Biometric access control

Security can be enhanced by automatically starting up the application when the IPC is powered on, preventing general access to the IPC operating system. Exiting the application shuts down the IPC and security is further extended by a no-reboot option on system failure. In applications of high security requirements, encryption, accountability measures (DAC, MAC), or biometric access control systems may be considered. - ... 

The present concept deals with the first part of the entire PKI concept software evaluation, biometric device implementation, and biometric access control. 

Access control—A method of restricting the movement of persons into or within a protected area by manual (guards), hardware (locks and keys), or software (electronic card or biometric readers). Accessible—An ADA term about having the legally required features and/or qualities that ensure entrance, participation, and usability of places, programs, services, and activities by individuals with a wide variety of disabilities. 

Main security solutions proposed to address security requirements of patient-monitoring systems reside in the areas of encryption and secure communication. Access-control techniques need to be developed to address the privacy issues in eHealth applications. In particular, procedures for authentication (user identification) and authorization (access right checking) are essential for acceptable and sustainable eHealth applications. The authentication function ensures that users are indeed who they claim to be. Therefore, an unauthorized party should not be able to receive or access a patient s medical data. Various techniques being considered include a combination of different authentication atomics. These atomics include biometric information (fingerprint, retina scan, typing pattern, etc.) and information the user knows (mother s maiden name), user possessions (e.g., smart card identification systems), and may also include current location and/or the end-user terminal identity (media access control [MAC] hardware address) and time of access. 

Biometric security systems use biometric technology combined with some type of locking mechanism to control access to specific assets. In order to access an asset controlled by a biometric security system, an individual s biometric trait must be matched with an existing profile stored in a database. If there is a match between the two, the locking mechanism (which could be a physical lock, such as at a doorway an electronic lock, such as at a computer terminal or some other type of lock) is disengaged, and the individual is given access to the asset. 

A card may be a typical card or another type of device, such as a key fob or wand. These cards store electronic information, which can range from a simple code (i.e., the alphanumeric code on a Proximity card) to individualized personal data (i.e., biometric data on a Smartcard). The card reader reads the information stored on the card and sends it to the control unit, which determines the appropriate action to take when a card is presented. For example, in a card access system, the control unit compares the information on the card to stored access authorization information to determine if the card holder is authorized to proceed through the door. If the information stored in the card reader system indicates that the key is authorized to allow entrance through the doorway, the system disengages the lock and the key holder can proceed through the door. 

The Enrolment Terminal (cf. Figure 12) uses the NASK Iris Module and BioBase Access Module. A separate application is developed that uses common elements of NASK biometrics modules, namely, the device library to control the hardware, and the algorithms library to process iris images and calculate iris features vectors. 

Whether or not at the start of a computer session individuals can gain access only through entry of their user I.D. and password or through biometric control... 

---