 |
|
|
|
|||||||||||
|
||||||||||||
 |
|
 |
Standard USB Flash Memory Device Support for Windows - 2000/XP Crypto Service Provider (CSP) WhoIsIt Biometric Capabilities ? Key Exchange - Symmetric Encryption ? PKI Challenger Response - Proof of Identity ? Digital Signature - Seal of Approval WhoIsIt turns any USB Flash Memory device into a smart card. WhoIsIt firmware generates private and public keys directly on PC hard drive or USB flash memory device (dongle). WhoIsIt gives USB flash memory devices smart card capabilities by storing the users Private key store, biometric templates, passwords and digital certificates directly on the USB Flash Memory device. When using a standard USB Flash Memory device all template matching is performed by the WhoIsIt CSP using the PC microprocessor. WhoIsIt's firmware on the USB Flash Memory Device will encrypt and decrypt mail and documents using the user's stored keys only after passing fingerprint identification. A user’s private keys will never be released from the WhoIsIt Token server. Private PKI keys are safeguarded by the WhoIsIt Token Server on the PC and the WhoIsIt firmware on the USB Flash Memory Device. PKI Challenge Response Algorithm The WhoIsIt firmware on the USB Flash Memory Device computes a response from a challenge issued by a server and / or application once the user has been authenticated through voice and / or fingerprint identification. PKI Challenge Response on the USB Flash Memory Device USB Flash Memory Device authenticates a user to any application from any PC. Applications such as: Adobe Acrobat PDF files, Securezip, Outlook, Outlook Express and any other application using digital certificates based on the Microsoft CapiAPI The user’s passwords, digital signature signing keys and other private keys can never be compromised because the passwords, private keys and digital signature keys are stored in the WhoIsIt biometric database located on USB Flash Memory device. Digital Signatures WhoIsIt firmware located on the USB Flash Memory device can generate a digital signature and sign documents using the protected private key stored on the USB Flash Memory Device. The WhoIsIt CSP software will digitally sign a document only after the user has submitted and passed voice and / or fingerprint authentication. The user can sign documents anywhere anytime. The WhoIsIt CSP and WhoIsIt USB Flash Memory firmware will ? Authenticate the user before computing a Response from a Challenge received from an application. ? Authenticate the user before PKI encryption/decryption takes place. ? Authenticate the user before digitally signing documents. ? Authenticate the user before hard drive private file are decrypted. ? Authenticate programs before they are allowed to run. WhoIsIt CSP PKI Firmware Capability ? Key generation - Compute Public and Private key pairs ? Key Storage - Create key container storage for key pairs ? Key protection - Protect Key container ? Key Wrapping - Encrypt - Decrypt ? Portability - Relocate-able biometric database and key store. ? Key authentication – Fingerprint ID, Voice authentication and Face recognition (optional) ? Microsoft CAPI - The WhoIsIt Biometric CSP Interacts with Microsoft CAPI to authenticate all CAPI compliant PKI applications ? WhoIsIt GUI - Installer, uninstaller, Enrollment Center and User Interface.
|
