Скачать презентацию AFCEA Tech Net Europe Identity and Authentication Management Скачать презентацию AFCEA Tech Net Europe Identity and Authentication Management

36ebdcd002563229163d0bfb8ee603c1.ppt

  • Количество слайдов: 21

AFCEA Tech. Net Europe Identity and Authentication Management Systems for Access Control Security IDENTITY AFCEA Tech. Net Europe Identity and Authentication Management Systems for Access Control Security IDENTITY MANAGEMENT Rui Ribeiro Pereira Madrid 5 th June 2009 AFCEA PORTUGAL Capítulo 226

AFCEA Tech. Net Europe Global Challenges • Globalization – Cultural – Financial – Trade AFCEA Tech. Net Europe Global Challenges • Globalization – Cultural – Financial – Trade – Information – …. • Terrorism • Enable Information Sharing Across Boundaries • Protection of Infrastructures • Mass Migration Flows • Provide better service to citizens

AFCEA Tech. Net Europe Global Answers – – – – – Real Time Identity AFCEA Tech. Net Europe Global Answers – – – – – Real Time Identity Verification Document Authentication Electronic Passports National Identity Cards Centralized Biometric Data Bases Centralized Event Data Bases Central ize Government intelligence and law Enforcement d Bio metr ic information interoperability Data Base s World globalization implies more people mobility and a need for more VISA Control Interoperabil ility Implementation of Frequent Travel Programs Betwe en agen cies a nd instituti ons Automatic document authentication for secure borders (“watch lists”) Monitoring, record and mass migration flows Efficiency, Effectiveness in More Efficiency, Effectiveness in CITIZEN AUTHENTICATION Identity Verification and , Documental Authentication Autom AFI S Secu rity a ase Identif ted Fingert ip In cre ce Th reats, icatio n Redu sk Sys tem imi ze Ri Min

AFCEA Tech. Net Europe WHAT IS THE REAL PROBLEM? AFCEA Tech. Net Europe WHAT IS THE REAL PROBLEM?

AFCEA Tech. Net Europe World Questions • Should I grant this individual with a AFCEA Tech. Net Europe World Questions • Should I grant this individual with a credential? • Has for this individual already been issued a credential? • Is this person authorized to access the information? • Is this person authorized to access the building • Is this person authorized to access to this service? • Has this person the privilege to access these citizen rights?

AFCEA Tech. Net Europe How Do I know Who You Are? • • Did AFCEA Tech. Net Europe How Do I know Who You Are? • • Did You Know : – The nineteen 9/11 hijackers had a total of 63 valid driver licenses – There approximately 5 million identity thefts yearly in US – 7 million victims of credit card fraud only in US – People do not protect their credentials Methods based on credentials, passwords and Identities based on external reference number are not currently adequate.

Types Identification Fraud AFCEA Tech. Net Europe Changing Identity How? Assume someone else’s Identity Types Identification Fraud AFCEA Tech. Net Europe Changing Identity How? Assume someone else’s Identity Faking Multiple Identities How? Issuing Several Documents

Biometric Recognition AFCEA Tech. Net Europe • Personal recognition based on: • I S Biometric Recognition AFCEA Tech. Net Europe • Personal recognition based on: • I S NO T EN OU GH ! !!! !. . . What you Know (PIN Card) – Who you are – – What you have (ID Card) We need a more powerful tool: Biometrics! • Biometric Recognition - recognition of a person by his own characteristics and then link that body to an external trustful established identity • Biometric Credentialing – documents with univocally identifiable, i. e. , documents linked to the individual unique characteristics (biometric)

AFCEA Tech. Net Europe 3 Elements of Identity – Biometric Identity – • Attributes AFCEA Tech. Net Europe 3 Elements of Identity – Biometric Identity – • Attributes that are unique to an individual – Identity Attributes – • Components of a person that are given at birth – Biographical Identity – • Build up of the identity over time, life events that cover how an identity , a person interacts with the society Biometric Identity Fingertips, voice, facial structure, DNA profile, hand geometry, heat radiation, etc… Biographical Identity (Life Events) Registration of birth, details of education/qualifications, electoral register entries, details of benefits claims, taxes paid, employment history, registrations marriage, property ownership, mortgage account information, insurance policies, history of interaction with organizations (banks creditors, utilities, …) Attributed Identity Full name, date and place of birth, parents’ names and addresses, etc…

Identity Challenges AFCEA Tech. Net Europe – Challenges • Is the applicant presenting “authentic” Identity Challenges AFCEA Tech. Net Europe – Challenges • Is the applicant presenting “authentic” documents? • Does the document belong to the applicant? • Real Time identity verification with external party databases? – Solutions • Enable officers to check and file proofing documents • Verify if applicants exist in the database • Verify identity biometric features • Ensure accurate data collection at the front end Document Identity External DB: Documents Watchlists Documents Authentication Identity Verification Identity Analyses Security Management

AFCEA Tech. Net Europe Identity Management System Requirements One Person – Establishing a trusted AFCEA Tech. Net Europe Identity Management System Requirements One Person – Establishing a trusted identity – Prevent document fraud – Easy identity verification One Identity One Document – Establishing a reliable identity authentication – Provide convenient access to services – Prevent misuse – Reduce identity management costs – Avoid identity theft AFIS Automated Finguerprinter Identification System ABIS Automated Biometric Identification System

AFCEA Tech. Net Europe Identity Technology Biometrics – Fingerprint scan – Hand geometry – AFCEA Tech. Net Europe Identity Technology Biometrics – Fingerprint scan – Hand geometry – Retina scan – Iris scan – Facial recognition – Voice recognition – Signature recognition • Access cards – Magnetic swipe cards – Proximity cards – Smart cards • Keypad entry systems • Access barriers (turnstiles/revolving doors) • • Accurate • Cost • Speed • Ease to Use • Robustness • Security • Privacy ROI

Identity Lifecycle l Identity verification: document, live capture and source database information Usage l Identity Lifecycle l Identity verification: document, live capture and source database information Usage l Verification of identities Usage Proofing Identity Lifecycle Enrollment AFCEA Tech. Net Europe Proofing Issuance l Production of tamper-proof ID credentials Enrollment l Digital capture and storage of multiple pieces of data, images and biometrics

AFCEA Tech. Net Europe HOW CAN TODAY TECHNOLOGY HELP? AFCEA Tech. Net Europe HOW CAN TODAY TECHNOLOGY HELP?

AFCEA Tech. Net Europe ID Management Systems Solution Identity Management Systems Confidential © 2007 AFCEA Tech. Net Europe ID Management Systems Solution Identity Management Systems Confidential © 2007 Sinfic All rights reserved.

AFCEA Tech. Net Europe Credential and Biometric Interoperable Platform Identity Life Cicle Identity • AFCEA Tech. Net Europe Credential and Biometric Interoperable Platform Identity Life Cicle Identity • Biographical Data ID Proofing Passport • Full Name • Date and Place of Birth ID Enrollment • Parents Name • Biometric Data • Fingertip • Face ID Credentialing Issuance • Signature • Iris ID Credencialling Usage ID Authentication ID Verification Drivers License Mortgage Account Biometric Identity and Credential Interoperability Platform Electoral Register Entries Marriage Register Taxes National ID Card Social Security Card Health care Benefits

AFCEA Tech. Net Europe One Person, One Identity, One Document Identity and Credential Interoperability AFCEA Tech. Net Europe One Person, One Identity, One Document Identity and Credential Interoperability Center Efficiency, Effectiveness in Mortgage Account Drivers Licence Identity Management Systems Identity Verification and Documental Authentication National ID Card Passport Electoral Register Entries Marriage Register Health care Benefits Social Security Card Taxes Paid

AFCEA Tech. Net Europe Summary • Biometric Technology is not the panacea for the AFCEA Tech. Net Europe Summary • Biometric Technology is not the panacea for the global threats • Technology Cannot Compensate for Human Failure or Ineffective Security Processes • The Capabilities of Security Technologies Can Be Overestimated • The Use of Several Security Technologies Continues to Generate Concerns about their Potential Violation of Expectations of Privacy

AFCEA Tech. Net Europe Summary • • An Identity Management Systems has to be AFCEA Tech. Net Europe Summary • • An Identity Management Systems has to be able to manage the 3 elements of the ID: – Biometric Identity – Identity Attributes – Biographical Identity (Events) … and also able to manage: – The identity lifecycle – Linked to external databases – Usage of access cards – Connected to access “barriers” – Video streaming from surveillance cameras

AFCEA Tech. Net Europe Summary • Identity Management Systems have algorithms for Identity: – AFCEA Tech. Net Europe Summary • Identity Management Systems have algorithms for Identity: – Biometric data quality control – Real-time searches – Duplicate analyses AFIS Automated Finguerprinter Identification System ABIS Automated Biometric Identification System

Summary AFCEA Tech. Net Europe • Identity Management Systems Can Enhance Security: – Enabling Summary AFCEA Tech. Net Europe • Identity Management Systems Can Enhance Security: – Enabling information sharing • Database Integration among agencies and organizations – – Law Enforcement Intelligence Agencies Border Crossing Homeland Departments – Provide Intelligence to counter terrorism – Monitoring mass migration flows – Identity Management Systems gives answers to the questions: • Who are you? • Where you able to go? • What are you entitled to do? Are You Who You Claim To Be? “For terrorists, travel documents are as important as weapons” Source: 9/11 Commission Report