System access biometric

Biometric security systems use biometric technology combined with some type of locking mechanism to control access to specific assets. In order to access an asset controlled by a biometric security system, an individual s biometric trait must be matched with an existing profile stored in a database. If there is a match between the two, the locking mechanism (which could be a physical lock, such as at a doorway an electronic lock, such as at a computer terminal or some other type of lock) is disengaged, and the individual is given access to the asset. 

A card may be a typical card or another type of device, such as a key fob or wand. These cards store electronic information, which can range from a simple code (i.e., the alphanumeric code on a Proximity card) to individualized personal data (i.e., biometric data on a Smartcard). The card reader reads the information stored on the card and sends it to the control unit, which determines the appropriate action to take when a card is presented. For example, in a card access system, the control unit compares the information on the card to stored access authorization information to determine if the card holder is authorized to proceed through the door. If the information stored in the card reader system indicates that the key is authorized to allow entrance through the doorway, the system disengages the lock and the key holder can proceed through the door. 

The client workstation can be established on Windows 2000 system and configured to enable for VPN connection to the remote network. Windows 2003 Server can be used as Network Access Server (NAS) for this purpose. The Radius biometric server can be installed on the same machine as NAS. The server may use MS SQL 2000 database for biometric templates storage. MS SQL database makes it easy to import biometric data from BioBase. MS SQL database interface must then be applied to Radius server. The enrolment station can be established on a remote Windows 2000 system. The next subsections depict the scenario elements. 

Security can be enhanced by automatically starting up the application when the IPC is powered on, preventing general access to the IPC operating system. Exiting the application shuts down the IPC and security is further extended by a no-reboot option on system failure. In applications of high security requirements, encryption, accountability measures (DAC, MAC), or biometric access control systems may be considered. - ... 

The former aspect will include protective measures through restrictions in the access. For instance, only authorised personnel should have access to the central server of the test facility and other computer hardware, to commimications equipment, and to electronic storage media held within specific computer rooms. While the physical security may not seem to pose real problems, achieving complete logical security may be much more difficult, although its fundamental aspects may be quite straightforward Logical security measures for the prevention of imauthorised access to the computerised system, as well as to applications and data, may be based on a system of extended password protection, which would include the imique identification of the respective user. Recent developments in biometric identification of individuals will certainly provide for additional possibilities in this area. 

Access to the system must be limited to authorized persons. The type of security will depend on whether the system is open or closed. Electronic signature technologies include identification codes (user names, passwords) or more sophisticated biometric systems (based on measurement of physical features such as palm prints, finger prints, or iris or retinal pattern scanners). The latter is expensive and less likely to be implemented, especially for multiple users. User names and passwords must be unique and never reassigned. Passwords should be changed periodically. 

A pass system may be initiated to check all entrants to the premises. Visitors can be screened by checking identification cards or prearranged passes. Employees may also be required to carry identification cards or to wear badges. Electronic badges or biometric identification points are used to monitor movement inside the premises and to limit access to certain locations. 

Main security solutions proposed to address security requirements of patient-monitoring systems reside in the areas of encryption and secure communication. Access-control techniques need to be developed to address the privacy issues in eHealth applications. In particular, procedures for authentication (user identification) and authorization (access right checking) are essential for acceptable and sustainable eHealth applications. The authentication function ensures that users are indeed who they claim to be. Therefore, an unauthorized party should not be able to receive or access a patient s medical data. Various techniques being considered include a combination of different authentication atomics. These atomics include biometric information (fingerprint, retina scan, typing pattern, etc.) and information the user knows (mother s maiden name), user possessions (e.g., smart card identification systems), and may also include current location and/or the end-user terminal identity (media access control [MAC] hardware address) and time of access. 

Modeling and simulation of biometric data are emerging technologies for educational and training purposes (public safety and healthcare, security access, and forensic systems). To model data for the study of patient s biometrics, as well as for training purposes, simulated, or synthetic, biometric data can be used. 

Limited research has been reported in the literature regarding secure communications in WBANs utilizing biometric information. Venkatasubramanian et al. provided an overview of security solutions in pervasive health care systems, where biomedical information was utihzed for securing data collected by medical sensors, and for controUing access to health information managed by pervasive health care systems. Cherukuri et al. proposed a biometrics-based key distribution scheme to secure the... 

In future, the interest of different parties in privacy relevant data in automotive systems might increase even more. Eor example biometric reference samples stored by future automotive biometric authentication systems would have to be especially protected to prevent potential adversaries from stealing these data. Impersonators might use this to generate faked biometric credentials for unauthorised access. 

---