KnoWho Authentication Server
The KnoWho® Authentication Server from Iridian Technologies adds significant network scalability and processing speed to enable iris recognition for large-scale applications. Iris recognition is the most accurate, non-invasive and easy to use biometric for secure identification. The KnoWho Authentication Server's dual match functions, verification of a claimed identity (1:1 match) and identification of an unknown entity (1:many match) are robust enough to support true Anonymous Authentication™ applications.
Easy Integration
The KnoWho Authentication Server is designed for easy integration into applications requiring fast, reliable and secure authentication. The server software accepts iris images originating from Iridian's PrivateID® technology in a Proof Positive™-certified camera. Proof Positive cameras are available for a variety of access needs, ranging from doorway access, to IT security, to walk-up, public use applications.
Storage and High-Speed Record Searching
The server's software has two major elements - a database component, which stores IrisCode® records, and a processing engine that creates and enrolls IrisCode records and performs real-time matching. The server enrolls the image into a database while providing a unique identifier, which can be configured to ensure absolute privacy.
During recognition, the KnoWho Authentication Server accepts an iris image or IrisCode template and performs a high-speed, real-time, exhaustive search to match the IrisCode template. When a match is found, a unique identification number is provided. When an Anonymous Authentication application is integrated with the server software, this unique identification number is the only label needed to match a request for authentication with a stored IrisCode template. Names, addresses or privileged information need not be stored in the database with the IrisCode records and may be secured elsewhere.
Software Developer's Suite
A KnoWho Authentication Developer's Suite is available with development tools to enable application building based on PrivateID and the KnoWho Authentication Server. Components of the suite include: KnoWho Authentication Server Software Developer's Kit (SDK), PrivateID Recognition Demo Application, IrisID Anonymous Authentication application, Computer Associates eTrust Iris Authentication Agent, Netegrity Siteminder Iris Authentication Agent, support, training, and more. The suite is available to Iridian partners. Please contact Iridian for details regarding qualification and pricing.
The KnoWho Authentication Server stores and matches IrisCode templates in either verification or identification mode.
|
Features
- Verification of a claimed identity (1:1 match)
- Identification of an unknown identity (1:many match)
- Enroll, update and delete functions
- Operator authentication
- Small, 512 byte IrisCode templates
- 3DES encrypted, signed iris images protected from replay with nonces
- Supports Oracle8i or Microsoft SQL Server 7.0/2000 databases
- Multi-threaded sockets interface
- Database level data encryption
- API security (encryption, MAC digital signatures, nonce transaction integrity)
- Automatic storage of IrisCode templates and iris images (average 12KB)
- Optional storage for face images (20KB)
Benefits
- Flexible 1:1 or 1:all recognition
- Complete fraud detection during enrollment
- Complete privacy through Anonymous Authentication
- Compatibility with Proof Positive-certified, PrivateID cameras
- Three levels of auditing
- All transactions auditable
- High-speed performance returns result in a few seconds, even when using a database of a million records*
*See KnoWho Authentication Server Performance and Scalability White Paper for details.
Specifications
Recognition (1:n matching, no CIN/EIN* required)
Performance: Search >285,000 records/second using 2.2 GHz Dual Pentium system.
Supported Recognition APIs: Recognize Customer, Recognize Operator
Request: Iris Image/IrisCode, Face Image, Request Face Image Flag
Response: CIN/EIN, Face Image (if requested), Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Customer Audit ID, Transaction Type, EIN, Performance Statistics Data, Iris Image/IrisCode/Face Image, Device Unique ID, Time Stamp, Error Code, Error Summary, and Error Detail
Verification (1:1 match, CIN/EIN required)
Supported Verify APIs: Verify Customer, Verify Operator
Request: CIN/EIN, Iris Image/IrisCode, Face Image, Request Face Image Flag
Response: Face Image (if requested), Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Customer Audit ID, Transaction Type, EIN, Performance Statistics, Iris Image/IrisCode, Device Unique ID, Time Stamp, Error Code, Error Summary, and Error Detail
Enroll
Supported Enroll APIs: Enroll Customer (Operator assisted or self enrollment), Enroll Operator
Request: CIN/EIN (if Null, server creates), Right/Left Iris Images/IrisCode, Face image (optional), Operator Iris Image/IrisCode (optional)
Response: CIN/EIN, Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Transaction Type, Customer Audit ID, EIN, Performance Statistics, Iris Images, IrisCode, Face Image, Device Unique ID, Time Stamp, Error Code, Error Summary, and Error Detail
Update
Supported Update APIs: Update Customer (Operator assisted or self update), Update Operator
Request: CIN/EIN, Right/Left Iris Images/IrisCode, Face Image (optional), Operator Iris Image/IrisCode (optional)
Response: Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Transaction Type, Customer Audit ID, EIN, Performance Statistics, Iris Images, IrisCode, Face Image, Device Unique ID, Time Stamp, Error Code, Error Summary, and Error Detail
Delete
Supported Delete APIs: Delete Customer (Operator assisted or self delete), Delete Operator
Request: CIN/EIN, Iris Image/IrisCode, Operator Iris Image/IrisCode (optional)
Response: Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Transaction Type, Customer Audit ID, EIN, Performance Statistics, Device Unique ID, Time Stamp, Error Code, Error Summary, and Error Detail
Data Retrieval
Supported APIs: Retrieve Customer Iris Images, Retrieve Operator Iris Images, Retrieve Customer IrisCodes, Retrieve Operator IrisCodes, Retrieve Customer Face Image, Retrieve Operator Face Image
Request: CIN/EIN, Data Format
Response: Iris Images/IrisCodes or Face Image, Transaction ID, Performance Statistics, Error Information (code/summary/detail)
Audit Trail: Transaction ID, Transaction Type, Customer Audit ID, EIN, Time Stamp, Error Code, Error Summary, and Error Detail
Minimum Hardware Requirements**:
Windows:
o Dual-processor Pentium® II PC running at 400 MHZ or greater, with 256 MB RAM or greater
o 3 Ultra-wide SCSI disks, which are 9 GB with an average seek time of less than or equal to 9 ms, and an average latency of less than 3 ms in a RAID 5 configuration.
UNIX:
o Dual-processor Sun Enterprise 450 running at 400 MHZ or greater, with 1GB RAM or greater
o 3 Ultra-wide SCSI 3 drives, which are 9 GB with an average seek time of less than or equal to 9 ms, and an average latency of less than 3 ms.
Operating Systems:
o Windows® 2000 Professional Server with service pack 2, Windows® 2000 Advanced Server with service pack 1, Windows® XP Professional, Windows® NT Server 4.0 with service pack 6
o Solaris 8
Databases Supported:
o Oracle 8i, Microsoft SQL Server 7.0, Microsoft SQL Server 2000
SDKs Available:
o C++, Java
* CIN: Customer Identification Number / EIN: Employee Identification Number
** Communications to outside processes are a procedural interface to the KnoWho server which are sockets based using the Winsock protocols.
