Mobile Biometric Authentication  /  Knomi™2018-10-23T08:49:36+00:00

Mobile Biometric Authentication Framework

The Knomi mobile biometric authentication framework is a collection of biometric SDKs running on mobile devices and a server that together enable strong, multi-factor, password-free authentication from a mobile device using biometrics. Knomi offers multiple biometric modality options, including facial recognition, keystroke dynamics, and voice authentication as means to authenticate. Banks or any other commercial enterprise can deploy Knomi to enhance their password-based authentication mechanisms, making login to their mobile applications more secure and convenient for their customers and employees. Knomi software components can be used in different combinations and configurations to enable either a server-centric architecture or a device-centric, FIDO® Certified implementation.

  • Device- or server-centric biometric matching and template storage
  • Several biometric modality options, including face, voice, and keystroke dynamics
  • High-performance facial recognition and liveness detection, addressing multiple attack modes with or without user interaction
  • Keystroke+Face Authenticator captures face and keystroke simultaneously, with fusion of biometric results for boosted accuracy and liveness detection performance
  • Voice+Face Authenticator offers market-leading performance for speaker recognition and liveness detection
  • FIDO® Certified UAF Face Authenticator, Client, and Server
  • All components are available as a la carte SDKs with reference application code
  • iOS and Android versions

Spoof Detected

ARRANGE A DEMO

MOBILE BANKING AND PAYMENTS

ENTERPRISE SECURITY

MOBILE APP LOGIN

Several biometric modalities are supported for superior security and flexibility

Mobile Biometric Authentication Modalities

Device- and server-centric architectures are supported, including FIDO®

Three architectures are supported: Device-Centric, FIDO® Certified, and Server-Centric. Knomi D offers software that performs all functions on the device. Knomi F adds FIDO Certified and FIDO Ready components. Knomi S moves functions to the server, including biometric template creation, matching and storage.

Knomi Diagram

Modular software components are available a la carte or as a bundle

The following illustrates the software components available to satisfy each architecture:

Mobile Authentication - Knomi

Knomi D

Device-Centric Authentication

Biometric template storage and matching is performed on the device, as are algorithms for autocapture, liveness detection, and spoof detection.

  • Mobile Face Authenticator. SDKs running on the device to perform facial image capture and analysis designed to quickly capture high-quality facial images and detect spoof attempts. Biometric template generation and comparison are also performed. Incorporates elements of Aware’s PreFace and Nexa|Face™ SDKs.
  • Mobile Keystroke+Face Authenticator. This authenticator applies keystroke dynamics and facial recognition simultaneously to achieve exponential performance improvements in both biometric matching and spoof detection.
  • Mobile Voice+Face Authenticator.  This authenticator applies both voice and face authentication, with simultaneous capture for an ideal user experience.  

Knomi F

FIDO® Certified Authentication

Knomi F is a family of software products for biometric authentication that are either FIDO Ready as conformant with the specifications of the FIDO Alliance or additionally FIDO® Certified and interoperable with other FIDO-certified products.

  • FIDO Face Authenticator. FIDO Face Authenticator allows a user to login to a mobile application of a relying party (such as a banking app) using their face for authentication. It applies interactive liveness detection, including eye blinking. The facial biometric sample never leaves the security boundaries of the authenticator application. FIDO Face Authenticator is Level 1 UAF version 1.1 FIDO Certified for Android and iOS.
  • FIDO Keystroke+Face Authenticator. This authenticator applies keystroke dynamics and facial recognition simultaneously to achieve exponential performance improvements in both biometric matching and spoof detection. This authenticator is FIDO Ready.
  • FIDO Voice+Face Authenticator.  This authenticator applies voice and face authentication and liveness detection, with simultaneous capture for an ideal user experience. This authenticator is Level 1 UAF version 1.1 FIDO Certified for Android and iOS.
  • FIDO Client. FIDO® Client is the intermediary application that helps to bind FIDO authenticators with the relying party mobile application. FIDO Client can look up all FIDO authenticators on the device, and communicate via JSON messages standardized by the FIDO ASM API. FIDO Client is FIDO Certified.
  • FIDO Server. FIDO® Server enables a relying party server to offer FIDO-based login from their mobile applications. FIDO® Server encapsulates the FIDO features required at the server, such as maintenance of the FIDO login policies, management of the public keys, and verification of the signatures created on the mobile device. FIDO Server is FIDO Certified.

More information about FIDO Certified authentication products can be found here.

Knomi S

Server-Centric Authentication

Biometric template storage and matching are performed on the server, with algorithms for autocapture and liveness/spoof detection operating on both the device and on the server.

  • Mobile Face Client. Application running on the device to perform facial image capture and analysis designed to capture high-quality facial images quickly and to detect spoof attempts. Built upon the PreFace Mobile SDK.
  • Face Authentication Service. Server-based software API for facial template storage and matching. Built upon the Nexa|Face SDK.
  • Face Liveness Service.  Server-based API for facial image analysis, including liveness detection and spoof detection. Built upon the PreFace SDK.
  • Keystroke+Face Authentication Service. This authenticator applies keystroke dynamics and facial recognition simultaneously to achieve exponential performance improvements in both biometric matching and spoof detection.
  • Voice Authentication Service. This authenticator applies high-performance voice authentication, offering an alternative to facial recognition when preferred by the user or in conditions when facial recognition is insufficient.

Knomi Server

Knomi Server is the component of the Knomi mobile biometric authentication framework that can be integrated with identity servers to quickly enable them with password-free multifactor authentication (MFA) using biometrics on a mobile device.

For organizations using an identity and access management (IAM) platform to implement secure access control, SSO, and federation for employees or customers, adding Knomi enables users to login to assets normally accessible by PC or browser with a username and password by instead biometrically authenticating on their mobile device in an “out-of-band” fashion. Knomi Server has been integrated with several leading identity and access management products. Any enterprise can integrate Knomi to enhance their identity platform with multifactor authentication using out-of-band mobile biometrics, making login to their online assets more secure and convenient for their employees.

Out of Band Multifactor authentication using mobile biometrics

Arrange a Demo

Aware lands among Enterprise Security Magazine’s Top Ten Multifactor Authentication Solution Providers for 2018

Passwords were conceived for the computing systems of the 1960s; they are insecure and inconvenient for users of today’s Internet-centric computing environment. No matter what we do to shore up their effectiveness, hackers devise new ways to defeat them. Phishing, interception, knowledge-based guessing, brute-force attacks, and large-scale data breaches make authentication based solely on passwords unacceptably vulnerable.

Load More Posts
2018-05-21T16:11:10+00:00

Mobile Biometric Authentication: Pros and Cons of Server and Device-Based  |  WHITE PAPER

White Paper Mobile Biometric Authentication: Pros and Cons of Server and Device-Based MULTIPLE BIOMETRIC MODALITIES FOR AUTHENTICATION CAN ACHIEVE HIGHER BIOMETRIC PERFORMANCE. Introduction Biometrics use “inherent” factors (something the user is) to authenticate a [...]

2018-05-23T11:09:38+00:00

The Future of Mobile Authentication: Multimodal Biometrics  |  WHITE PAPER

White Paper The Future of Mobile Authentication: Multimodal Biometrics Identity fraud: a trillion dollar problem The vast majority of modern authentication implementations strive to maximize both security and convenience; that is, to: Make it as difficult [...]

2018-01-03T16:51:07+00:00

How Biometrics Expand the Reach of Mobile Banking

How Biometrics Expand the Reach of Mobile Banking Download PDF here if you are having trouble viewing. https://www.aware.com/wp-content/uploads/2017/09/aware-biometrics-mobile-banking-ebook-2.pdf The Mobile Banking Opportunity For financial institutions, mobile banking is a cost-effective way to reach [...]

2017-04-27T10:50:19+00:00

What is Biometrics as a Service? Benefits and Use Cases  |   INFOGRAPHIC

What is Biometrics as a Service? Benefits and Use Cases Infographic Biometrics-as-a-Service (BaaS) solutions from Aware are an attractive alternative to traditional biometric software models. This technology allows [...]

Load More Posts