Technology & Security

BioStore supports in excess of 3 million users a day across the UK with its centralised Identity Management System, which allows a single card or biometric to be used across multiple applications.

There has been a fair amount of controversial press around the issue of biometrics. BioStore strongly recommends that organisations looking to implement any kind of biometric system, consult with and address any issues raised by parties that would be involved in the use of biometrics.

BioStore and our Partners will always offer an opt-out option for individuals who are uncomfortable with using biometrics. Our system can be used with any combination of finger recognition, cards, PIN codes, usernames and passwords, and more. Each BioStore Partner will offer particular opt-out options for use with their applications.

Encryption

The BioStore database is encrypted using AES256 – an industry standard and highly secure technology. All communications between applications and the database are also encrypted using AES256. Each school has its own secret unique group of AES256 encryption keys, which means that the database and any backup of its contents can only be accessed on licensed hardware, and the encrypted data is only available to the registered licensee. Even if a school’s security were to be compromised and a backup of the database stolen, the encrypted data would still be unreadable, even by another school.

AES256 is the same encryption technology that is used in Microsoft’s BitLocker disk drive encryption, and is certified by the National Security Agency of America to be used to protect Top Secret information.

database-security

Fingerprint Recognition

When a person registers their fingerprint in BioStore, no image is saved. Instead approximately 40 to 60 minutia points are recorded – minutia points are the location and direction of where a ridge ends or splits in two. The rest of the information from the fingerprint is discarded.

The information used is encrypted and called a template. The data is extremely secure in its encrypted form, but even if it were not encrypted it is impossible to recreate the original image of the finger from this data. The BioStore system only stores a short string of encrypted numbers – too few to provide enough detail for the original print to be reconstructed.

biometric_reader

ID Points

ID Points provide access control and are used to manage user authentication for many of BioStore’s solutions, whether it be with biometric, RFID card or PIN.

Strategically positioned, they can facilitate the requirements of lost or forgotten passwords using Password Manager, as well as providing print & copy control.

IDPoint-Reader-large