Comment Re:Tell that to 26.5 million US veterans... (Score 1) 625
I completely agree, this is insane. I blogged about a solution ( http://richkilmer.blogs.com/ ) that would not compromise privacy and yet use biometric data. The solution is:
Build a mag card that holds two things:
That's it. What this would do is create a card that can be self-authenticated without any network access. You have a terminal that takes a fingerprint, produces a signature, then compares it to the one on the card. The digital signature would be validated against the stored biometric data to ensure it has not changed since the authority 'signed' it. This terminal could be completely disconnected from any network and still produce a valid result. No log would have to be generated. No loss of privacy would result. If someone had the card it would be useless without your finger to validate it with.
Build a mag card that holds two things:
- Biometric 'signature' of a person's fingerprint stored as a small data file
- Digital signature w/certificate of the biometric signature generated by a 'signature authority' with a valid certificate chain.
That's it. What this would do is create a card that can be self-authenticated without any network access. You have a terminal that takes a fingerprint, produces a signature, then compares it to the one on the card. The digital signature would be validated against the stored biometric data to ensure it has not changed since the authority 'signed' it. This terminal could be completely disconnected from any network and still produce a valid result. No log would have to be generated. No loss of privacy would result. If someone had the card it would be useless without your finger to validate it with.
