On 07/10/12 04:03, Cristiano wrote:
Thank you for answer.
My main difficulty is the integration of the MUSCLE and recognition
techniques. I know the aspects of recognition, but I'm having problems
as integration with smart card to perform Match-on-Card.
I'm using JavaCard and trying to use OpenSource solutions for all stages.
I will study the material past and try to perform the integration.
You can find almost everything about how the solution was realized in
the papers below. Should you have any questions, feel free to ask
(assuming I can remember... :-) ).
Shortly, the integration with MuscleCard happened at the "Identity"
level. In the MuscleCard JavaCard Applet, you could have different
identities logged in during a session with the smart-card device. These
identities could be associated with authentication mechanisms (PIN
verification or cryptographic challenge-response verification), so in
order to log-in one or more identities you had to run and successfully
complete the corresponding authentication mechanisms. So, in the
biometrics extension, we used to introduce additional "biometrics"
identities whose corresponding authentication mechanism was actually
performed through a Match-On-Card algorithm.
This way, you could easily apply biometric (fingerprint) verification to
the access-control model governing what resources are accessible on the
card (files/certificates, cryptographic keys), and realizing
multi-factor authentication. For example, in order to allow the use of a
private cryptographic key, the user must authenticate through a PIN and
a fingerprint verification, and only then that crypto key can
authenticate you to a remote service through a challenge-response protocol.
Hope this helps. Bye,
T.
_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle
