際際滷

際際滷Share a Scribd company logo

Identity as a Services in a Mobile World - David Harding CTO IWSinc

Violet Le, MBA MIS
Violet Le, MBA MIS

ImageWare Systems is a company that provides identity management solutions using multi-modal biometrics. It has over 15 years of experience in biometric identity management. It offers a cloud-based biometric identity platform called GoCloudID that uses multiple biological traits like fingerprints, iris scans, etc. to securely verify identities. GoCloudID provides a scalable solution to securely manage biometric identity verification on mobile devices.

1 of 26
Downloaded 17 times
IDENTITY-AS-A-SERVICE IN A MOBILE WORLD Cloud Managementof Multi-Modal Biometrics
則р Headquarters in San Diego, CA 則р Offices worldwide (US, Canada, Germany, Mexico) 則р Over 15 years of experience in biometric identity management, law enforcement, border control, airport security, biometric smart-cards, military, intelligence, and more David Harding Chief Technology Officer & Vice President dharding@iwsinc.com ImageWare速 Systems, Inc.
IWS Has Been the Pioneering Force and Established Innovator in biometric security for over 15 years, with a strong installed-base, providing advanced solutions to: 則р San Bernardino County Sheriffs Department 則р U.S. Department of Veteran Affairs 則р Country of Mexico孫 則р LAX Los Angeles World Airports 則р Arizona Department of Public Safety 則р Canadian Air Transport Security Authority 則р New South Wales Police (Australia) 孫Indirect via a prime contractor partnership
KILL THE PASSWORD: WHY A STRING OF CHARACTERS CANT PROTECT US ANYMORE Wired Magazine Recently Ran the Headline....
MOBILE DEVICES ARE EVER-PRESENT AND ARE REPLACING THE PC Almost 40% of Americans used smart mobile devices for banking and purchases Source: Federal Reserve 2012 Android devices are expected to almost triple over 5 years, while iOS could grow about 140% Source: Gartner Group 2013
Source: U.S. Federal Reserve Bank 2014 6 Among consumers who do not use mobile financial services, the principal reasons cited for not using the services are perceptions of limited usefulness and benefits, and concerns about security. SECURITY REMAINS THE BIGGEST CONCERN
Cloud Computing and The Pervasive Growth of Smart, Mobile Devices has made secure identity authentication an absolute necessity. And an essential reality.
THAT REALITY IS MULTI-MODAL BIOMETRICS. 8
MULTI-MODAL BIOMETRICS UNITES MULTIPLE BIOLOGICAL TRAITS TO SECURELY CONFIRM AN IDENTITY Face Hand Geometry Signature DNA Voice PalmFinger Veins Iris Fingerprint Behavioral Retina
MULTI-MODAL BIOMETRICS OFFERS A GREATER LEVEL OF SECURITY Single-modal biometrics, historically and effectively, have serviced a defined and limited-size populous and situation. Multi-modal biometrics can be used together and/or singularly based on the situation and environment.
THE U.S. GOVERNMENT CONFIRMED MULTI- MODAL BIOMETRIC IDENTITY MANAGEMENT AS THE ONLY WAY TO MOVE FORWARD. FBI, Dept. of Defense, Law Enforcement, International Civil Aviation Organization, Homeland Security Presidential Directives 5 & 12
Multi-Modal Biometrics Will Become as Ubiquitous as Smartphones Mobile devices are the perfect biometric capture device. We have them with us. They give us access to services and data anywhere anytime.
Issues to Mobile Biometric Adoption 則р Match-on-Device vs. Match-in-Cloud 則р Scalability 則р Reliability 則р Security 則р Modality Selection 則р Maximizing Identity Verification Services 則р Ease of Use
Match-on-Device Susceptible to: 則рTheft of biometric enrollment 則рReplacement of biometric enrollment 則рReverse engineering of biometric template (hill-climbing attack) Does not support: 則рEnroll once, use on many applications and devices 則рDuplicity check for enrollment verification 則рTransfer of biometrics to new devices and/or applications Does not scale and is not trusted!
Match-in-Cloud 則р Single, secure biometric enrollments for each modality 則р Single, trusted source for biometric identity verification 則р Device independent enroll once, use on any device 則р Service and application independent 則р Use the right biometric for the situation and environment 則р Use multiple biometrics for high-confidence required transactions and to prevent spoofing
Whats Needed to Make it Work? A real-time, high performance, highly scalable, multi-modal, biometric database Must support todays technology as well as tomorrows Must scale to support large populations Must support anonymous verification
GoCloudID The Scalable, Cloud-based, Biometric, Identity Management Platform 則р Reliably manages access to biometric enrollment & verification 則р Can be used as an end-to-end or modular solution 則р Offers full and anonymous identity management 則р Conveniently enables applications on all mobile devices 則р Deployment is rapidly integrated, flexible & scalable 則р Operates as a multi-tenant system 則р Web portal is customer/partner provisioning 則р No start-up costs 則р Pay-as-you-go and scale-as-you-need The Only Multi-Modal CloudID SaaS/PaaS License and/or Subscription Service Today
IWSs Patented Biometric Engine速 2.0, the backend database of GoCloudID, delivers revolutionary capabilities 則р Enrollment, identity & verification management of unlimited population sizes 則р Hardware & algorithm independent processing 則р Compatibility with all biometric products 則р Future-proof, plug-n-play flexibility 則р Full and anonymous biometric identity verification 則р Software development kits License and/or subscription service offering as part of GoCloudID
IWSs Patented GoMobile Interactive The Cloud-Based, Interactive, Push Messaging Server for Mobile 則р Pushes interactive messages to mobile devices 則р Customized message workflows and integrated biometric identity authentication 則р Software development kits for rapid integration 則р Server 則р Mobile applications 則р Enables in and out-of-band identity authentication License and/or subscription service offering as part of GoCloudID
Making it Work in the Real World / Example - Out-of-Band Authentication Out-of-Band Authentication uses a mobile device to verify the identity of someone who is attempting to access data or services Biometrically enables: 則р Website logins 則р HTML5 mobile applications 則р Mobile wallet and credit card transactions 則р Loan applications 則р Anytime you need to verify an identity
Steps to Biometric Verification Using a Mobile Device using Out-of-Band Three factors: 則р What you have 則р What you know 則р Who you are Steps to out-of-band identity verification: 則р Invoke the device (push message) 則р Capture credential(s) and/or biometric(s) 則р Verify the identity in the cloud and notify the service
IWSs GoVerifyID Mobile Application Turn-key, Out-Of-BandAuthentication Using a Mobile Device 則р Mobile application for iOS and Android devices 則р Receives authentication push messages from GoMobile Interactive 則р Collects requested biometric(s) and securely sends them to the cloud for identity authentication (GoCloudID) 則р No mobile application coding required License and/or subscription service offering as part of GoCloudID
How it Works 1. Online or offline purchase 2. Authenticate 3. Push the message request to authenticate the identity 5. Biometric(s) are submitted for authentication in the cloud 6. Identity verified 7. Transaction approved! 4. Capture biometric(s) for authentication in the cloud
Example 2: pillphone速 transforms medication compliance with mobile technologies & patient engagement caregiver provider pharmacy pillphone速 is an Enterprise level FDA cleared mobile communication platform that: 則рConnects patient with healthcare providers 則рPromotes interactive communication 則рEnsures medical compliance with personalized reminders 則рIntegrates with medical supply chains 則рEmpowers disease management and wellness education Cleared patient Its secured with multi-modal biometric enabled identity management and interactive push messaging to ensure patient verification.
THE TREND IS IN MOTION. The future of identity authentication is multi-modal biometrics. Using Cloud and SaaS, adding scalable, biometric identity management and out-of-band authentication to mobile applications has never been easier or more cost effective.
SECURING YOUR FUTURE

More Related Content

Identity as a Services in a Mobile World - David Harding CTO IWSinc

  • 1. IDENTITY-AS-A-SERVICE IN A MOBILE WORLD Cloud Managementof Multi-Modal Biometrics
  • 2. 則р Headquarters in San Diego, CA 則р Offices worldwide (US, Canada, Germany, Mexico) 則р Over 15 years of experience in biometric identity management, law enforcement, border control, airport security, biometric smart-cards, military, intelligence, and more David Harding Chief Technology Officer & Vice President dharding@iwsinc.com ImageWare速 Systems, Inc.
  • 3. IWS Has Been the Pioneering Force and Established Innovator in biometric security for over 15 years, with a strong installed-base, providing advanced solutions to: 則р San Bernardino County Sheriffs Department 則р U.S. Department of Veteran Affairs 則р Country of Mexico孫 則р LAX Los Angeles World Airports 則р Arizona Department of Public Safety 則р Canadian Air Transport Security Authority 則р New South Wales Police (Australia) 孫Indirect via a prime contractor partnership
  • 4. KILL THE PASSWORD: WHY A STRING OF CHARACTERS CANT PROTECT US ANYMORE Wired Magazine Recently Ran the Headline....
  • 5. MOBILE DEVICES ARE EVER-PRESENT AND ARE REPLACING THE PC Almost 40% of Americans used smart mobile devices for banking and purchases Source: Federal Reserve 2012 Android devices are expected to almost triple over 5 years, while iOS could grow about 140% Source: Gartner Group 2013
  • 6. Source: U.S. Federal Reserve Bank 2014 6 Among consumers who do not use mobile financial services, the principal reasons cited for not using the services are perceptions of limited usefulness and benefits, and concerns about security. SECURITY REMAINS THE BIGGEST CONCERN
  • 7. Cloud Computing and The Pervasive Growth of Smart, Mobile Devices has made secure identity authentication an absolute necessity. And an essential reality.
  • 9. MULTI-MODAL BIOMETRICS UNITES MULTIPLE BIOLOGICAL TRAITS TO SECURELY CONFIRM AN IDENTITY Face Hand Geometry Signature DNA Voice PalmFinger Veins Iris Fingerprint Behavioral Retina
  • 10. MULTI-MODAL BIOMETRICS OFFERS A GREATER LEVEL OF SECURITY Single-modal biometrics, historically and effectively, have serviced a defined and limited-size populous and situation. Multi-modal biometrics can be used together and/or singularly based on the situation and environment.
  • 11. THE U.S. GOVERNMENT CONFIRMED MULTI- MODAL BIOMETRIC IDENTITY MANAGEMENT AS THE ONLY WAY TO MOVE FORWARD. FBI, Dept. of Defense, Law Enforcement, International Civil Aviation Organization, Homeland Security Presidential Directives 5 & 12
  • 12. Multi-Modal Biometrics Will Become as Ubiquitous as Smartphones Mobile devices are the perfect biometric capture device. We have them with us. They give us access to services and data anywhere anytime.
  • 13. Issues to Mobile Biometric Adoption 則р Match-on-Device vs. Match-in-Cloud 則р Scalability 則р Reliability 則р Security 則р Modality Selection 則р Maximizing Identity Verification Services 則р Ease of Use
  • 14. Match-on-Device Susceptible to: 則рTheft of biometric enrollment 則рReplacement of biometric enrollment 則рReverse engineering of biometric template (hill-climbing attack) Does not support: 則рEnroll once, use on many applications and devices 則рDuplicity check for enrollment verification 則рTransfer of biometrics to new devices and/or applications Does not scale and is not trusted!
  • 15. Match-in-Cloud 則р Single, secure biometric enrollments for each modality 則р Single, trusted source for biometric identity verification 則р Device independent enroll once, use on any device 則р Service and application independent 則р Use the right biometric for the situation and environment 則р Use multiple biometrics for high-confidence required transactions and to prevent spoofing
  • 16. Whats Needed to Make it Work? A real-time, high performance, highly scalable, multi-modal, biometric database Must support todays technology as well as tomorrows Must scale to support large populations Must support anonymous verification
  • 17. GoCloudID The Scalable, Cloud-based, Biometric, Identity Management Platform 則р Reliably manages access to biometric enrollment & verification 則р Can be used as an end-to-end or modular solution 則р Offers full and anonymous identity management 則р Conveniently enables applications on all mobile devices 則р Deployment is rapidly integrated, flexible & scalable 則р Operates as a multi-tenant system 則р Web portal is customer/partner provisioning 則р No start-up costs 則р Pay-as-you-go and scale-as-you-need The Only Multi-Modal CloudID SaaS/PaaS License and/or Subscription Service Today
  • 18. IWSs Patented Biometric Engine速 2.0, the backend database of GoCloudID, delivers revolutionary capabilities 則р Enrollment, identity & verification management of unlimited population sizes 則р Hardware & algorithm independent processing 則р Compatibility with all biometric products 則р Future-proof, plug-n-play flexibility 則р Full and anonymous biometric identity verification 則р Software development kits License and/or subscription service offering as part of GoCloudID
  • 19. IWSs Patented GoMobile Interactive The Cloud-Based, Interactive, Push Messaging Server for Mobile 則р Pushes interactive messages to mobile devices 則р Customized message workflows and integrated biometric identity authentication 則р Software development kits for rapid integration 則р Server 則р Mobile applications 則р Enables in and out-of-band identity authentication License and/or subscription service offering as part of GoCloudID
  • 20. Making it Work in the Real World / Example - Out-of-Band Authentication Out-of-Band Authentication uses a mobile device to verify the identity of someone who is attempting to access data or services Biometrically enables: 則р Website logins 則р HTML5 mobile applications 則р Mobile wallet and credit card transactions 則р Loan applications 則р Anytime you need to verify an identity
  • 21. Steps to Biometric Verification Using a Mobile Device using Out-of-Band Three factors: 則р What you have 則р What you know 則р Who you are Steps to out-of-band identity verification: 則р Invoke the device (push message) 則р Capture credential(s) and/or biometric(s) 則р Verify the identity in the cloud and notify the service
  • 22. IWSs GoVerifyID Mobile Application Turn-key, Out-Of-BandAuthentication Using a Mobile Device 則р Mobile application for iOS and Android devices 則р Receives authentication push messages from GoMobile Interactive 則р Collects requested biometric(s) and securely sends them to the cloud for identity authentication (GoCloudID) 則р No mobile application coding required License and/or subscription service offering as part of GoCloudID
  • 23. How it Works 1. Online or offline purchase 2. Authenticate 3. Push the message request to authenticate the identity 5. Biometric(s) are submitted for authentication in the cloud 6. Identity verified 7. Transaction approved! 4. Capture biometric(s) for authentication in the cloud
  • 24. Example 2: pillphone速 transforms medication compliance with mobile technologies & patient engagement caregiver provider pharmacy pillphone速 is an Enterprise level FDA cleared mobile communication platform that: 則рConnects patient with healthcare providers 則рPromotes interactive communication 則рEnsures medical compliance with personalized reminders 則рIntegrates with medical supply chains 則рEmpowers disease management and wellness education Cleared patient Its secured with multi-modal biometric enabled identity management and interactive push messaging to ensure patient verification.
  • 25. THE TREND IS IN MOTION. The future of identity authentication is multi-modal biometrics. Using Cloud and SaaS, adding scalable, biometric identity management and out-of-band authentication to mobile applications has never been easier or more cost effective.