Originally posted on March 1, 2007 @ 8:15 am
A small UK startup has launched a new generation of biometric application it claims can totally replace login passwords on both standalone and networked Personal Computer’s.
The patented system, called MatchLogon, from newcomer FingerPIN, has been designed from the ground up to overcome the limitations of conventional biometric systems that have been found to be open to simple spoofing attacks.
Instead of using only a unique fingerprint to gain access to a network or PC, the system uses a sequence of such prints in a random order known only to the user.
To overcome the system, an attacker would need to have access not only to four or more of the user’s fingerprints, but would have to enter them in the correct sequence.
FingerPIN hopes that by using the multi-factor sequencing design of a PIN code in combination with a series of prints unique to an individual, it can convince its target audience in the financial and call center sectors to adopt software that greatly increases security over basic password management systems.
According to the company’s website, the chances of overcoming the print matching engine by chance are one in ten billion.
The software, which comes as a Windows Active Directory-compatible management server and client application, can be made to work with any third-party USB fingerprint reader, including one from Microsoft.