The project consisted in developing a PKI system for the state of Mexico. The PKI had to be using biometric data: fingerprints from enrolled users. The data were collected with a precise biometric reader and stored in a .NET Gemalto card (idprime) . We were also using an on-card matching applet provided by precise biometrics. When the user was enrolled, a CSR was sent to the CA with biometric data included as OIds. The goal was to create a fully secure system with non-repudiation.
The enrollment was done via a web interface using active X . The CA was Microsoft Enterprise CA on the Windows server.
I used ASP.net to develop the backend, allowing the processing of CSR, the signatures etc ... I also developed an API (pkiSign) in .NET .
The project also involved some complex aspects with card minidrivers and CSPs. The project was a complete success.
video demo 1 (Biometric Enrollment)
video demo 2 (CA management)
video demo 3 (CA management)
Full video demo see this document
User Guide (pdf)
I used ASP.net to develop the backend, allowing the processing of CSR, the signatures etc ... I also developed an API (pkiSign) in .NET .
The project also involved some complex aspects with card minidrivers and CSPs. The project was a complete success.
video demo 1 (Biometric Enrollment)
video demo 2 (CA management)
video demo 3 (CA management)
Full video demo see this document
User Guide (pdf)
|
|
|