Regional sites:    Specialized sites:
.NET Bio   In Production
 
Biometric Match on Card Solution on Windows XP, Vista and Seven, based on Protiva .NET smart cards  
 

Gemalto .NET Bio Solution is an innovative software solution that provides fingerprint biometric support for Gemalto .NET smart cards integrated with Microsoft Windows XP, Vista and Windows 7.

Gemalto .NET Bio Solution enables fingerprint Match-on-Card user authentication as an alternative or complement to smart card PIN verification. This in turn gives access to the digital certificates on the card, that can then be used for logon, digital signature, file encryption, secure VPN access among other services. This solution provides a secure two or three factor authentication system that is convenient for users, easy to deploy and manage, and fully compatible with the smart card security components available in Windows Operating Systems. It is also compatible, with the vast majority of fingerprint sensors available in the market.

Features and Benefits
Features:
  • Fingerprint storage and fingerprint verification performed on-card
  • 4 different modes modes for card authentication: PIN only, Fingerprint Only, PIN or Fingerprint, PIN and Fingerprint
  • Storage for up to 10 fingerprint templates
  • Compatible with standard fingerprint sensors representing 90 % of the market
  • Integrated with Microsoft Operating Systems, Microsoft applications and 3rd party applications that support Microsoft's Windows Smart Card Framework (and Windows Biometric Framework for the Windows 7 version)
  • User experience consistent with Microsoft OS
  • Compliant with the Microsoft Minidriver specifications version 7

Benefits:

  • Security: Optional Three-Factor Authentication: Token, PIN and Fingerprint
  • Security: Biometric credentials securely stored on smart card. Not susceptible to service outages and Man-in-the-middle attacks
  • Convenience: Roaming --> User can use fingerprints and certificates stored on the card to authenticate on any computer
  • Convenience: Fingerprints used instead of the smart card PIN – Easier to use, no forgotten PIN issues --> Better user acceptance and adoption
  • Privacy: Match performed on the card: Biometric credentials never leave the card
  • Non repudiation: User cannot deny having operate the application or the transaction
  • Compliancy: Certain countries have regulations preventing storage of biometric data in central repositories.
  • Technology: Maturity, accuracy and performance
  • Cost-savings: Eliminating expensive and complex password administration.
News
July 2010 Release of .NET Bio Solution for Windows 7 v2.0.1: Different bit value in PC registry
Up date of the Administrator Guide of the .NET Bio Solutions for Windows XP, Vista and Seven. Addition of the Release Notes in the zip installation packages. See Download / Libraries.
June 2010 Release of .NET Bio Solution for Windows 7 v2.0.0 including new minidriver v7.1.0.1 and biometric on card assemblies, middleware, installation software and documentation. For more details, please refer to the Release Notes and Administrator Guide included in the .NET Solution for Windows 7 zip file in Download / Libraries.
May 2010 Certification of the new minidriver dll v8.2 listed in the Microsoft Windows Update site. It is backward compatible with all the .NET card versions.
April 2010 New PKCS#11 libraries version v2.1.3.2: This version fixes a minor bug (regarding the No_PIN option). There are three versions delivered as follow:
-  Windows (32 and 64 bit): XP Pro up to SP3, Vista SP1/SP2, Seven, Server 2003, 2008 and 2008 R2.
- UNIX-like OS, such as Linux, Solaris and MacOS (32 and 64 bit): Delivery in source code format under standard LGPL license (included in the zip file)
-  Mac OS 10.6 Intel (32 and 64 bit): The package also includes the .NET Tokend v1.1 libraries. These libraries are delivered in a compiled format.

 These libraries are available from Download / Libraries.
March 2010 New PKCS#11 libraries version v2.1.3.1: The v2.1.3.1 libraries fix two bugs (see the Release Notes) and are now delivered as follows:
-  Windows (32 and 64 bit): XP Pro up to SP3, Vista SP1/SP2, Seven, Server 2003, 2008 and 2008 R2. The library is delivered in a compiled format and is available from Download / Libraries.
- Linux, Mac OS 10.5 and 10.6 Intel (32 and 64 bit), Solaris v10 SPARC and Intel: The library is delivered in source code format. Please contact your Gemalto representative.

Video about the .NET Bio Solution by Tom Flynn at the RSA exhibition. Click here.
February 2010 New PKCS#11 libraries version v2.1.3: The new v2.1.3 libraries now support the biometric authentication on Windows 7 and Server 2008 R2, the No_PIN type and the following OS:
- Windows (32 and 64 bits): XP Pro up to SP3, Vista SP1/SP2, Seven, Server 2003, 2008 and 2008 R2
- Mac OS 10.6 Intel (32 and 64bits): The Tokend libraries are not supplied in this package (on request).
- Solaris v10 SPARC and Intel
The Linux distributions such as Red Hat v5, Ubuntu v9.05, Debian v5 and Suze v11 are not part of this release. They are still supported by the v2.1.1 release (see below).
The libraries, their associated User Guides and Release Notes are available from Download / Libraries.

New version v1.0.1 of the .NET Bio Solution for Windows 7 middleware available at Download / Libraries

Gemalto.com site Product Launch page: General purpose page providing links to more detailed information, FAQ and an article from Microsoft in The Review magazine. Click here.
January 2010 Product launch of the .NET Bio Solution for Windows 7:
- Product Catalog launch page: What's new, Download, Usefull links, How to try it, samples, readers, etc
November 2009 Update of the .NET and .NET Bio cards Minidriver (MD) dll: This MD is available from the Microsoft Update Catalog that lists all the certified MDs. There is now only one MD for all the Windows OS and all the 32/64 bit platforms. This MD complies with the Microsoft Base CSP and MD specifications v7 and supports all the existing .NET v2+ cards.

NET Bio smart card samples now available from the webstore. See the Ordering Procedure section. These samples work only with Windows XP and Vista. For Windows 7 samples, please contact the Product Marketing Manager.
 
October 2009 New PKCS#11 library version v2.1.2 for Windows: The new v2.1.2 library now supports:
- Windows 7 and Server 2008 R2
- Mozilla Firefox 3.5 and Adobe Acrobat 9.x
- PINpad readers compliant with PC/SC v2.0: Verify PIN function only supported.
The library and its associated User Guides are available at Download / Libraries.

Technical Specifications

System requirements:

• Windows XP, Vista SP1 and Windows 7
• PC/SC smart card reader
• Fingerprint devices supported (to be confirmed for Windows 7):
        - UPEK sensors: TCS1, TCS2, TCS3, TCS4
        - AuthenTec sensors: AES2501, AES2550, AES2801
        - Broadcom CVU with swipe sensors
        - For Windows 7, Gemalto recommends the UPEK Eikon swipe reader
• Gemalto .NET  Bio v2+ smart card

Disclaimer:
Please note that not all implementations of above mentioned sensors are reference implementations. We are utilizing the latest dll:s from UPEK and AuthenTec and for the solution to recognize the sensors, it’s important that the latest drivers are installed. Additional sensor support is added continuously and is also available upon request.
For all UPEK sensors we are utilizing BSAPI.dll version 3.5.
For AuthenTec sensors we are utilizing the runtime AT8.4min and the drivers included in this.
Broadcom CVU is not a reference implementation of the sensors. We are compatible with CVUsr1fc with the latest drivers.

Compatibility
SOLUTION TYPE PARTNER SOLUTION Version Smart card support through .NET Bio
Operating System logon Microsoft Windows 7   BaseCSP Yes
Microsoft Windows Vista   BaseCSP Yes
Microsoft Windows XP   BaseCSP Yes
Desktop applications Microsoft Word   BaseCSP Yes
Microsoft Excel   BaseCSP Yes
Microsoft PowerPoint   BaseCSP Yes
E-Mail clients Microsoft Outlook   BaseCSP Yes
Web browsers Microsoft Internet Explorer   BaseCSP Yes
  Checkpoint VPN-1 SecureClient NGX R60 BaseCSP Yes
Bio Match on Card Precise Biometrics Biomatch   BaseCSP Yes
Certification Authority Microsoft CA Cert Srv   BaseCSP Yes
 
Next Steps

Useful links

  • .NET Utilities A set of online tools that allow you to manage samples of Gemalto .NET cards
  • Microsoft Upgrade: Download the latest certified v7 .NET card minidriver dll
  • .NET Forum A moderated forum for exchange of information about programming, features and uses of  Gemalto .NET cards
  • .NET card main page
  • .NET Bio Solution for Windows 7 Product launch page
  • Gemalto Webstores
     

Exclusive information for Gemalto Enterprise Partners

Additional information about this product is available exclusively to Gemalto Enterprise Partners. Click here to access it through the Enterprise Partner Portal.
 
EU Commitments | Sitemap | Disclaimer | © 2006-2010 Gemalto NV