|
|
|
|
|
| |
| The SecureTec SDK architecture is highly
modular and allows for a quick integration with a wide variety of technologies,
ranging from biometrics to encryption and token technologies. The SecureTec
SDK toolkit gives application developers a highly modular application set
to write to, and subsequently get immediate access to all supported authentication
technologies, without raising issues with device specific functionality.
|
| SecureTec offers layered biometrics and tightly
integrated access to non-biometric technologies such as smart cards and
it provides extensive modularity in all relevant aspects. Distinct elements
such algorithms can be exchanged and different system components can be
added and deleted without making major changes to the rest of the system.
All of these features enable a quick and solid development cycle for 3rd
party applications and access to authentication technologies. |
Return to Top 
|
| |
| Biometric authentication is an automated
method whereby an individual's identity is confirmed by examining a unique
physiological trait or behavioral characteristic, such as a fingerprint,
iris, or signature. Physiological traits are stable physical characteristics,
such as palm prints and iris patterns. A behavioral characteristic-such
as one's signature, voice, or keystroke dynamics-is influenced by both controllable
actions and less controllable psychological factors, and it can change over
time. Although behavior-based biometrics can be less expensive and less
threatening to users, physiological traits tend to offer greater accuracy
and security. In any case, both techniques provide a significantly higher
level of identification than passwords or smart cards alone. |
The SecureTec SDK currently has the functionality
to implement the following biometric technologies. This list will be updated
as new technologies are added.
- Fingerprint
- Fingerprint match-on-card
- Iris
- Face
For specific device support please visit the Technology
Partner section. |
Return to Top
|
|
|
| Token technology is a very important piece
of the security solution puzzle. Compared to biometrics which is "something
you are," token devices are "something you have" - like your keys. However,
there are various ways to protect "something you have". Tokens come in two
general categories: Special purpose authentication tokens and general purpose,
smart card-like devices. Special purpose tokens are used only for authentication,
generally using a proprietary cryptographic scheme (if any cryptographic
function at all). They are low in cost and usually don't require a special
hardware reader. Depending on the product, they may be in the form of a
card, a calculator-like device or a fob which can go on a key chain.
|
| Smart card-like systems can be programmed
to do almost anything, including a proprietary authentication protocol like
a special purpose token. Most commonly they are used to store secret keys
and perform cryptographic operations, such as digital signatures. In this
mode they are used in conjunction with a Public Key Infrastructure (PKI).
They generally work via the PKCS #11 or Microsoft CSP encryption software
interfaces. |
The SecureTec SDK currently supports the
following token technologies. We will update this list as new technologies
are added.
- USB token
- Smart card via PC/SC
For specific device support please visit the
Technology
Partner section. |
Return to Top
|
| |
| Encryption, or information scrambling technology,
is an important security tool that has been integrated into the SecureTec
Authentication Platform and all SecureTec based products. It provides a
secure communication channel even when the underlying system and network
infrastructure is not secure. This is particularly important when data passes
through shared systems or network segments where multiple people may have
access to the information. In these situations, sensitive data must be encrypted
in order to protect it from unintended disclosure or modification.
|
|
SecureSuite XS, SecureTec, and all other
I/O Software Authentication Platform based products encrypt network communications
as necessary, using varying encryption methods depending upon the security
requirements of the data, the communication bandwidth required, and required
speed of execution. While the SecureTec
Authentication Platform currently employs encryption methods based on
3DES encryption technology, SecureTec's modularity offers the option to
use virtually any technology and encryption algorithm, balancing the need
for security and speed.
|
Return to Top
|
|
Overview
