Fingerprint Authentication
==========================
Project Overview:
-----------------
The biometrics technology grows fast. Fingerprint authentication is
widely used in many situations. It's a valuable feature to support
fingerprint in Solaris. This project is going to provide a complete and
extendible solution to support fingerprint in Solaris.
Project Description:
--------------------
Since the fingerprint devices have not standard class specifications and
USB is the most popular I/O interface. We plan to support varied USB
fingerprint readers by presenting a user-land driver framework(libfpr)
based on libusb. A PAM module(pam_fpr) is presented to support dual-mode
(user-passwd and fingerprint) authentication. The fingerprint management
tool(fprmgmt) will be delivered, and gdm/login will be updated to
support dual-mode login. The architecture is as the following,
gdm/login xscreensaver ... fprmgmt ==> PAM services and tool
| | | |
----------------------------------
|
PAM
|
pam_fpr ==> fingerprint auth/tok module
|
fpr_modules----> libfpr ==> userland fingerprint drivers
|
libusb
1) libfpr is a library of fingerprint reader drivers based on libusb. It
provides a set of functions to let upper level applications operate the
fingerprint devices. And it provides another set of interfaces for
advanced users, who can developed a module for a customized fingerprint
device. The module can be loaded and integrated as a part of libfpr.
2) pam_fpr is a pluggable module for PAM stack as well as an application
based on libfpr. It implements pam_sm_authenticate() and
pam_sm_chauthtok() to make it possible to enroll or identify with
fingerprint. To support dual-mode (user-passwd and fingerprint)
authentication, the architecture of pam_fpr is designed with multiple
threads. Users can login by either user-passwd or fingerprint with
dual-mode.
3) fprmgmt is tool to manage the fingerprint records. Users can register
or un-register their fingerprint by it. A GUI will be wrapped to make it
nice-looking and friendly to users. gdm is selected as the default login
GUI.
Project Target:
---------------
1) First step, this project focuses on the support of desktop systems.
It stores and manages the fingerprint records in local system.
2) Second step, NIS, NIS+, LDAP and SunRay support will be considered.
Communities of interest:
-----------------------
Device Drivers
Security
Desktop
--
Best Regards,
GaoPeng Chen
Call: +86-10-62673005
Ext: x82005
Sun Microsystem Inc. China
