BioPassport TM Enterprise Server The BioPassport Enterprise AD Server is the intelligence behind all of IdentAlink s biometric modules. Password management for a network or application can cost hundreds of dollars per year for every user. The BioPassport TM Enterprise AD Server family of products provides, for the first time, a solution which both eliminates Passwords and, at the same time, gives enterprises efficient and convenient universal security and peace of mind: All modules available for immediate customised usage as well as in an SDK for full integration into proprietary software. No need for high profile developers as IdentAlink s specialists can do the integration. No need to seek five different solutions because everything is managed and controlled by one BioPassport Enterprise AD Server with modules for Physical Access Control, Network Access Control, Web Access (private banking, paid web content), Time & Attendance, Data Security (Encryption to the highest standards), Secure Applications (ERP, QRM and Database access) True Single Sign-On The World of Biometrics
BioPassport TM Enterprise AD Server Features Multilayered Biometrics (Face and/or Finger as standard) Server-Side Verification Platform Independent (Operating System) Hardware Independent (Camera, Fingerprint Sensor) Unlimited Users (limited only by hardware in use) Unlimited Domains PKI (true RSA from 512bit to 8192bit) Digital Signature Fully Scaleable Central control of all infrastructure Universal use of template with all modules European Data Protection Act compliant Leverage enterprise-class directory services and management capabilities of Microsoft Active Directory Reduce help desk and password management support costs
BioPassport TM Enterprise AD Server Modules BioPassport TM BioLogon This module enables a user to login to a Windows 2000 or XP network with chosen Biometrics instead of a password. BioPassport TM Secure Communication This module enables a user to send and receive digitally signed and encrypted email, only when he or she has been biometrically verified. IT is provided as plug-in for MS Outlook or as an SDK to be implemented in your own mail application. This Module uses PKI with minimum 512 bit RSA and includes Digital Signature. BioPassport TM Secure Application This module allows all password based applications (locally, on your network or even on the internet) to be secured with chosen Biometrics. Available as Readymade module to work with almost all ERP, QRM and Database Solutions on the market or as SDK to be integrated into your own application. BioPassport TM Content Provider This module allows all Web site content, such as web mail, paid web content or online banking to be secured with chosen biometrics (Face and Finger included as standard). BioPassport TM Time & Attendance This module uses as standard a finger template for verification. It completely eliminates buddy punching. It can be combined with existing CCTV systems to provide a record of authorised and unauthorised use. This module sends a time stamp ticket to all existing Time & Attendance systems. It replaces stamp cards, PIN codes, magnetic stripe cards, etc. as well as expensive hardware. BioPassport TM Physical Access Control This is a highly sophisticated combination of our BioPassport Enterprise AD Server and a door control server module. The hardware (Intelligent Unit) can be controlled either via Network or cable (direct connection to laptop for remote places) and provides either server-side verification or local verification in remote places with no network access. The hardware holds up to 2000 templates locally.
What do all BioPassport Enterprise AD Server Modules have in common? They are all integrated in our BioPassport Enterprise AD Server as a standard and can be opened easily on demand with a registration key. They all use one and the same template, hence True Single Sign-On. Only one enrolment is necessary. All Modules are available either as ready to use or as SDK. All Modules can be used with either facial recognition, finger recognition or a combination thereof. All Modules work on demand with other biometric technologies such as iris. None of the Modules demands changes in an existing IT infrastructure as they are all built to fit. All Modules are fully compliant with the Data Protection Act as the personal data and templates can only be combined with the permission (verification) of the user. No fingerprint images are stored, only digital data for verification, which cannot be re-engineered into images. All communication between Modules and BioPassport Enterprise AD Server is secured with SSL. Ask for a full presentation at our offices in Berlin. We are convinced that we can demonstrate the cost savings and enhanced security features of our solution to you. ROI should be achieved within the first year! IdentAlink www.identalink.com Rudower Chaussee 29 12489 Berlin Germany Tel: +49 (0) 30 6392-6970 Fax: +49 (0) 30 6392-6971 email: sales@biometrics.ws
BioPassport Enterprise Product Family Specifications: Laptop/PC/Client Applications Minimum System Requirements Supported operating systems Windows XP Windows 2000 Windows NT4 SP6 Linux Hardware requirements Pentium III processor 50 MB avail hard disk space USB Port or serial on NT4 Biometric Support Biometric software features IdentAlink Fingerprint recognition algorithm Facial Recognition algorithm Further biometric technologies on request Local- or server-based (except Face Recognition, server based only) authentication Supported fingerprint sensors Hitachi/BMF Atmel thermal Shimizu STMicroelectronics TouchChip Infineon Authentec Biometrica (optical) Testech Polaroid Any other on request CHERRY Keyboard (Fingerprint/smartcard) OS Logon Logon to local PC account Windows XP, 2000, Me and 98 Logon to network account Windows 2000 AD Novell network Sun Solaris User authentication Username and credential(s) Fingerprints and/or other biometrics and/or Windows password Administrative policy control Application Logon via Module Secure Application Logon to Applications - Choice of single sign on Fingerprint verification and/or other biometrics and/or password and/or smartcard of current Windows user Integrated in Win 32 logon screens Supports any application or db as well as web site logon No scripting or programming required (plug and play) PC Unlock Lock Windows session Windows lock command Windows screen saver lock Unlock Windows session By current user or administrator Enforces logon authentication policy File Encryption via Module Secure Communication Encrypt/decrypt files and directories - Fingerprint and/or other biometric verification or single sign on of current Windows user upto 8198-bit encyption Integrated into right-click menus Recovery utility Custom installation Select applications Remote installation Supports MSI-compatible installers Supports Windows 2000 GPO installation Deployment options Standalone PC Networked workstation Networked workstation or NET PC with server Laptop PC (docked/undocked)(standalone or networked) Server Software Minimum System Requirements Supported operating systems Windows net 2003 Server Windows 2000 Server -- Windows 2000 Advanced Server -- Linux -- Sun Solaris Installs on domain controller(s) Hardware requirements Pentium IV processor 10 MB avail hard disk space DB space depending on number of registered users Database Support Active Directory Windows user record extension Schema extension for Single Sign on -- Schema extension for Secure Application -- Schema extension for Secure Communication -- Schema extension for Time & Attendance Schema extension for Access control Fault Tolerance System data replication Active Directory replication services Authentication services Automatic failover Scalability Unlimited users depending on HW capability Load balancing Security Server-based authentication Own PKI infrastructure Own Digital Signature infrastructure Data encryption User data (pswrds, FPs, etc) All client/server communications 128bit SSL up to 8198 bit RSA encryption Auditing Centralized, remote configurable audit logs multi Domain support Windows Server security and system event logs Schema extension utility Applies to entire AD forest Server discovery Domain-based DNS registration Server to Workstation Server to server System Administration Administrator user interface Native Windows Server Admin Tool for Workstation Admin Tool for Domain wide Support TCP/IP Administrator access rights Supports Win 2000 delegated administration Security settings Cached credentials Authentication policies Server authentication Performance settings Logon identification list Max 8 fingers per user Face Recognition multi-layered biometrics combine biometrics with password combine biometrics with smartcard combine biometrics with 2D barcode Auditing Windows event log customised reports for all db Supports report filtering Fingerprint Sensors Min Performance for all integrated sensors Self-calibrating Auto image capture Image captured trigger Security Encrypted image transmission Plug and play USB device Own USB driver for all FP sensors Own Linux USB driver