Sunday, September 2, 2012

Biometrics

No.1 Article of Replacement Social Security Card Application

Abstract

Biometric identification refers to identifying an private based on his/her distinguishing physiological and/or behavioural characteristics. As these characteristics are distinctive to each and every person, biometric identification is more reliable and capable than the former token based and knowledge based technologies differentiating in the middle of an authorized and a fraudulent person. This paper discusses the mainstream biometric technologies and the advantages and disadvantages of biometric technologies, their protection issues and ultimately their applications in day today life.

Replacement Social Security Card Application

Introduction:

Biometrics

"Biometrics" are self-operating methods of recognizing an private based on their bodily or behavioral characteristics. Some common commercial examples are fingerprint, face, iris, hand geometry, voice and dynamic signature. These, as well as many others, are in various stages of amelioration and/or deployment. The type of biometric that is "best " will vary significantly from one application to another. These methods of identification are preferred over former methods curious passwords and Pin numbers for various reasons: (i) the man to be identified is required to be physically gift at the point-of-identification; (ii) identification based on biometric techniques obviates the need to remember a password or carry a token. Biometric recognition can be used in identification mode, where the biometric system identifies a man from the entire enrolled citizen by searching a database for a match.

A Biometric System:

All biometric systems consist of three basic elements:

Enrollment, or the process of collecting biometric samples from an individual, known as the enrollee, and the subsequent generation of his template. Templates, or the data representing the enrollee's biometric. Matching, or the process of comparing a live biometric sample against one or many templates in the system's database.

Enrollment

Enrollment is the crucial first stage for biometric authentication because enrollment generates a template that will be used for all subsequent matching. Typically, the gismo takes three samples of the same biometric and averages them to furnish an enrollment template. Enrollment is complex by the dependence of the performance of many biometric systems on the users' familiarity with the biometric gismo because enrollment is commonly the first time the user is exposed to the device. Environmental conditions also work on enrollment. Enrollment should take place under conditions similar to those anticipated while the routine matching process. For example, if voice verification is used in an environment where there is background noise, the system's ability to match voices to enrolled templates depends on capturing these templates in the same environment. In addition to user and environmental issues, biometrics themselves turn over time. Many biometric systems catalogue for these changes by continuously averaging. Templates are averaged and updated each time the user attempts authentication.

Templates

As the data representing the enrollee's biometric, the biometric gismo creates templates. The gismo uses a possession algorithm to citation "features" accepted to that biometric from the enrollee's samples. Templates are only a description of distinguishing features, sometimes called minutiae points, of a person's biometric characteristic or trait. For example, templates are not an image or description of the actual fingerprint or voice. In basic terms, templates are numerical representations of key points taken from a person's body. The template is commonly small in terms of computer memory use, and this allows for quick processing, which is a hallmark of biometric authentication. The template must be stored somewhere so that subsequent templates, created when a user tries to way the system using a sensor, can be compared. Some biometric experts claim it is impossible to reverse-engineer, or recreate, a person's print or image from the biometric template.

Matching

Matching is the comparison of two templates, the template produced at the time of enrollment (or at previous sessions, if there is continuous updating) with the one produced "on the spot" as a user tries to gain way by providing a biometric via a sensor. There are three ways a match can fail:

Failure to enroll. False match. False nonmatch.

Failure to enroll (or acquire) is the failure of the technology to citation distinguishing features accepted to that technology. For example, a small percentage of the citizen fails to enroll in fingerprint-based biometric authentication systems. Two reasons catalogue for this failure: the individual's fingerprints are not distinctive adequate to be picked up by the system, or the distinguishing characteristics of the individual's fingerprints have been altered because of the individual's age or occupation, e.g., an elderly bricklayer.

In addition, the possibility of a false match (Fm) or a false nonmatch (Fnm) exists. These two terms are frequently misnomered "false acceptance" and "false rejection," respectively, but these terms are application-dependent in meaning. Fm and Fnm are application-neutral terms to spin the matching process in the middle of a live sample and a biometric template. A false match occurs when a sample is incorrectly matched to a template in the database (i.e., an imposter is accepted). A false non-match occurs when a sample is incorrectly not matched to a truly matching template in the database (i.e., a legitimate match is denied). Rates for Fm and Fnm are calculated and used to make tradeoffs in the middle of protection and convenience. For example, a heavy protection emphasis errs on the side of denying legitimate matches and does not tolerate acceptance of imposters. A heavy emphasis on user convenience results in wee tolerance for denying legitimate matches but will tolerate some acceptance of imposters.

Biometric Technologies:

The function of a biometric technologies authentication system is to facilitate controlled way to applications, networks, personal computers (Pcs), and bodily facilities. A biometric authentication system is essentially a formula of establishing a person's identity by comparing the binary code of a uniquely specific biological or bodily characteristic to the binary code of an electronically stored characteristic called a biometric. The defining factor for implementing a biometric authentication system is that it cannot fall prey to hackers; it can't be shared, lost, or guessed. Simply put, a biometric authentication system is an sufficient way to replace the former password based authentication system. While there are many potential biometrics, at least eight mainstream biometric authentication technologies have been deployed or pilot-tested in applications in the public and secret sectors and are grouped into two as given,

facial recognition, voice recognition iris scan, retinal scan,

Contact Biometric Technologies:

For the purpose of this study, a biometric technology that requires an private to make direct caress with an electronic gismo (scanner) will be referred to as a caress biometric. Given that the very nature of a caress biometric is that a man desiring way is required to make direct caress with an electronic gismo in order to attain logical or bodily access. Because of the potential need of a man to make direct contact, many citizen have come to think a caress biometric to be a technology that encroaches on personal space and to be intrusive to personal privacy.

Fingerprint

The fingerprint biometric is an self-operating digital version of the old ink-and-paper formula used for more than a century for identification, primarily by law compulsion agencies. The biometric gismo involves users placing their finger on a platen for the print to be read. The minutiae are then extracted by the vendor's algorithm, which also makes a fingerprint pattern analysis. Fingerprint template sizes are typically 50 to 1,000 bytes. Fingerprint biometrics currently have three main application arenas: large-scale self-operating Finger Imaging Systems (Afis) generally used for law compulsion purposes, fraud stoppage in entitlement pro-grams, and bodily and computer access.

Hand/Finger Geometry

Hand or finger geometry is an self-operating measurement of many dimensions of the hand and fingers. Neither of these methods takes actual prints of the palm or fingers. Only the spatial geometry is examined as the user puts his hand on the sensor's surface and uses guiding poles in the middle of the fingers to properly place the hand and activate the reading. Hand geometry templates are typically 9 bytes, and finger geometry templates are 20 to 25 bytes. Finger geometry commonly measures two or three fingers. Hand geometry is a well-developed technology that has been fully field-tested and is really accepted by users.

Dynamic Signature Verification

Dynamic signature verification is an self-operating formula of examining an individual's signature. This technology examines such dynamics as speed, direction, and pressure of writing; the time that the stylus is in and out of caress with the "paper"; the total time taken to make the signature; and where the stylus is raised from and lowered onto the "paper." Dynamic signature verification templates are typically 50 to 300 bytes.

Keystroke Dynamics

Keystroke dynamics is an self-operating formula of examining an individual's keystrokes on a keyboard. This technology examines such dynamics as speed and pressure, the total time of typing a single password, and the time a user takes in the middle of hitting obvious keys. This technology's algorithms are still being developed to improve robustness and distinctiveness. One potentially useful application that may emerge is computer access, where this biometric could be used to verify the computer user's identity continuously.

Contactless Biometric Technologies:

A contactless biometric can whether come in the form of a passive (biometric gismo continuously monitors for the correct activation frequency) or active (user initiates activation at will) biometric. In whether event, authentication of the user biometric should not take place until the user voluntarily agrees to gift the biometric for sampling. A contactless biometric can be used to verify a persons identity and offers at least two size that caress biometric technologies cannot match. A contactless biometric is one that does not require undesirable caress in order to citation the required data sample of the biological characteristic and in that respect a contactless biometric is most adaptable to citizen of changeable ability levels.

Facial Recognition

Facial recognition records the spatial geometry of distinguishing features of the face. Dissimilar vendors use Dissimilar methods of facial recognition, however, all focus on measures of key features. Facial recognition templates are typically 83 to 1,000 bytes. Facial recognition technologies can encounter performance problems stemming from such factors as no cooperative behavior of the user, lighting, and other environmental variables. Facial recognition has been used in projects to recognize card counters in casinos, shoplifters in stores, criminals in targeted urban areas, and terrorists overseas.

Voice Recognition

Voice or speaker recognition uses vocal characteristics to recognize individuals using a pass-phrase. Voice recognition can be affected by such environmental factors as background noise. Additionally it is unclear whether the technologies really recognize the voice or just the pronunciation of the pass-phrase (password) used. This technology has been the focus of needful efforts on the part of the telecommunications business and Nsa, which continue to work on

improving reliability. A telephone or microphone can serve as a sensor, which makes it a relatively cheap and really deployable technology.

Iris Scan

Iris scanning measures the iris pattern in the colored part of the eye, although the iris color has nothing to do with the biometric. Iris patterns are formed randomly. As a result, the iris patterns in your left and right eyes are different, and so are the iris patterns of identical-cal twins. Iris scan templates are typically nearby 256 bytes. Iris scanning can be used speedily for both identification and verification

Applications because of its large amount of degrees of freedom. Current pilot programs and applications comprise Atms ("Eye-Tms"), grocery shop (for checking out), and the few International Airports (physical access).

Retinal Scan

Retinal scans quantum the blood vessel patterns in the back of the eye. Retinal scan templates are typically 40 to 96 bytes. Because users comprehend the technology to be somewhat intrusive, retinal scanning has not gained popularity with end-users. The gismo involves a light source shined into the eye of a user who must be standing very still within inches of the device. Because the retina can turn with obvious healing conditions, such as pregnancy, high blood pressure, and Aids, this biometric might have the potential to spin more information than just an individual's identity.

Emerging biometric technologies:

Many inventors, companies, and universities continue to crusade the frontier for the next biometric that shows potential of becoming the best. Emerging biometric is a biometric that is in the infancy stages of proven technological maturation. Once proven, an emerging biometric will evolve in to that of an established biometric. Such types of emerging technologies are the following:

Brainwave Biometric Dna Identification Vascular Pattern Recognition Body Odor Recognition Fingernail Bed Recognition Gait Recognition Handgrip Recognition Ear Pattern Recognition Body Salinity Identification Infrared Fingertip Imaging & Pattern Recognition

Security Issues:

The most common standardized encryption formula used to collect a company's infrastructure is the public Key Infrastructure (Pki) approach. This arrival consists of two keys with a binary string ranging in size from 1024-bits to 2048-bits, the first key is a public key (widely known) and the second key is a secret key (only known by the owner). However, the Pki must also be stored and inherently it too can fall prey to the same authentication limitation of a password, Pin, or token. It too can be guessed, lost, stolen, shared, hacked, or circumvented; this is even additional justification for a biometric authentication system. Because of the structure of the technology industry, development biometric protection a feature of embedded systems, such as cellular phones, may be simpler than adding similar features to Pcs. Unlike the personal computer, the cell phone is a fixed-purpose device. To successfully incorporate Biometrics, cell-phone developers need not collect retain from nearly as many groups as Pc-application developers must.

Security has all the time been a major concern for company executives and information technology professionals of all entities. A biometric authentication system that is correctly implemented can furnish unparalleled security, enhanced convenience, heightened accountability, first-rate fraud detection, and is highly sufficient in discouraging fraud. Controlling way to logical and bodily assets of a company is not the only concern that must be addressed. Companies, executives, and protection managers must also take into catalogue protection of the biometric data (template). There are many urban biometric legends about cutting off man finger or removing a body part for the purpose of gain access. This is not true for once the blood furnish of a body part is taken away, the unique details of that body part starts to deteriorate within minutes. Hence the unique details of the severed body part(s) is no longer in any health to function as an accepted input for scanners.

The best allembracing way to collect an company infrastructure, whether it be small or large is to use a smart card. A smart card is a transportable gismo with an embedded central processing unit (Cpu). The smart card can whether be fashioned to look like a credit card, identification card, radio frequency identification (Rfid), or a Personal Computer Memory Card International association (Pcmcia) card. The smart card can be used to store data of all types, but it is generally used to store encrypted data, human resources data, healing data, financial data, and biometric data (template). The smart card can be way via a card reader, Pcmcia slot, or nearnessy reader. In most biometric-security applications, the system itself determines the identity of the man who presents himself to the system. Usually, the identity is supplied to the system, often by presenting a machine-readable Id card, and then the system asked to confirm. This problem is "one-to- one matching." Today's Pcs can show the way a one-to-one match in, at most, a few seconds. One-to-one matching differs significantly from one-to-many matching. In a system that shop a million sets of prints, a one-to-many match requires comparing the presented fingerprint with 10 million prints (1 million sets times 10 prints/set). A smart card is a must when implementing a biometric authentication system; only by the using a smart card can an club satisfy all protection and legal requirements. Smart cards possess the basic elements of a computer (interface, processor, and storage), and are therefore very capable of performing authentication functions right on the card.

The function of performing authentication within the confines of the card is known as 'Matching on the Card (Moc)'. From a protection prospective Moc is ideal as the biometric template, biometric sampling and connected algorithms never leave the card and as such cannot be intercepted or spoofed by others (Smart Card Alliance). The problem with smart cards is the public-key infrastructure certificates built into card does not solve the problem of man stealing the card or creating one. A Ttp (Trusted Third Party) can be used to verify the authenticity of a card via an encrypted Mac (Media way Control).

Cultural Barriers/Perceptions:

People as diverse as those of changeable abilities are field to many barriers, theories, concepts, and practices that stem from the relative culture (i.e. Stigma, dignity or heritage) and perceptions (i.e. Religion or philosophical) of the international community. These factors are so great that they could encompass a study of their own. To that end, it is also theorized that to a obvious degree that the application of diversity factors from current theories, concepts, and practices may be capable of providing a sturdy framework to the supervision of employees with disabilities. Moreover, it has been implied that the term diversity is a synonymous reflection of the initiatives and objectives of affirmative operation policies. The conception of diversity in the workplace really refers to the differences embodied by the workforce members at large. The differences in the middle of all employees in the workforce can be equated to those employees of Dissimilar or diverse ethnic origin, racial descent, gender, sexual orientation, chronological maturity, and ability; in corollary minorities.

Advantages Of Biometric Technologies:

Biometric technologies can be applied to areas requiring logical way solutions, and it can be used to way applications, personal computers, networks, financial accounts, human reserved supply records, the telephone system, and invoke customized profiles to improve the mobility of the disabled. In a business-to-business scenario, the biometric authentication system can be connected to the company processes of a company to increase accountability of financial systems, vendors, and supplier transactions; the results can be highly beneficial.

The global reach of the Internet has made the services and products of a company available 24/7, in case,granted the buyer has a user name and password to login. In many cases the buyer may have forgotten his/her user name, password, or both. The buyer must then take steps to retrieve or reset his/her lost or forgotten login information. By implementing a biometric authentication system consumers can opt to register their biometric trait or smart card with a company's business-to-consumer e-commerce environment, which will allow a buyer to way their catalogue and pay for goods and services (e-commerce). The benefit is that a buyer will never lose or forget his/her user name or password, and will be able to show the way company at their convenience. A biometric authentications system can be applied to areas requiring bodily way solutions, such as entry into a building, a room, a safe or it may be used to start a motorized vehicle. Additionally, a biometric authentication system can really be connected to a computer-based application used to monitor time and attendance of employees as they enter and leave company facilities. In short, contactless biometrics can and do lend themselves to citizen of all ability levels.

Disadvantages Of Biometric Technologies:

Some people, especially those with disabilities may have problems with caress biometrics. Not because they do not want to use it, but because they feel a disability that whether prevents them from maneuvering into a position that will allow them to make use the biometric or because the biometric authentication system (solution) is not adaptable to the user. For example, if the user is blind a voice biometric may be more appropriate.

Biometric Applications:

Most biometric applications fall into one of nine normal categories:

Financial services (e.g., Atms and kiosks). Immigration and border control (e.g., points of entry, precleared frequent travelers, passport and visa issuance, asylum cases). Social services (e.g., fraud stoppage in entitlement programs). Health care (e.g., protection quantum for privacy of healing records). Physical way control (e.g., institutional, government, and residential). Time and attendance (e.g., change of time punch card). Computer protection (e.g., personal computer access, network access, Internet use, e-commerce, e-mail, encryption). Telecommunications (e.g., mobile phones, call center technology, phone cards, televised shopping). Law compulsion (e.g., criminal investigation, national Id, driver's license, correctional institutions/prisons, home confinement, smart gun).

Conclusion:

Currently, there exist a gap in the middle of the amount of feasible biometric projects and knowledgeable experts in the field of biometric technologies. The post September 11 th, 2002 attack (a.k.a. 9-11) on the World Trade center has given rise to the knowledge gap. Post 9-11 many nations have recognized the need for increased protection and identification protocols of both domestic and international fronts. This is however, changing as studies and curriculum connected to biometric technologies are beginning to be offered at more colleges and universities. A formula of end the biometric knowledge gap is for knowledge seekers of biometric technologies to partake in biometric seminar groups and biometric standards committees.

The solutions only needs the user to possess a minimum of require user knowledge and effort. A biometric clarification with minimum user knowledge and effort would be very welcomed to both the purchase and the end user. But, keep in mind that at the end of the day all that the end users care about is that their computer is functioning correctly and that the interface is friendly, for users of all ability levels. Alternative methods of authenticating a person's identity are not only a good custom for development biometric systems accessible to citizen of changeable ability level. But it will also serve as a viable alternative formula of dealing with authentication and enrollment errors.

Auditing processes and procedures on a regular basis while and after premise is an exquisite formula of ensuring that the clarification is functioning within normal parameters. A well-orchestrated biometric authentication clarification should not only preclude and detect an impostor in instantaneous, but it should also keep a collect log of the transaction activities for prosecution of impostors. This is especially important, because a great deal of Id theft and fraud involves employees and a collect log of the transaction activities will furnish the means for prosecution or quick resolution of altercations.

References:

Pankanti S, Bolle R & Jain A, Biometrics:The future of Identification Nalwa V, self-operating on-line signature verification Biometric Consortium homepage, http://Www.biometrics.org

she said Biometrics



No comments:

Post a Comment