Evaluating Biometric Devices

Published on 01 June 2010 by in security

1

Many organizations are implementing biometric access controls to help ensure security policies are effective. By incorporating a biometric into authentication and identity verification procedures, an extra measure of precaution is taken that improves the certainty that the person is who they say they are. Biometrics utilize physical, behavioral, a combination of both physical and behavioral characteristics to identify a person (Zorkadis and Donos, 2004). Of the many biometrics available for use, fingerprinting is one of the oldest and most widely used. As Zorkadis and Donos, describe,

The oldest biometric technique, electronic fingerprint recognition, has undergone extensive research and development, especially in the last three decades, mainly because of its exploitation by law enforcement authorities. (Zorkadis and Donos, 2004)

A comparison of the Hirsch Verification Station, the GE Security V-Station (Prox), and the L-1 Identity Solutions Bioscrypt 4G V-Station provides an example of the criteria that must be evaluated when selecting biometric solutions, especially fingerprint scanners.

There are several considerations when selecting a biometric system. Cost is always a factor – business solutions must be cost-effective. The false acceptance rate (FAR; the percentage chance of a false positive), the false rejection rate (FRR; the percentage chance of a false negative), and the cross-error rate (CER; the percentage where the FAR equals the FRR) are important statistics to consider when evaluating biometric systems. FAR, FRR, and CER provide insight into the error rates associated with a biometric device. Another important factor is the time for verification to occur. The faster the verification time, the less obtrusive the solution will be to users. Table 1 shows a comparison of three fingerprint scanning stations that also incorporate card readers and pin pads.

Table 1 Comparison of Three Fingerprint Stations

Hirsch

Verification Station RUU-201

GE Security

V-Station (Prox)

L-1 Identity Solutions Bioscrypt

4G V-Station

Device Type Combined Smart Card reader, proximity card reader, pin pad, and fingerprint scanner Combined proximity card reader, pin pad, and fingerprint scanner Combined Smart Card reader, proximity card reader, pin pad, and fingerprint scanner
Cost $1944 per station $1766 per station $2175 per station
Biometric Fingerprint Fingerprint Fingerprint
FAR 0.01% – 0.001% 0.2% Not listed
FRR 0.01% – 0.001% 1.0% Not listed
CER Not listed 0.1% Not listed
Verification Time (s) 1.5 <1 Not listed
Compliance with INCITS 378-2004

FIPS-201

HSPD 12

ISO 7816

ISO 1443-A, B

None listed UPEK TCS1

Secugen Optical

All three of the fingerprint scanners under consideration utilize minutiae scanning, as opposed to correlation-based scanners. “Minutiae are unique characteristics such as ridge endings, bifurcations, and divergences” (Zorkadis and Donos, 2004). The L-1 Identity Solution should be eliminated from consideration immediately based on the fact that the company does not include any error information on its web site or product data sheets. FAR and FRR are essential for evaluating biometric devices. While slightly more expensive, the Hirsch reader has significantly better performance from a FAR and FRR perspective. The Hirsch device will rarely produce false positives and false negatives. By contrast, the GE device will generate a false negative every 100 uses. For a large facility, this could become a nuisance.

In addition, the Hirsch device incorporates several important security features. The pin pad scrambles the order of the keys and is unreadable from side views – these measures discourage “shoulder surfing.” Also, the Hirsch device, when used with a smart card, stores the enrolled fingerprint encrypted on the smart card instead of on the device. The enrolled fingerprint is unlocked when the pin is entered, then compared to the scanned fingerprint. This mode of operation adheres to recommendations that Zokadis and Donos make regarding storage of biometric data (Zokadis and Donos, 2004). The GE and L-1 devices store the enrolled fingerprints in the devices.

Biometrics as an authentication and identification solution is growing in popularity. Fingerprint scanning is a stable, mature, and reliable biometric technology. There are several factors that should be considered when selecting biometric solutions, including cost, FAR, FRR, and timing. The evaluation of three devices from Hirsch, GE Security, and L-1 Identity Solutions demonstrates the factors that should be considered.

References

Zorkadis, V., & Donos, P. (2004). On biometrics-based authentication and identification from a privacy-protection perspective: Deriving privacy-enhancing requirements. Information Management & Computer Security, 12(1), 125. Retrieved from http://proquest.umi.com.library.capella.edu/pqdweb?did=644926181&Fmt=7&clientId=62763&RQT=309&VName=PQD

One Response to “Evaluating Biometric Devices”

  1. Ashish says:

    Access Control is a fingerprint based access control and time attendance system for all kinds of office and factory premises. This tamper proof fingerprint door lock device eliminates the administrative cost involved with the conventional ID Card or swipe cards.
    Access Control Sysytem

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