[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: QC Bio-info leak?

To: "'Lynn.Wheeler@xxxxxxxxxxxxx'" <Lynn.Wheeler@xxxxxxxxxxxxx>
Subject: RE: QC Bio-info leak?
From: Anders Rundgren <anders.rundgren@xxxxxxxxxx>
Date: Mon, 13 Dec 1999 08:45:31 +0100
Cc: PKIX-List <ietf-pkix@xxxxxxx>


>??? not applicable to fingerprint??? ... which part? ... the AADS strawman with
>on-device fingerprint sensor for activation or x9.84?

Well, I EXPLICITLY referred to QC-002 were bio-metrics that need machine-verification
are BANNED (or not supported depending on how "political" you want to be), for reasons unknown.
That includes fingerprints.

If you have local/personal device sensors and thus reading etc. biometrics is completely outside
of the PKI.  You trust a device instead.  So it is another story.

Such a solution could be interesting for mobile phones  (has been shown actually) as a PIN-code
replacement or better as a PIN-code complement

IMO the QC-editors have quite some homework to do regarding other efforts in this area like
the one you mention.  Thank God I am not a QC editor!

Anders

Prev by Date: RE: certificate which has both AIA and CRL DPs
Next by Date: PKI Forum
Previous by thread: Re: QC Bio-info leak?
Next by thread: PKI Forum
Index(es):
- Date
- Thread