Introduction¶
idManager is a service in your PC capable of capturing images from Fingerprint readers and extracting or matching them.
Arquitecture¶
idManager for Server¶
- Comparison and registration of fingerprints
- Windows Service
- Configurable database
- Certificate support (https)
- Configurable port
- REST communication
- Material and templates for integration
This service will be used by any type of application, web or executable.
The basic information stored is an ID (alphanumeric) and the fingerprint. There are other fields, but they are not mandatory (example: Country, to limit the search for fingerprints)
idManager has a database structure optimized for the querying and storage of biometric patterns. The column of biometric data can be encrypted with FIPS 140-2 algorithms to offer an additional level of security and comply with the highest standards of the GDPR and NIST.
The stored biometric standards are ISO or ANSI, to offer the maximum possible compatibility and thus comply with the NIST standards and with possible governmental requirements for the possible exchange of data.
All communications are encrypted by certificates, complying with FIPS 186-4 and with it the NIST. In the event that the user does not have certificates, we place at your disposal a Certifying Authority of your own, which generates ECDSA certificates, in order to guarantee secure communications adapted to the highest standards compatible with NIST.
It is possible to add geographic and bibliographic data to reduce the number of comparisons and eliminate possible false positives when biometric patterns reach one million or more records. It is also possible to include this data with a lower number of registers to further optimize the performance of the Server.
The server is optimized to parallelize the tasks both by processor core and by number of servers, this way, we can ensure a good performance. If necessary, more servers can be added to balance tasks or simply as a backup element in case the main server crashes.
idManager for Client¶
- Communication with device and obtaining biometric images and biometric patterns
- Local Service for user permissions
- Started through a service
- Support for certificates (https)
- Configurable Port
- REST communication
- Material and templates for integration
This local service will be used from a web application to obtain a PIV (Personal Identity Verification) image or a biometric pattern, later, it will be sent to the server to be stored, identified or compared.
idManager is designed so that, from the same API, it can communicate with different devices and finally launch storage, identification and comparison tasks against the server.
All communications are encrypted by certificates, complying with FIPS 186-4 and with it the NIST. In case the user does not have certificates, we have at our disposal a Certification Authority that generates ECDSA certificates in order to guarantee secure communications adapted to the highest standards compatible with NIST.
We work with devices that comply with FIPS 201 to generate a PIV image and that it is compatible with ISO or ANSI to guarantee the highest NIST standards. In some cases, the devices do not generate this type of format, through our own algorithms, we make the appropriate corrections of the image to comply with the ISO / ANSI standards.
Biometric capture devices do not usually take into account the percentage of captured image or the quality of it, we, using our own algorithms, we optimize this information to ensure that the capture of the fingerprint has the highest possible quality for further treatment. To this same process, a correction for the detection of latent prints is added and finally the quality of the image is checked by the NFIQ algorithms to guarantee that the extraction of the minutiae is of the highest possible quality.
We offer, in configuration parameters, the automatic detection of duplicate fingerprints.
Our APIs are designed to be used from any type of application and any programming language.