Mobile Comunication Biometrics
BIOMETRY: Whitepaper on Mobile Biometrics, Safe & Easy
For strong safety the user will get four randomized and subsequent numbers or words displayed on the screen and would speak them. Each number is verifying simultaneously his biometric face, voice and speech. The results of the twelve biometric procedures are fused, to allow one and very safe authentication. Fraudulent imposters cannot fake three biometrics and twelve processes, recorded simultaneously on front part of smartphone. Random Challenge Response renders spoofing and replay attacks impossible. No specific Hardware is needed. Even older smartphones are good, allowing a fast and easy market entry.
Easy handling is achieved by verifying the user's voice on each phone call and verifying his face whenever he does an SMS or e-Mail on his smartphone. Public phone habits need not to be changed, biometrics are taken "on the fly" and totally effortless, resulting in a high consumer acceptance. We also registered a patent on a biometric procedure fusing up to four features for a normal answer to an incoming mobile call. When the phone rings and the user looks who is calling, we do biometric face verification. When the user moves the phone to speak, the camera will capture his face profile and the ear conch, both biometric features that we verify. Last not least the voice is verified. All steps are redundant, so all remains smart and fast. The more of the four features we verify positively, the stronger and safer is the authentication.
Easiest availability with ATL "Adaptive Trust Level": BIOMETRY separates the moment of authentication from the time of using it and manages the level of trust in an embedded App. The icon "ID" on the top line (see red arrow, left) indicates the trust on the mobile. A simple click shows % and QR-code for use and communication to interfaces. Voice only or face only authentication carries the risk of replay attacks and weak security. Therefore the level of trust should be increased by 10% only, on positive voice during a phone call and face for SMS. Individual biometrics can be staged but not bypass 35% trust level. To reach highest trust, the process with the four numbers and the twelve processes are used, see strong safety above.
The higher the trust the faster it drops away, for security reasons. The lower the trust, the slower it drops, see image next. 10% minimum trust is always retained allowing instant action for Micro-Payment or unsafe doors etc.
mobile Apps and mobile Banking: All can simply be linked to the percentage of trust, see image next. 10% could be for 100 CHF, 20% for 200 CHF etc. This allows most of our daily payments without executing any cumbersome process of authentication. It is achieved by simple and regular use of the phone. Only for high amounts the user is requested to reach strong security and would start the process of speaking the four randomized numbers see above.