“Biometrics In The Cloud” ABSTRACT In today's business ...

ickybiblegroveInternet and Web Development

Nov 3, 2013 (3 years and 7 months ago)

70 views


Biometrics In The Cloud


ABSTRACT

In today’s business environment, controlling costs is of utmost importance. This is especially true for
any business’ or organization’s IT infrastructure. There is an option available to the SME’s, and that is
what is k
now is known as “Virtualization”, “the Cloud”, or “Software as a Service [SaaS]”. The idea here
is that an SME can outsource their entire infrastructure to a trusted third party
and at a click of the
mouse, can select the services they need at a fixed cos
t. This includes the security infrastructure for the
SME as well. Given these trends, it is no doubt that the potential for Biometrics to be in the cloud as
well is tremendous.

But how would “Biometrics In The Cloud”, or “Biometrics as a Service [BaaS]
”, exactly look? The premise
here is that the entire Biometrics infrastructure will be placed at the hands of the trusted third party,
much like the IT infrastructure currently is. This would include the servers which would contain the
template database,

and all of the processing which would occur in order to conduct the needed
verification and identification transactions. Also, any software applications which are needed will also
be housed here as well. At the other spectrum, all the SME owner would ha
ve to is purchase the
requisite Biometrics hardware
(such as a fingerprint recognition device), plug it in, and merely select the
services they need at the click of the mouse.

Ultimately, all the SME owner would be responsible is for the training of thei
r employees into using the
system. They would have to assume no responsibility for any kind of server or software
upgrade/maintenance, all of this would reside with the third party to perform. Of course, as one can
tell, one of the prime advantages of a
“Biometrics as a Service”

is a predicted and fixed cost for the SME
owner. But despite the obvious advantages and the potential it presents, the concept of “Biometrics as
a Service”, or “Biometrics In the Cloud” has not taken off yet in terms of real worl
d applications. At best,
there is only a very limited amount, with Voice Recognition being the primary technology used.
Therefore, it is the goal of this article to explore in depth the concepts of “Biometrics In The Cloud”,
and
provide a detailed exampl
e of what a real world application would look like.

Specifically, this article will be divided into the following sections:

1)


A formal definition of cloud computing;

2)

The components of the cloud computing environment:


Infrastructure as a Service (IaaS):
This includes the virtual machines, load balancers,

dedicated IP addresses;


Platform as a Service (Paas): This includes the operating system,
the databases and

the web server;


Software as a Service (SaaS): This includes the CRM system, e
-
mail, commun
ication

systems, etc.

http://en.wikipedia.org/wiki/Cloud_computing

*Take diagram on website, 2
nd

diagram


3)
An introduction to Biometrics in the Cloud:




A formal definition of Biometrics in t
he Cloud;




The components of Biometrics in the Cloud:




*IaaS; PaaS; and SaaS: An overview of how the
overall

Biometric
infrastructure




and
components will fit into each of these three aspects of the cloud;




*The Biometric technology to be used i
n the cloud: Any could theoretically




work, but the smaller the template size, the better performance will be. Vein




Pattern Recognition would be an ideal choice here;


4) A review of Vein Pattern Recognition:




The science and technology of Vein
Pattern Recognition;




Template creation




Its strengths, and how well it suited it is for Cloud based Biometrics applications.


5)
A detailed example of how Biometrics In The Cloud would like given the theoretical

constructs in #’s 4 and 5 up above:




The actual Vein Pattern Recognition hardware will be at the site of the SME, hard



wired or networked

primarily for physical or logical access
;




The rest of the Biometrics infrastructure will be stored in the hands of the third party,



or in other
words, in the cloud, within the three components as described up above:




*IaaS: This will consist of the overall networking infrastructure to support the




Biometrics infrastructure;




*PaaS:
This will consist of the servers which will store of the
Biometric





Templates, which will conduct the enrollment/identification/verification




transactions
, as well as the web servers to store any software related apps
;




*
SaaS: This will consist of primarily of the software apps related to the





Biom
etrics Infrastructure, and this will be GUI interface between the Vein




Pattern Recognition device and the PaaS; as well as any e
-
mail and network




communications between the hosted Biometrics Infrastructure and the Vein




Pattern Recognition devic
e at the SME (an example of this would be the





template matching result,
which would allow or deny access).





As a result of the above, the primary premises for Biometrics In The Cloud is




that the entire backend of the Biometrics Infrastructure i
s outsourced, or hosted



at the third party. The actual requisite hardware is stored at the SME. All the




SME owner has to do is purchase the device, install it, set up an account with a




Biometrics Hosting Provider, and select the services they
need/or desire. In




other words, this is all plug and play. It is also important to note that the hosted



Biometrics Infrastructure
is technology neutral, in other words, any Biometrics




Technology being used at any SME will be able to use these
hosted services.




The primary benefits are of that to the SME owner:





*Controlled and predictable monthly costs;





*No hassles of setting up an entire Biometrics Infrastructure (this can be




the most expensive part);





*A true Biometrics appl
ication (whether logical or physical) can be set





up with minutes after the primary installation of the respective






Biometrics device;





*No need to hire an administrative staff to oversee the Biometrics





Infrastructure (this is all done by
the third party, all the SME owner has





to worry about is just training their employees in how

to use the actual





device).


6) A survey of the type of applications in which Biometrics In The Cloud can be used:




Physical Access Entry;




Logical a
ccess;




Surveillance at higher security areas (such as airports, etc.);



--
>Document Security; National ID Card, and the e
-
Passpport Infrastructure.


7)
A review of
the advantages and the disadvantages of Biometrics In the Cloud:




Biggest benefit is
cost savings, ease of set up, and curtailment of privacy rights issues;




Theoretically, the concept of Biometrics In The Cloud can work for just any type of



application, but this will take a long time to happen. First, the actual infrastructure has



to be built, and then second,
it has to be proven and accepted by industry worldwide.



This will be a disadvantage in the short term, but in the long run, this concept will pay



for itself, and this could help proliferate the adoption of Biometrics
to a much greater



level, especially here in the United States.




As with anything related to the cloud, it is all outsourced to a 3
rd

party. There are



always inherent security risks (especially attacks on the Internet), but this could




escalate,

depending upon the type of security safeguards which are ensured by the 3
rd




party (or, the hosting party).


8)
Summary of article, and final conclusions