Remote Authentication - The Technology

1. based upon software only
2. no expensive Token or device is required just a Smartcard for a portable system
3. as simple to use as a conventional UserID/Password system
4. no "key management" problems
5. can be configured as an Internet authentication system with provision for portable Codes or alternatively
6. a physical Smartcard-based authentication system which is Internet enabled

1. Reciprocal authentication – the simultaneous authentication of the System to the User
2. early warning of fraudulent access attempts
3. input required is a Fixed PIN only, except for Sequential Biometrics
4. integrated identification/authentication, rendering targeted interception impossible
5. possible automated continuous intermittent integrity authentication

VPIN^TM

a variable PIN system in which a system user can provide a unique alpha-numeric code of any required length with the assistance of a Code Card, but with no programme required

authenticationplus^TM

providing for an infinitely variable numeric access Code of any required length with the assistance of a data carrying device or card which carries a sequential function of the preceding Code and the algorithm required to produce, from the sequential Code and user input (such as a fixed PIN or Biometric reading), the next Code. This allows for:

• variable identification to resist targeted interception
• authentication by means of a variable Code
• Reciprocal authentication, the authentication of the system Database/Website to the user by means of a variable Return Code

Sequential Biometrics^TM

a system providing for Biometric authentication whereby the registered Biometric Template is derived from the differential between two variable Codes, one held on a data carrying Card and another on the system Database, so that:-

• no Biometric Data is directly accessible on either Card or Database
• no Biometric data is sent over insecure networks
• loss of the Card is not a security risk, and is easily (and inexpensively) replaced, since it is merely a Card with a long number
• the card cannot be replicated because of the Code differential being unknown
• a Biometric SORT function (check for duplicate registration, or Wanted list) by reference to actual readings or the differential from the Code on the database is enabled
• very course Biometric readings (FRR set at effectively nil) are possible, since prime authentication is by reference to the variable Codes, and the Biometric aspect is to tie in the authentication tro the user and to allow the SORT function
• enabling the decision to Accept/Reject to be taken at either the Terminal or the Database depending upon system requirements and configuration

diyBiometrics^TM

a system whereby the main benefits of Biometric authentication may be obtained without Biometric recording devices, at enrolment or in use, by providing for the differential (as in Sequential Biometrics) to produce an onscreen facial image or reproduction of a signature, enrolment being merely the addition of the binary image value (of a picture of the user and a copy of the signature) to otherwise equal starting Codes on Card and Database