BioLink IDenium is designed to replace a cumbersome and vulnerable password system with efficient and reliable user identification, using unique parameters that are distinct to each person - fingerprints. Since biometrics binds an identity directly to a human being, users (not their passwords or tokens) are reliably identified by applying their fingers to a compact biometric scanner. Consequently, administrator burden is reduced, the overall security level is increased, and users are provided with a convenient way of working. The fingerprint is a single credential to gain access to a corporate network, various applications, email and Internet web-sites.
BioLink IDenium is fully compliant with Microsoft Active Directory (AD). Such compatibility ensures centralized storage, protection and transfer of user identification data, applying conventional AD tools. User rights and permissions are managed centrally with the help of a standard Microsoft Management Console (MMC) of Active Directory Users and Computers (ADUC).
BioLink IDenium licenses (for workstations running under Microsoft Windows) can be purchased separately for previously purchased fingerprint scanners or delivered alongside ones that have been newly purchased. BioLink IDenium operates with biometric identification servers: BioLink Authenteon (running under Linux, hot swappable and supports an unlimited number of users) and BioLink ASA (running under Microsoft Windows and supports up to 1,000 users); each Windows domain is assigned a separate biometric identification server.
A start-up identification server license (10 users) can be extended by purchasing additional licenses for 10, 20 users, etc.
Clustering biometric identification servers means the load during peak periods can be balanced and the execution of user requests accelerated; IDenium provides automatic synchronization of user data, stored and processed by AD global catalogues and biometric identification servers. Customizing server settings, viewing and/or analyzing log files as well as IDenium starting and stopping procedures are done through convenient Web or COM/USB consoles.
The scanned fingerprint is digitized, and there is no restoration of the original fingerprint image from the digital template. User identification (including fingerprint scanning and processing) takes no more than 1.5 seconds. Users themselves can create and launch scripts to replace passwords with fingerprint identification to access various protected applications.
Security
Users do not know their passwords and, thus, are not able to share them with colleagues or forget. Consequently, no authorization using lost/stolen credentials is ever possible. Screensaver and Standby modes can also be reliably protected via fingerprint identification.
Generation of New Random Passwords
New passwords are generated automatically, as frequently as the administrator cares to define. New passwords are automatically assigned to the appropriate user accounts and biometric credentials.
Fault-Tolerance
Biometric identification servers are hot swappable. Users can log on using the local cache in the event the server/network becomes temporarily unavailable.
Centralized Installation
BioLink IDenium is installed automatically at the administrator workstation. One-time enrollment of user biometric credentials can be performed at the administrator or user workstation.
Cost-Effectiveness & Ease of Use
Reduced costs related to accessing the protected resources. Biometric credentials cannot be lost or damaged. Users do not have to remember passwords and, thus, administrators do not have to deal with password-related problems.