GenKey offers a solution to biometrically verify the identity of persons enrolled in a program, for example an election or a health insurance program. The solution is based on GenKey’s BioHASH® technology, which provides a compact and inherently secure representation of biometric templates, allowing for implementation in both off-line and on-line verification systems.
BioHASH® ensures a secure storage for on-line verification, because of the implemented requirements as prescribed by the ISO/IEC 24745 standard for Biometric Information Protection.
At locations with reliable internet connectivity, a central storage may be used for on-line verification. Because on-line verification does not require the use of identity documents, it can be a highly cost-effective solution.
In the case of barcode verification, each enrolled candidate is given an ID card containing a biometric BioHASH® barcode. During verification, for example on Election Day, a “live measurement” of the fingerprints (or other biometrics) is taken at the polling station, from which a BioHASH® template is generated again, using the cryptographic hash function. This template is then matched with the template represented by the barcode on the (voter) ID card. By matching the anonymous and secure BioHASH® templates instead of the actual biometric information, the GenKey solution ensures that the identity of the users is verified in a fast, secure, and private manner, and that the risk of fraud is minimized.
The size of a BioHASH® renewable reference is only a few hundreds of bytes. The inherent security and small footprint make it possible to use standard 2-D barcodes printed on cost-effective (temporary) ID cards or simple RFID tags to store biometric information. An additional benefit is the flexibility in card design. In the case of barcodes, card personalization can be performed with simple off-the-shelf card printers.
It is possible to add information to the biometric data before it is hashed, in order to avoid fraud with the card and barcode. By inserting for example the unique number of the ID card in the biometric hash, a positive match will only be achieved when both the biometric and unique ID are correct.