[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: QC's - for human eyes only?

To: <ietf-pkix@xxxxxxx>
Subject: Re: QC's - for human eyes only?
From: Stefan Santesson <stefan@xxxxxxxxxxx>
Date: Tue, 07 Dec 1999 11:24:51 +0100
In-reply-to: <>
References: <><><>

This is fairly much a repetition of the previous discussion about biometrics.

I would avoid discussions regarding the privacy issues, but would like to
say that any system that relies on the secrecy of biometrics are likely to
fail. The unique identification capability of biometrics does not come from
keeping it secret, but rather your unique capability to represent these
bio-metric values with your physical body. The wrong body can't represent
these values regardless of wether they are secret or not.

The second general issue is about the value of bio-metrics in long distance
communication. This is where human verification comes in. Schemes aimed for
human verification works well on distance (i.e. my certified photo may help
convince you who I am, because you may have seen me before and recognize
me), while schemes for machine verification doesn't (i.e. finger print
verification must be performed with physical control over the bio-measure
device, and this device must be where you are). 

Anyway. I still think that the current solution is good.... On the other
hand it would be very easy so expand the scheme. Personally I'm not sure
what the best solution is.

The only thing I'm really sure about, is that I believe that the predefined
bio-metric types shall remain as they are (photo and written signature
image) aimed for human verification.

The current scheme allows definition of other bio-metric types with an OID
and I would personally not object if such OID may be allowed to define a
finger print scheme.

I would hope to avoid the actual bio-data in certificates, but I don't have
a strong opinion here. So please continue top argue and find a consensus here.

/Stefan






-------------------------------------------------------------------
Stefan Santesson                <stefan@accurata.se>
Accurata AB                     http://www.accurata.se
Slagthuset                      Tel. +46-40 108588              
211 20  Malmö                   Fax. +46-40 150790              
Sweden                        Mobile +46-70 5247799

PGP fingerprint: 89BC 6C79 5B3D 591B 8547  1512 7D11 DBF4 528F 29A0
-------------------------------------------------------------------

References:
- QC's - for human eyes only?
  - From: Ilan Shacham
- Re: QC's - for human eyes only?
  - From: Tony Bartoletti
- Re: QC's - for human eyes only?
  - From: Luther Martin

Prev by Date: RE: QC's - for human eyes only?
Next by Date: The definition of OTHER-NAME
Previous by thread: Re: QC's - for human eyes only?
Next by thread: RE: QC's - for human eyes only?
Index(es):
- Date
- Thread