[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: BIAS use cases
Cathy,
Here are two use cases I put together. Please let me know if this is
the direction you want me to go with this. I will be on the call
tomorrow. However, I will only be able to be on for an hour.
Have a good one, Ed.
Use cases high level.
1.User logs into his local client computer. The user then launches a
web browser and enters a url of a protected resource. The resource
requires user name, password, and biometrics (finger print) for
authentication. The resource does authentication locally or the
resource redirects the user to a authentication authority. User enters
user name and password for 1st factor of the authentication process.
Then the user is asked to pass biometric data:
A. The biometric data is passed via a USB/serial device on the client
computer.
B. The biometric data is passed via a device with an IP address.
C. The biometric template is stored on local device, the user manusha
data is collected and both are passed for match.
The requested resource uses the data for to authenticate or deny
authentication of the user.
2.User logs into his local client computer. The user then launches a
web browser and enters a url of a protected resource. The resource
requires user name, password, and biometrics (finger print) for
authentication. The resource does authentication locally or the
resource redirects the user to a authentication authority. User enters
user name and password for 1st factor of the authentication process.
Then the user is asked to pass biometric data:
A. The biometric data is passed via a USB/serial device on the client
computer.
B. The biometric data is passed via a device with an IP address.
C. The biometric template is stored on local device, the user manusha
(sp) data is collected and both are passed for match.
The requested resource uses the data to authenticate the user. The user
now wants to authenticate to a resource on another domain. The user
points the web browser to the URL, the resource requires user name,
password and biometrics for authentication. The user data is passed
from the authenticated domain to the current resource for authentication
on that domain. The current domains authentication mechanism
authenticates or denies the users credentials.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]