SlideShare a Scribd company logo

Ynamono Hs Lecture

Y
ynamoto

The document discusses using smartcards and biometrics like fingerprints for multi-factor authentication. It outlines the goals of authentication including verifying identity, preventing secrets from leaking, and providing scalability. Passwords are noted as insufficient for these goals. The solution presented is using smartcards to store credentials alongside biometrics like fingerprints for two-factor authentication. An example project that implemented this was a credentialing system for first responders in Illinois.

Technology
1 of 24
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
Authentication with Smartcards and Fingerprints Himanshu Khurana Joe Muggli NCSA, UIUC March 30, 2006
Outline Introduction Smartcards Biometrics: fingerprints Illinois Terrorism Task Force (ITTF) Project Interactive Demonstration
Authentication Goals Basic Goal Verify the unique identity of the requestor Additional goals in a networked world Prevent leak of secrets Prevent replay attacks Global scalability Offline operation capability High assurance …
Passwords are not enough Basic Goal Verify the unique identity of the requestor Additional goals in a networked world Prevent leak of secrets Prevent replay attacks Global scalability Offline operation capability High assurance … X X X Passwords are vulnerable to dictionary attacks theft collusion attacks (users can share passwords)
Solution: Multi-factor Authentication Multi-factor authentication: combination of What you know; e.g., passwords, PINs What you have; e.g., OTP tokens, smartcards What you are (biometrics); e.g., fingerprints, iris scans, face recognition Typically two-factor authentication is used; e.g., PIN + Card (e.g. ATMs) Password + One-time-password (OTP) token Fingerprint + Smartcard Main vendors : Entrust, RSA, Aladdin, Todos, TaraSekure, Vaco, SafeNet, ...
Public-Key Infrastructure (PKI) Public Key Cryptography Sign with private key, verify signature with public key Encrypt with public key, decrypt with private key Key Distribution Who does a public key belong to? Certification Authority (CA) verifies user’s identity and signs certificate Certificate is a document that binds the user’s identity to a public key Authentication Signature [ h ( random, … ) ] Subject: CA signs Issuer: CA Subject: Jim Issuer: CA Source: Jim Basney’s MyProxy presentation
Authentication with Digital Signatures Alice Bob Nonce Hash Signing key SK A Enc Nonce Request Signed Nonce Dec Verif. key PK A Hash Match?
Authentication with Smartcards and PKI Unlike passwords private keys cannot be remembered (typically, 1024 bits) File based storage provides weak security and no mobility Smartcards provide secure, tamper-resistant storage with mobility Less easily shared than passwords Drawbacks: card cost, readers
Smartcards CPU: 8, 16, 32 bit ROM: ~ 1 - 32kb RAM: ~ Several kb EEPROM: ~ 16 - 64 kb Programming Java .Net Various levels of memory access control Protected Memory holds secrets and is accessible only to the cryptoprocessor
Example Authentication with Smartcards Source: Dang et al., AINA’05 Unlocked by a PIN
Security Concerns and Authentication Goals High assurance Smartcards and PINs can get lost, be stolen, or shared A Solution: combine biometrics with smartcards Source: Renaudin et al., Design, Automation and Test in Europe Conference and Exhibition, 2004
Biometrics: Fingerprints Uniquely refers to an individual using biometric identifiers Pattern recognition system Enrollment captures digital representation (template) of biometric identifier Recognition captures characteristics and matches against template Ideal properties: universal, unique, permanent, collectable Practical properties: performance, acceptability, resistance to circumvention Examples: Face recognition, fingerprints , iris scans, retinal scans, hand geometry, etc.
Minutiae Based Fingerprint Recognition Digital image of fingerprint contain features Ridge bifurcations and endings Called Minutiae Minutiae features represented using location (x,y) and direction  Set of measurements forms template Matching attempts to calculate degree of similarity taking into account Rotation, elastic distortion, sensor noise, etc. Never 100%: false acceptance rate and false rejection rate
Combining Fingerprints and Smartcards for Authentication Replace PINs with fingerprint verification Store template on card Match provided fingerprint on card Reader extracts minutiae features Security and privacy advantages Match-on-card leverages smartcard as trusted computing platform Match-on-card requires no additional trusted entity Mimics PIN verification Template stored on card as opposed to accessible database
ITTF Credentialing Project* Goal : provide trustworthy identification at secure incident perimeter Requirements : credential based, offline operation, unique identification, counterfeit resistance Approach : smartcard and fingerprint based authentication * Work done with Jim Basney; Partner Institutions: Illinois State Police, Entrust, U. of Chicago
ITTF Background Provide trustworthy identification of response team members at secure incident perimeter - Fire, EMT, Police, HazMat, Techs, TaraSekure etc. Two factor authentication in the field Offline operation, web portals for registration and authentication Highly usable but also resistant to counterfeiting Prototype not production unit
Featured Technologies State of Illinois PKI Certificate Authority Web interfaced central authentication service – Entrust GetAccess™ & TruePass™ MatchOnCard™ fingerprint templates on smartcards – Precise Biometrics Role based authentication
Credentialing Portal Roles Team Member Team Leader Card Distributor Credential Review Committee Member Administrator One Responder Can Have Multiple Roles
Credentialing Portal Architecture State of Illinois PKI Entrust Servers: GetAccess SelfAdmin TruePass+Portal IBM Websphere ITTF Database Oracle 10g Illinois Internal Network Internet Internet Registration Station Field Station Web Server MS IIS with Entrust Modules Open Ports: SSL 443,9443 SMTP 25 LDAP 389 SQL*Net 1521 PKIX-CMP 829 Entrust 710, 50000,50001 Firewall +
ITTF Registration Procedure Prerequisites Demographic Information Team Membership Portrait Fingerprint Scan Criminal History Review State of Illinois PKI Level I Digital ID Registration Portal Station 1. User Logs Into Registration Portal, Edits Record 2. Team Leader Logs In, Approves Team Member 3. Smartcard Produced & Shipped to Card Distributor 4. Card Distributor Meets User, Confirms Identity 5. User Logs Into Portal Using SC & Level I Digital ID 6. Logging In Upgrades Digital ID To Level III 7. User Authenticates to Smartcard Using The Pre-loaded Fingerprint Template 8. Level IV Digital Certificate Created On User’s SC 9. Portal Date Stamps & Activates Smartcard 10. User Tests Credential Functionality
Field Authentication Tasks + Pre-event: Team Leader Downloads Updated Team Member and Certificate Revocation Lists Event: Using SC & FP Team Leader & Members Log Into Portal, SC Time & Event Stamped Post-Event: Team Leader and Members Log Out Using SC & FP, SC Time Stamped; Team Leader Uploads Log To ITTF Web Portal Windows Laptop Windows CE Handheld Data Uplink
NCSA PKI Lab Demo Windows 2003 Server - Domain Controller & CA Windows XP Clients Safenet (formerly DataKey) No Boundaries Login Software & Biometric Enabled Smartcards Precise Biometrics Fingerprint & Smartcard Readers Registration Station Login Test Station NCSA PKI Lab Domain CA Wireless Network
Fingerprint Scanning Hints Don’t Point – Touch the 2 Dots Use the Fleshy Middle of the Fingertip Don’t Drag or Move Place Your Finger Down Like Patting a Dog One Time & Only One Finger
Authentication with Smartcards and Fingerprints Any Questions?? http://www.ncassr.org/ http://www.ncsa.uiuc.edu/Projects/cybertechnologies.html#security http://pkilab.ncsa.uiuc.edu Himanshu Khurana [email_address] Joe Muggli [email_address]

More Related Content

PPTX
Authentication(pswrd,token,certificate,biometric)
Ali Raw
 
PDF
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
PDF
Two factor authentication-in_your_network_e_guide
Nick Owen
 
PDF
2 factor authentication 3 [compatibility mode]
Hai Nguyen
 
PDF
Two factor authentication
Hai Nguyen
 
PDF
Session 7 e_raja_kailar
Hai Nguyen
 
PDF
Sp 29 two_factor_auth_guide
Hai Nguyen
 
PPTX
The Road to Identity 2.0
Adam Lewis
 
Authentication(pswrd,token,certificate,biometric)
Ali Raw
 
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
Two factor authentication-in_your_network_e_guide
Nick Owen
 
2 factor authentication 3 [compatibility mode]
Hai Nguyen
 
Two factor authentication
Hai Nguyen
 
Session 7 e_raja_kailar
Hai Nguyen
 
Sp 29 two_factor_auth_guide
Hai Nguyen
 
The Road to Identity 2.0
Adam Lewis
 

What's hot (20)

PDF
Securing corporate assets_with_2_fa
Hai Nguyen
 
PDF
User Authentication Overview
Jim Fenton
 
PDF
Stronger/Multi-factor Authentication for Enterprise Applications
Ramesh Nagappan
 
PDF
Combat the Latest Two-Factor Authentication Evasion Techniques
IBM Security
 
PPTX
FrontOne our new and different solutions
frontone
 
PPTX
FirstNet ICAM
Adam Lewis
 
PDF
Why Two-Factor Authentication?
Fortytwo
 
PPTX
Identity as a Matter of Public Safety
Adam Lewis
 
PPTX
Digital signature and certificate authority
KrutiShah114
 
PPT
Eds user authenticationuser authentication methods
lapao2014
 
PPT
Digital certificates
Sheetal Verma
 
PDF
Government Citizen ID using Java Card Platform
Ramesh Nagappan
 
PPTX
Seminar-Two Factor Authentication
Dilip Kr. Jangir
 
PPTX
Webinar - Easy multi factor authentication strategies and PCI DSS
onionid12
 
PPTX
Insights Into Modern Day Threat Protection
Abhinav Biswas
 
PPTX
Digital certificates and information security
Devam Shah
 
PPTX
Two factor authentication 2018
Will Adams
 
PDF
A MOBILE BASED ANTI-PHISHING AUTHENTICATION SCHEME USING CHALLENGE-RESPONSE A...
ijiert bestjournal
 
PDF
3 reasons your business can't ignore Two-Factor Authentication
Fortytwo
 
PDF
Avoiding Two-factor Authentication? You're Not Alone
PortalGuard
 
Securing corporate assets_with_2_fa
Hai Nguyen
 
User Authentication Overview
Jim Fenton
 
Stronger/Multi-factor Authentication for Enterprise Applications
Ramesh Nagappan
 
Combat the Latest Two-Factor Authentication Evasion Techniques
IBM Security
 
FrontOne our new and different solutions
frontone
 
FirstNet ICAM
Adam Lewis
 
Why Two-Factor Authentication?
Fortytwo
 
Identity as a Matter of Public Safety
Adam Lewis
 
Digital signature and certificate authority
KrutiShah114
 
Eds user authenticationuser authentication methods
lapao2014
 
Digital certificates
Sheetal Verma
 
Government Citizen ID using Java Card Platform
Ramesh Nagappan
 
Seminar-Two Factor Authentication
Dilip Kr. Jangir
 
Webinar - Easy multi factor authentication strategies and PCI DSS
onionid12
 
Insights Into Modern Day Threat Protection
Abhinav Biswas
 
Digital certificates and information security
Devam Shah
 
Two factor authentication 2018
Will Adams
 
A MOBILE BASED ANTI-PHISHING AUTHENTICATION SCHEME USING CHALLENGE-RESPONSE A...
ijiert bestjournal
 
3 reasons your business can't ignore Two-Factor Authentication
Fortytwo
 
Avoiding Two-factor Authentication? You're Not Alone
PortalGuard
 
Ad

Similar to Ynamono Hs Lecture (20)

PPT
Authentication
Kusumalatha Karre
 
PDF
#MFSummit2016 Secure: Mind the gap strengthening the information security model
Micro Focus
 
PDF
Authentication V.Vinotha II M.Sc computer science Bon secours college for women
vinothav3
 
PDF
Identity Assertions Draftv5
Salvatore D'Agostino
 
PPTX
Qafis, Regular smartcards 150313001
Qafis
 
PPT
Seetu
seetumishra2511
 
PDF
Access Control
Waseem Hamid Hussain
 
PPTX
Biometric security using cryptography
Sampat Patnaik
 
PPTX
Authentication Methods authauthauthauthauthautha
Olajide Kuku
 
PDF
CISSP Prep: Ch 6. Identity and Access Management
Sam Bowne
 
PDF
Access Control Presentation
Wajahat Rajab
 
PPT
ISS SA le presenta IdentityGuard de Entrust
Information Security Services SA
 
PPTX
Chapter-Six.pptxhyjhgjghjghjghjghjghjghjghjg
Shemse Shukre
 
PDF
5. Identity and Access Management
Sam Bowne
 
PDF
CNIT 125 6. Identity and Access Management
Sam Bowne
 
PPTX
Introduction to Biometrics for Beginners.pptx
RAJKUMAR J
 
PDF
Digital Identities and the Promise of the Technology Trio: PKI, Smart Cards, ...
Arab Federation for Digital Economy
 
PDF
OWASP AppSec USA 2015, San Francisco
Clare Nelson, CISSP, CIPP-E
 
PDF
Psdot 19 four factor password authentication
ZTech Proje
 
PPTX
term 2
Vinayak Wadhwa
 
Authentication
Kusumalatha Karre
 
#MFSummit2016 Secure: Mind the gap strengthening the information security model
Micro Focus
 
Authentication V.Vinotha II M.Sc computer science Bon secours college for women
vinothav3
 
Identity Assertions Draftv5
Salvatore D'Agostino
 
Qafis, Regular smartcards 150313001
Qafis
 
Seetu
seetumishra2511
 
Access Control
Waseem Hamid Hussain
 
Biometric security using cryptography
Sampat Patnaik
 
Authentication Methods authauthauthauthauthautha
Olajide Kuku
 
CISSP Prep: Ch 6. Identity and Access Management
Sam Bowne
 
Access Control Presentation
Wajahat Rajab
 
ISS SA le presenta IdentityGuard de Entrust
Information Security Services SA
 
Chapter-Six.pptxhyjhgjghjghjghjghjghjghjghjg
Shemse Shukre
 
5. Identity and Access Management
Sam Bowne
 
CNIT 125 6. Identity and Access Management
Sam Bowne
 
Introduction to Biometrics for Beginners.pptx
RAJKUMAR J
 
Digital Identities and the Promise of the Technology Trio: PKI, Smart Cards, ...
Arab Federation for Digital Economy
 
OWASP AppSec USA 2015, San Francisco
Clare Nelson, CISSP, CIPP-E
 
Psdot 19 four factor password authentication
ZTech Proje
 
term 2
Vinayak Wadhwa
 
Ad

Recently uploaded (20)

PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Cloud computing and distributed systems.
kkkkkhan
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
KodekX | Application Modernization Development
KodekX
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Encapsulation theory and applications.pdf
gurumoop
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 

Ynamono Hs Lecture

  • 1. Authentication with Smartcards and Fingerprints Himanshu Khurana Joe Muggli NCSA, UIUC March 30, 2006
  • 2. Outline Introduction Smartcards Biometrics: fingerprints Illinois Terrorism Task Force (ITTF) Project Interactive Demonstration
  • 3. Authentication Goals Basic Goal Verify the unique identity of the requestor Additional goals in a networked world Prevent leak of secrets Prevent replay attacks Global scalability Offline operation capability High assurance …
  • 4. Passwords are not enough Basic Goal Verify the unique identity of the requestor Additional goals in a networked world Prevent leak of secrets Prevent replay attacks Global scalability Offline operation capability High assurance … X X X Passwords are vulnerable to dictionary attacks theft collusion attacks (users can share passwords)
  • 5. Solution: Multi-factor Authentication Multi-factor authentication: combination of What you know; e.g., passwords, PINs What you have; e.g., OTP tokens, smartcards What you are (biometrics); e.g., fingerprints, iris scans, face recognition Typically two-factor authentication is used; e.g., PIN + Card (e.g. ATMs) Password + One-time-password (OTP) token Fingerprint + Smartcard Main vendors : Entrust, RSA, Aladdin, Todos, TaraSekure, Vaco, SafeNet, ...
  • 6. Public-Key Infrastructure (PKI) Public Key Cryptography Sign with private key, verify signature with public key Encrypt with public key, decrypt with private key Key Distribution Who does a public key belong to? Certification Authority (CA) verifies user’s identity and signs certificate Certificate is a document that binds the user’s identity to a public key Authentication Signature [ h ( random, … ) ] Subject: CA signs Issuer: CA Subject: Jim Issuer: CA Source: Jim Basney’s MyProxy presentation
  • 7. Authentication with Digital Signatures Alice Bob Nonce Hash Signing key SK A Enc Nonce Request Signed Nonce Dec Verif. key PK A Hash Match?
  • 8. Authentication with Smartcards and PKI Unlike passwords private keys cannot be remembered (typically, 1024 bits) File based storage provides weak security and no mobility Smartcards provide secure, tamper-resistant storage with mobility Less easily shared than passwords Drawbacks: card cost, readers
  • 9. Smartcards CPU: 8, 16, 32 bit ROM: ~ 1 - 32kb RAM: ~ Several kb EEPROM: ~ 16 - 64 kb Programming Java .Net Various levels of memory access control Protected Memory holds secrets and is accessible only to the cryptoprocessor
  • 10. Example Authentication with Smartcards Source: Dang et al., AINA’05 Unlocked by a PIN
  • 11. Security Concerns and Authentication Goals High assurance Smartcards and PINs can get lost, be stolen, or shared A Solution: combine biometrics with smartcards Source: Renaudin et al., Design, Automation and Test in Europe Conference and Exhibition, 2004
  • 12. Biometrics: Fingerprints Uniquely refers to an individual using biometric identifiers Pattern recognition system Enrollment captures digital representation (template) of biometric identifier Recognition captures characteristics and matches against template Ideal properties: universal, unique, permanent, collectable Practical properties: performance, acceptability, resistance to circumvention Examples: Face recognition, fingerprints , iris scans, retinal scans, hand geometry, etc.
  • 13. Minutiae Based Fingerprint Recognition Digital image of fingerprint contain features Ridge bifurcations and endings Called Minutiae Minutiae features represented using location (x,y) and direction  Set of measurements forms template Matching attempts to calculate degree of similarity taking into account Rotation, elastic distortion, sensor noise, etc. Never 100%: false acceptance rate and false rejection rate
  • 14. Combining Fingerprints and Smartcards for Authentication Replace PINs with fingerprint verification Store template on card Match provided fingerprint on card Reader extracts minutiae features Security and privacy advantages Match-on-card leverages smartcard as trusted computing platform Match-on-card requires no additional trusted entity Mimics PIN verification Template stored on card as opposed to accessible database
  • 15. ITTF Credentialing Project* Goal : provide trustworthy identification at secure incident perimeter Requirements : credential based, offline operation, unique identification, counterfeit resistance Approach : smartcard and fingerprint based authentication * Work done with Jim Basney; Partner Institutions: Illinois State Police, Entrust, U. of Chicago
  • 16. ITTF Background Provide trustworthy identification of response team members at secure incident perimeter - Fire, EMT, Police, HazMat, Techs, TaraSekure etc. Two factor authentication in the field Offline operation, web portals for registration and authentication Highly usable but also resistant to counterfeiting Prototype not production unit
  • 17. Featured Technologies State of Illinois PKI Certificate Authority Web interfaced central authentication service – Entrust GetAccess™ & TruePass™ MatchOnCard™ fingerprint templates on smartcards – Precise Biometrics Role based authentication
  • 18. Credentialing Portal Roles Team Member Team Leader Card Distributor Credential Review Committee Member Administrator One Responder Can Have Multiple Roles
  • 19. Credentialing Portal Architecture State of Illinois PKI Entrust Servers: GetAccess SelfAdmin TruePass+Portal IBM Websphere ITTF Database Oracle 10g Illinois Internal Network Internet Internet Registration Station Field Station Web Server MS IIS with Entrust Modules Open Ports: SSL 443,9443 SMTP 25 LDAP 389 SQL*Net 1521 PKIX-CMP 829 Entrust 710, 50000,50001 Firewall +
  • 20. ITTF Registration Procedure Prerequisites Demographic Information Team Membership Portrait Fingerprint Scan Criminal History Review State of Illinois PKI Level I Digital ID Registration Portal Station 1. User Logs Into Registration Portal, Edits Record 2. Team Leader Logs In, Approves Team Member 3. Smartcard Produced & Shipped to Card Distributor 4. Card Distributor Meets User, Confirms Identity 5. User Logs Into Portal Using SC & Level I Digital ID 6. Logging In Upgrades Digital ID To Level III 7. User Authenticates to Smartcard Using The Pre-loaded Fingerprint Template 8. Level IV Digital Certificate Created On User’s SC 9. Portal Date Stamps & Activates Smartcard 10. User Tests Credential Functionality
  • 21. Field Authentication Tasks + Pre-event: Team Leader Downloads Updated Team Member and Certificate Revocation Lists Event: Using SC & FP Team Leader & Members Log Into Portal, SC Time & Event Stamped Post-Event: Team Leader and Members Log Out Using SC & FP, SC Time Stamped; Team Leader Uploads Log To ITTF Web Portal Windows Laptop Windows CE Handheld Data Uplink
  • 22. NCSA PKI Lab Demo Windows 2003 Server - Domain Controller & CA Windows XP Clients Safenet (formerly DataKey) No Boundaries Login Software & Biometric Enabled Smartcards Precise Biometrics Fingerprint & Smartcard Readers Registration Station Login Test Station NCSA PKI Lab Domain CA Wireless Network
  • 23. Fingerprint Scanning Hints Don’t Point – Touch the 2 Dots Use the Fleshy Middle of the Fingertip Don’t Drag or Move Place Your Finger Down Like Patting a Dog One Time & Only One Finger
  • 24. Authentication with Smartcards and Fingerprints Any Questions?? http://www.ncassr.org/ http://www.ncsa.uiuc.edu/Projects/cybertechnologies.html#security http://pkilab.ncsa.uiuc.edu Himanshu Khurana [email_address] Joe Muggli [email_address]