biometrics

Rick Smith at Secure Computing rick_smith at securecomputing.com
Mon Jan 28 18:00:17 EST 2002 

The essential problem I've always seen with biometrics (and one that 
Dorothy Denning acknowledged in her recent op ed piece without seriously 
examining) is the question of whether it's as efficient to deploy and 
manage biometrics safely as it is to deploy and manage some keyed 
alternative like smart cards or other tokens.

Once you start embedding crypto secrets into your biometric reader, you are 
no longer managing biometrics. You're now managing BOTH biometrics AND a 
bunch of crypto keys. Why not just save yourself the administrative 
headache, deploy tokens, and use that crypto key for authentication?

I'm sure there are applications where biometrics make sense (ATMs, door 
security, and other closed systems like that) but I just don't see them 
working in an open system where your main problem is to associate the 
endpoint with a person. If you also need to separately authenticate the 
endpoint, and that's what everyone recommends, then the system costs go up 
even more.

My favorite biometric implementation is the "fingerprint as PIN" token, 
which several vendors make. There's the Sony Puppy, a credit card 
calculator sized token with a USB cord and an embedded public key pair. 
There are also various PCMCIA readers that (apparently) you can plug in to 
your laptop to provide a biometric lock.

My impression, however, is that these readers provide a PIN-like resistance 
to attack. Once you've cranked the false rejections down to the point that 
it's convenient, the false positives are approaching PIN levels (2^13 
guesses on average).

A nice feature of the "fingerprint as PIN" tokens is, of course, that the 
print never leaves the card. You still have to worry about images of 
fingerprints or rubber fingers, of course. The print is a back-up for 
physical possession.


Rick.
smith at securecomputing.com            roseville, minnesota
"Authentication" in bookstores http://www.visi.com/crypto/




---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com

More information about the cryptography mailing list