Welcome to Scribd!

Skip carousel

Biometric Service Provider (BSP) : John "Jack" Callahan Veridium

Uploaded by

Samir Bennani

0% found this document useful (0 votes)

28 views20 pages

Original Title

Aadhaar-BSP

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

28 views20 pages

Biometric Service Provider (BSP) : John "Jack" Callahan Veridium

Uploaded by

Samir Bennani

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 20

Search inside document

Biometric Service Provider

(BSP)
John “Jack” Callahan
Veridium
Source: Google
KBA,
Biometrics, etc.

Experian,
FBI, etc.

Passport,
Driver’s license

Figure 4-1 (annotated) The Identity Proofing User Journey [source: NIST 800-63-3A]
Biometric ≠ Password

• Typically combined with liveness

• “IAL3: Physical presence is required for
identity proofing. Identifying attributes must
be verified by an authorized and trained CSP
representative”

• aka Presentation Attack Detection (PAD)

• NIST 800-63-3B Section 5.2.3
• “Testing of presentation attack resistance
SHALL be in accordance with Clause 12 of
ISO/IEC 30107-3. The PAD decision MAY be
made either locally on the claimant’s device or
by a central verifier.”
• “PAD is being considered as a mandatory
requirement in future editions of this
guideline”

• PAD can be performed remotely

• IAL2 introduces the need for either remote or
physically-present identity proofing. [NIST
800-63-3A Section 2.2]
Biometric Credentials

Biometric
Verifiable
Credentials

Issuer Holder Verifier

Blockchain provenance Blockchain provenance

& integrity information & integrity verification

6
A Range of Biometric Use Cases
• Device unlocking
• Authentication
• Identification
• Identity Proofing
• Identity Verification
• Deduplication (on enrollment)
• Fraud prevention (on enrollment)
Initial & Candidate Biometric Vectors

IBV CBV
Match?

Registration Presentation
Some Simple Best Practices
• Protect biometric data …
• at collection (sensor safeguards)
• at rest (special hardware, TPM/TEE, database encryption)
• in transit (encrypted communications)
• during match (volatile memory protections)
• Never log biometric data!
• Candidate Biometric Vector is ephemeral
Pocket Pattern BSP Pattern
Where is IBV & CBV matched?
Mobile Server

Pocket Pattern
1:1 1:N
Mobile Authentication Authentication
Where is IBV persisted?

Device Unlocking Deduplication

BSP Pattern
1:1 1:N
Server Authentication Authentication
Identity Verification Identity Proofing
Identity Proofing
INTERPOL • Know Your Customer (KYC)
• Anti-Money Laundering (AML)
• Required by most countries for banking

Issuer Holder Verifier

Biometric
Verifiable
Credentials

12
BOPS,
ABIS,
MOSIP
Aadhaar

Issuer Holder Verifier

Biometric
Verifiable
Credentials

13
BOPS, BOPS,
ABIS, ABIS,
MOSIP MOSIP
Aadhaar Aadhaar

Issuer Holder Verifier

Biometric
Verifiable
Credentials

14
BOPS,
ABIS,
MOSIP
Aadhaar

Issuer Holder Verifier

Biometric
Verifiable
Credentials

15
BOPS, BOPS,
ABIS, ABIS,
MOSIP MOSIP,
Aadhaar Aadhaar
BSP BSP

Issuer Holder Verifier

Biometric
Verifiable
Credentials

16
Biometric Service Provider (BSP)
• A protocol?
• Should define biometric verifiable credential schema(s)
• Biometric modality agnostic
• Accommodate Biometric shards
• Integrate with Ursa crypto
• Integrate with service endpoint model
• Allows Issuers, Verifiers, and Holder wallets & agents to invoke services like:
• Registration
• Matching
• Deduplication
• Verification
• Provides new services
• Fuzzy matching
• Shard management (for DKMS)
• Holder-specific biometric matching “machine” (using ZK-STARKs)
• Compatible with trust relationships
• Supports DID connections/Trust relationships (Holder ⟷ BSP ⟷ Verifier)
Agent/self-hosted?
BOPS, BOPS,
ABIS, ABIS,
MOSIP MOSIP,
Aadhaar Aadhaar
BSP BSP

Issuer Holder Verifier

Biometric
Verifiable
Credentials

18
Interpol,
FBI,
UK Border

BSP

Issuer Holder Verifier

Issuer-
generated,

BSP
Holder-
specific
ZK-STARK

19
Next Steps
• Feedback
• Draft RFC aligned with
• Distributed Key Management RFC
• Credential Fraud RFC (Threat model, Patterns & Anti-Patterns)
• BSP threat model?
• Prototype implementation(s)
• Relation to
• IEEE 2410 (BOPS)
• FIDO and new FIDO IDV

Authentication 130728051757 Phpapp01
Document22 pages
Authentication 130728051757 Phpapp01
Un Int
No ratings yet
A. Bluezign: Replace "Legal Paper" With Electronic Documents
Document8 pages
A. Bluezign: Replace "Legal Paper" With Electronic Documents
Rohan_Rajore_1416
No ratings yet
Atm BVN Integration Thesis Paper
Document6 pages
Atm BVN Integration Thesis Paper
updateak47
No ratings yet
Authentication Methods
Document21 pages
Authentication Methods
madhu4urao
100% (1)
Biometrik: Dewi Purnamasari, M.Eng. Prodi Sistem Dan Teknologi Informasi Universitas Ivet
Document54 pages
Biometrik: Dewi Purnamasari, M.Eng. Prodi Sistem Dan Teknologi Informasi Universitas Ivet
Dewi Purnama
No ratings yet
Banking Insurance and Financial Services: Unit 1: Introduction To BANKING (25%)
Document13 pages
Banking Insurance and Financial Services: Unit 1: Introduction To BANKING (25%)
sunगीत मजे्se
No ratings yet
Authentication: Overview: Paul Bui
Document35 pages
Authentication: Overview: Paul Bui
Kannan Kannan N S
No ratings yet
Veri5Digital Master Brochure
Document15 pages
Veri5Digital Master Brochure
veri5digita
No ratings yet
Traditional KYC Process PDF
Document5 pages
Traditional KYC Process PDF
vivxtract
No ratings yet
Biometrice Presention
Document36 pages
Biometrice Presention
Rakan Sami
No ratings yet
Chapters 1 2
Document36 pages
Chapters 1 2
radhe sham
No ratings yet
SK Telecom - Telco-Driven Decentralized Identity Network
Document22 pages
SK Telecom - Telco-Driven Decentralized Identity Network
ajayvg
No ratings yet
Santo or
Document19 pages
Santo or
Arjun Krishna
No ratings yet
KYC Registration and Authentication System
Document13 pages
KYC Registration and Authentication System
Mohamed Elhouni
100% (1)
Authentication Methods
Document52 pages
Authentication Methods
pratima depa
No ratings yet
Central BACH Payment Service Discussion
Document26 pages
Central BACH Payment Service Discussion
Tanvir Mahmud
No ratings yet
Smart visitor management system optimized for security
Document28 pages
Smart visitor management system optimized for security
Madhankumar
No ratings yet
Customers Digital Onboarding Framework
Document13 pages
Customers Digital Onboarding Framework
zardarwaseem
No ratings yet
Aadhaar E-KYC Basics
Document9 pages
Aadhaar E-KYC Basics
sandy_jadhao
No ratings yet
One Stop Video KYC Solution For All Regulated Entities
Document26 pages
One Stop Video KYC Solution For All Regulated Entities
Brosoa Loqua
No ratings yet
Presentation On KYC Basics
Document24 pages
Presentation On KYC Basics
Prateek Srivastava
No ratings yet
Bank Facilitator Product Preview
Document28 pages
Bank Facilitator Product Preview
Daniel Adrian
No ratings yet
Intelligent Portable Control System: Project Presentation
Document14 pages
Intelligent Portable Control System: Project Presentation
Hafedh Trimeche
No ratings yet
Circular and Exposure Draft On The Framework For BVN Operations and Watchlist
Document16 pages
Circular and Exposure Draft On The Framework For BVN Operations and Watchlist
Francis Okonkwo
No ratings yet
Bank Account Verification API - Signzy
Document10 pages
Bank Account Verification API - Signzy
Ankit
No ratings yet
1.80+ Billion Inclusive Smiles with Aadhaar Authentication
Document32 pages
1.80+ Billion Inclusive Smiles with Aadhaar Authentication
Ravi Mohan
No ratings yet
Capstone Project
Document29 pages
Capstone Project
Prashant A U
No ratings yet
PFMS Overview Flowchart
Document1 page
PFMS Overview Flowchart
Mallikarjun Bellad
No ratings yet
Centralized KYC - India's E-KYC Revolution
Document46 pages
Centralized KYC - India's E-KYC Revolution
joenatan 2020
No ratings yet
Caat Tools: Vaibhav Bajpai
Document12 pages
Caat Tools: Vaibhav Bajpai
Vaibhav Jain
0% (1)
JAIIB Banking Operation Module D Accounting Finance For Bankers PDF
Document40 pages
JAIIB Banking Operation Module D Accounting Finance For Bankers PDF
archana c
No ratings yet
Chapter 5 - Issuer Trust Model
Document26 pages
Chapter 5 - Issuer Trust Model
MIGUEL LUIS CARO PAVON
No ratings yet
AFP Treasury5 Acronyms
Document10 pages
AFP Treasury5 Acronyms
Akpknuako1
No ratings yet
The Central Registry Operating Guidelines, 2016 Regarding KYC of An Individual in The Order As
Document5 pages
The Central Registry Operating Guidelines, 2016 Regarding KYC of An Individual in The Order As
Archana V
No ratings yet
IDenfy Discovery Deck
Document28 pages
IDenfy Discovery Deck
Tomisin Taiwo
No ratings yet
Zero Login Biometric Authentication Guide
Document21 pages
Zero Login Biometric Authentication Guide
Eaint
No ratings yet
38 Nayan Seminar
Document17 pages
38 Nayan Seminar
Rinesh Ghori
No ratings yet
EKYC
Document19 pages
EKYC
YS Tjia
No ratings yet
Banking and Finacial Full Forms
Document6 pages
Banking and Finacial Full Forms
Anand Dubey
No ratings yet
Eo 5555
Document31 pages
Eo 5555
xcribd01
No ratings yet
OWASP Dallas Unspoofable Anti-Phish Codes Reduce Risk
Document23 pages
OWASP Dallas Unspoofable Anti-Phish Codes Reduce Risk
Noro
No ratings yet
THE Century Banking: Submitted By: Abhishek Sasan MBA (IT BR.) 500901515
Document20 pages
THE Century Banking: Submitted By: Abhishek Sasan MBA (IT BR.) 500901515
Sairam Raju
No ratings yet
Técnicas de Inteligencia Artificial Aplicadas en Ciberseguridad
Document63 pages
Técnicas de Inteligencia Artificial Aplicadas en Ciberseguridad
Juan Carlos Olivares Rojas
No ratings yet
Biometric Recognition Security and Privacy Concerns
Document10 pages
Biometric Recognition Security and Privacy Concerns
amanjain89
No ratings yet
Biometric Atm Iris Recognise
Document21 pages
Biometric Atm Iris Recognise
villain1505
No ratings yet
PSUs Leverage ICT for Financial Inclusion
Document25 pages
PSUs Leverage ICT for Financial Inclusion
Yash Chandna 174
No ratings yet
Biometric ATM Authentication
Document27 pages
Biometric ATM Authentication
Yogesh Dohare
No ratings yet
e-BRC Message Exchange
Document26 pages
e-BRC Message Exchange
Raja Gopalakrishnan
No ratings yet
BIOMETRIC
Document11 pages
BIOMETRIC
poovizhisenthilkumar3
No ratings yet
Verifiable Credentials Explained
Document30 pages
Verifiable Credentials Explained
MIGUEL LUIS CARO PAVON
No ratings yet
Security Solution Based On WSO2 IS
Document5 pages
Security Solution Based On WSO2 IS
Leonardo Favio Caraguay Caraguay
No ratings yet
Designing Secure and Efficient Biometric-Based Secure Access Mechanism For Cloud Services - Shortcut
Document7 pages
Designing Secure and Efficient Biometric-Based Secure Access Mechanism For Cloud Services - Shortcut
dab red
No ratings yet
Am - Biometric Accuracy
Document3 pages
Am - Biometric Accuracy
crimwis
No ratings yet
Manage bills and payments with BBPS
Document8 pages
Manage bills and payments with BBPS
Gaurav Gupta
No ratings yet
CL20 Annex B PDF
Document4 pages
CL20 Annex B PDF
MeeroButt
No ratings yet
Question and Answer As of 17 June 2020
Document21 pages
Question and Answer As of 17 June 2020
Tash
No ratings yet
CIBI Presentation
Document29 pages
CIBI Presentation
June Ep
No ratings yet
Udentify Solution Brief EN
Document4 pages
Udentify Solution Brief EN
LETSOGILE
No ratings yet
Public Key Infrastructure (X509 PKI) : Presented By: Ali Fanian
Document37 pages
Public Key Infrastructure (X509 PKI) : Presented By: Ali Fanian
mouloud25
No ratings yet
Bitcoin Cash Versus Bitcoin: the Battle of the Cryptocurrencies: Crypto for beginners, #2
From Everand
Bitcoin Cash Versus Bitcoin: the Battle of the Cryptocurrencies: Crypto for beginners, #2
Johan von Amsterdam
No ratings yet
Dkms Design and Architecture V2: How Dids, Keys, Credentials, and Agents Work in Sovrin
Document7 pages
Dkms Design and Architecture V2: How Dids, Keys, Credentials, and Agents Work in Sovrin
Samir Bennani
No ratings yet
Sovrin: What Goes On The Ledger?
Document12 pages
Sovrin: What Goes On The Ledger?
Tanmay Chopra
No ratings yet
Onboarding & Authenticating Workflow (CU) EAP
Document1 page
Onboarding & Authenticating Workflow (CU) EAP
Samir Bennani
No ratings yet
Self-Sovereign Identity: Giving Users Control
Document57 pages
Self-Sovereign Identity: Giving Users Control
Samir Bennani
No ratings yet
What is Aries? blockchain protocol
Document8 pages
What is Aries? blockchain protocol
Samir Bennani
No ratings yet
Enhancing Learner Mobility With SSI & Portable Digital Credentials
Document20 pages
Enhancing Learner Mobility With SSI & Portable Digital Credentials
Samir Bennani
No ratings yet
Getting started with Self-Sovereign Identity in 90 days
Document43 pages
Getting started with Self-Sovereign Identity in 90 days
Samir Bennani
No ratings yet
Decentralized Identifiers:: The Linchpin of SSI
Document29 pages
Decentralized Identifiers:: The Linchpin of SSI
Samir Bennani
No ratings yet
The Evernym Platform: Powering SSI Tech
Document37 pages
The Evernym Platform: Powering SSI Tech
Samir Bennani
No ratings yet
Accelerating Digital Identity For Commerce: Grey Colorpicker
Document33 pages
Accelerating Digital Identity For Commerce: Grey Colorpicker
Samir Bennani
No ratings yet
Distributed Ledger Identification Systems in The Humanitarian Sector
Document42 pages
Distributed Ledger Identification Systems in The Humanitarian Sector
Samir Bennani
No ratings yet
An Introduction to Self-Sovereign Identity and Transforming Customer Experience
Document44 pages
An Introduction to Self-Sovereign Identity and Transforming Customer Experience
Samir Bennani
No ratings yet
Did Auth PDF
Document31 pages
Did Auth PDF
Samir Bennani
No ratings yet
Did Auth PDF
Document31 pages
Did Auth PDF
Samir Bennani
No ratings yet
Ethereum White Paper Made Simple
Document29 pages
Ethereum White Paper Made Simple
Samir Bennani
No ratings yet
Cybersecurity Penetration Testing on the Ethereum Blockchain
Document36 pages
Cybersecurity Penetration Testing on the Ethereum Blockchain
Samir Bennani
No ratings yet
Ryerson International Comparison Ofcyber Crime - March2013 PDF
Document51 pages
Ryerson International Comparison Ofcyber Crime - March2013 PDF
IELTS
No ratings yet
Aadhar CARD
Document1 page
Aadhar CARD
Jagsir Sidhu
No ratings yet
Sample of School ID
Document10 pages
Sample of School ID
Zane Favila
No ratings yet
Exploring The Digital Health Landscape in Germany Insights From Market Dynamics Business Models and Ethical Considerations
Document21 pages
Exploring The Digital Health Landscape in Germany Insights From Market Dynamics Business Models and Ethical Considerations
heeducationalservices
No ratings yet
Ict Ethics, Policy & Security Issues
Document25 pages
Ict Ethics, Policy & Security Issues
rian gunawan
No ratings yet
Worksheet Science Grade 4 Force Motion and Energy 0
Document2 pages
Worksheet Science Grade 4 Force Motion and Energy 0
Lovelyn Nieto Quezon
No ratings yet
5471-1697022878374-CC6059 Coursework Assignment
Document17 pages
5471-1697022878374-CC6059 Coursework Assignment
Arani Navaratnarajah
No ratings yet
Read Google CEO Sundar Pichai's Testimony
Document4 pages
Read Google CEO Sundar Pichai's Testimony
kballuck1
50% (2)
Kai Greene 6 Week Program
Document7 pages
Kai Greene 6 Week Program
Keyfireshotz
No ratings yet
Trump Document Dump FIN-2017-70416
Document65 pages
Trump Document Dump FIN-2017-70416
Bob Mackin
No ratings yet
Department of Education: Gawad Kampilan Nomination Form 2 (School Category)
Document8 pages
Department of Education: Gawad Kampilan Nomination Form 2 (School Category)
Coreen Denielle T. Dela Vega
No ratings yet
Ecb - Op307 C85ee17bc5.en
Document46 pages
Ecb - Op307 C85ee17bc5.en
Sarang Pokhare
No ratings yet
Chapter 2
Document25 pages
Chapter 2
OM DINA
No ratings yet
ISACA Journal-Volume-3-2020
Document68 pages
ISACA Journal-Volume-3-2020
AnthonyLe
No ratings yet
Rex Glensy - The Right To Dignity
Document78 pages
Rex Glensy - The Right To Dignity
rodrigocalixtomello
No ratings yet
EASA Concept Drone Brochure Web
Document12 pages
EASA Concept Drone Brochure Web
Adeva Rizky Putra
No ratings yet
Week 1 Slides - Powerpoint
Document27 pages
Week 1 Slides - Powerpoint
Aditya
No ratings yet
ICS2604 - Computer Ethics 2
Document18 pages
ICS2604 - Computer Ethics 2
Phillipe Alain
No ratings yet
CCTV Effectiveness in Reducing Crime
Document31 pages
CCTV Effectiveness in Reducing Crime
Neil Adonis Usaraga
No ratings yet
FTC Safeguards Rule
Document7 pages
FTC Safeguards Rule
vcuCommunications
No ratings yet
Duoethnography: A Polytheoretical Approach To (Re) Storing, (Re) Storying The Meanings That One Gives
Document36 pages
Duoethnography: A Polytheoretical Approach To (Re) Storing, (Re) Storying The Meanings That One Gives
Stanislav Shkel
No ratings yet
1195
Document6 pages
1195
speedy611
No ratings yet
Explain Ethical Principles in Social Work
Document11 pages
Explain Ethical Principles in Social Work
Galavu
100% (1)
Bis Bops
Document4 pages
Bis Bops
Randy Jake Calizo Baluscang
No ratings yet
Computers and The Law: Computer Crimes
Document3 pages
Computers and The Law: Computer Crimes
Uzair Soomro
No ratings yet
Platform Accountability and Transparency Act (PATA)
Document35 pages
Platform Accountability and Transparency Act (PATA)
Tiffany L Denen
No ratings yet
DEC2
Document136 pages
DEC2
JeraldD'costa
No ratings yet
Hampton-Europe-900-ACCESSIBILITY, SAFETY AND SECURITY
Document21 pages
Hampton-Europe-900-ACCESSIBILITY, SAFETY AND SECURITY
Nalan BAHCEKAPILI
No ratings yet
Letter To The Office For Civil Rights For Violation of HIPAA Privacy Laws
Document6 pages
Letter To The Office For Civil Rights For Violation of HIPAA Privacy Laws
James Alan Bush
No ratings yet
Ghaffa Ndaru Sandyeta Bin Marsudi - (32DDT20F2034) Muhammad Azeem Amirul Bin Mohd Zulkeflee - (32DDT20F2031)
Document18 pages
Ghaffa Ndaru Sandyeta Bin Marsudi - (32DDT20F2034) Muhammad Azeem Amirul Bin Mohd Zulkeflee - (32DDT20F2031)
Triple DDD
No ratings yet