Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 09 May 2006 15:46:44 +0200
From:      Fredrik Lindberg <fli+freebsd-hackers@shapeshifter.se>
To:        Pawel Jakub Dawidek <pjd@FreeBSD.org>
Cc:        freebsd-hackers@freebsd.org, aanton@spintech.ro, Cesar <listas@itm.net.br>
Subject:   Re: Fingerprint Authentication
Message-ID:  <44609D44.3090502@shapeshifter.se>
In-Reply-To: <20060509074203.GA91101@garage.freebsd.pl>
References:  <00fb01c66fb2$a8e157c0$0501010a@ironman> <445A5F48.60303@spintech.ro> <200605051009.49344.doconnor@gsoft.com.au> <445AF8AB.9080008@shapeshifter.se> <445B35EA.5080009@spintech.ro> <445B48E6.3070000@shapeshifter.se> <445B544D.5070107@spintech.ro> <445B59EE.6040701@shapeshifter.se> <20060509074203.GA91101@garage.freebsd.pl>
next in thread | previous in thread | raw e-mail | index | archive | help 
Pawel Jakub Dawidek wrote:
> On Fri, May 05, 2006 at 03:58:06PM +0200, Fredrik Lindberg wrote:
> +> Alin-Adrian Anton wrote:
> +> >Fredrik Lindberg wrote:
> +> >>
> +> >>But that would sort of defeat the whole purpose of biometric authentication and you could really just use public keys instead
> +> >>which would be a lot faster and easier than scanning your finger
> +> >>at each login. :)
> +> >>
> +> >Unless you locally encrypt your private key with information gathered by the fingerprint reader, as a "password".
> +> 
> +> That's exactly the problem with, at least, UPEKs driver. If you scan
> +> one of your fingers twice you'll get two "different" BioAPI records.
> 
> That's right, but the idea with asymmetric crypto is very accurate.
> Such fingerprint reader should have a "secure chip" with your private
> key and on authentication, you should provide data from your finger scan
> and data to sign - on match, it should return signed data, which you can
> use to continue authentication process.
> 

Ah, yes with support from the hardware that would certainly be possible.
But I was more or less referring to the current state of UPEKs hardware
and (binary only/closed source) drivers.

Fredrik Lindberg

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44609D44.3090502>