Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Best Biometric Authentication System?

Posted by samzenpus on from the eyes-have-it dept.

kwelch007 writes I run a network for a company that does manufacturing primarily in a clean-room. We have many systems in place that track countless aspects of every step. However, we do not have systems in place to identify the specific user performing the step. I could do this easily, but asking users to input their AD login every time they perform a task is a time-waster (we have "shared" workstations throughout.) My question is, what technologies are people actually using successfully for rapid authentication? I've thought about fingerprint scanners, but they don't work because in the CR we have to wear gloves. So, I'm thinking either face-recognition or retinal scans...but am open to other ideas if they are commercially viable.

6 of 127 comments (clear)

  1. RFID/card scanner by Anonymous Coward · · Score: 5, Insightful

    Don't you all already badges or dongles or something along those lines?

    1. Re:RFID/card scanner by hawguy · · Score: 3, Insightful

      Don't you all already badges or dongles or something along those lines?

      Hard to get any faster and more convenient than this -- if they don't want to make employees scan their badges, put an RFID reader in the chair and keep the badge in the back pocket and it's automatic and instant every time they sit down at a workstation.

      Unless they have a specific need for biometrics, there's no point in using it.

  2. too complicated by roc97007 · · Score: 3, Insightful

    > So, I'm thinking either face-recognition or retinal scans...

    Waayyyy too complicated and expensive and Charlie's Angels-ish. If all you're trying to do is identify which user performed which step, RFID is your friend. Have an RFID sensor integrated into the workstation, and require the user to "sign" their work with their badge before they can commit.

    Look at people going to work every day using RFID badges. If you want something faster than logging in with A/D credentials (which would have been my first suggestion), swiping a badge is pretty much as fast as you're going to find.

    Now, if people using each other's credentials is a concern, or security in general, then you're looking at using A/D credentials plus a badge ("something you know, and something you have"). I personally wouldn't go with biometrics until they've gotten cheaper and more foolproof. Maybe never.

    --
    Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
  3. None! by Vlijmen+Fileer · · Score: 5, Insightful

    Can this discussion about the supposed virtues of biometric identification / authentication please die?
    Biometric properties are like usernames. Not like passwords. They don't "authenticate" anybody; your fingerprints e.g. can be found all over the world, right in the open.
    And on top of that they are BAD usernames, because they can not be changed. Once your biometric identity has been compromised, you have to give up to whole identification / authentication /system/, because the property can not be changed!

  4. Biometric authentication is flawed by manu0601 · · Score: 3, Insightful

    Biometric authentication is flawed, because your credentials are not secret, and they cannot be revoked. If an attacker manage to clone for instance your fingertip, you cannot change it, you need to change the authentication system.

    Biometric may be reasonably used as a second factor, for instance for unlocking a smart card

  5. WTF by Anonymous Coward · · Score: 5, Insightful

    Typical engineer, overcomplicating the shit out of a simple problem. Give each guy a 4-digit PIN and have them hammer it in to the workstation to gain access.