[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New proposed solution to the QC biometric issue

To: "Stefan Santesson" <stefan@xxxxxxxxxxx>, "Stephen Farrell" <stephen.farrell@xxxxxx>
Subject: Re: New proposed solution to the QC biometric issue
From: "Anders Rundgren" <anders.rundgren@xxxxxxxxxx>
Date: Thu, 15 Apr 1999 21:52:12 +0100
Cc: <farrell@xxxxxxxxxxxx>, <ietf-pkix@xxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxx

Stephen,

>- if you're only storing a hash, how do I find the 
>original - maybe a URI is needed in addition

Absolutely!  Although I am more into calling them URLs...

Unfortunately this scheme has a few inherent problems that some of the
other proposed schemes do not exibit:

1) Who has access to these URIs?  Assuming they are networked this
is a problem.

2) The exclusion of the "real thing" from QCs makes it impossible to sign
in a STANDARD way (PKCS #7) and retaining biodata as the URIs do
not have to be accessible for anyone and they may also die after the
cert has expired. 

3) One (networked) fetch for each biometric attribute slows down the process a bit.

Regards
Anders
http://www.mobilephones-tng.com

Prev by Date: Re: New proposed solution to the QC biometric issue
Next by Date: RE: Time-Stamp: Why not use several hashes?
Previous by thread: Re: New proposed solution to the QC biometric issue
Next by thread: Re: New proposed solution to the QC biometric issue
Index(es):
- Date
- Thread