and smart intercom solution has everything in place for modern residential buildings. Hence, the developer selected DNAKE video intercoms to round out upmarket apartment complexes, supported by the mobile app.

Read more...
Authentic identity
HID Global Access Control & Identity Management
As the world has become global and digital, traditional means for confirming authentic identity, and understanding what is real and what is fake have become impractical.

Read more...
Research labs secured with STid Mobile ID
Access Control & Identity Management
When NTT opened its research centre in Silicon Valley, it was looking for a high-security expert capable of protecting the company’s sensitive data. STid readers and mobile ID solutions formed part of the solution.

Read more...
Is voice biometrics in banking secure enough?
Access Control & Identity Management AI & Data Analytics
As incidents of banking fraud grow exponentially and become increasingly sophisticated, it is time to question whether voice banking is a safe option for consumers.

Read more...
Unlocking efficiency and convenience
OPTEX Access Control & Identity Management Transport (Industry)
The OVS-02GT vehicle detection sensor is the newest member of Optex’s vehicle sensor range, also known as ‘virtual loop’, and offers reliable motion detection of cars, trucks, vans, and other motorised vehicles using microwave technology.

Read more...
Protecting our most vulnerable
NEC XON Access Control & Identity Management Products & Solutions
In a nation grappling with the distressing rise in child kidnappings, the need for innovative solutions to protect our infants has never been more critical. South Africa finds itself in the throes of a child abduction pandemic.

Read more...
Understanding the power of digital identity
Access Control & Identity Management Security Services & Risk Management Financial (Industry)
The way we perceive business flourishing is undergoing a paradigm shift, as digital identity and consumer consent redefine the dynamics of transactions, says Shanaaz Trethewey.

Read more...