Telebiometric Authentication Objects

This paper describes a method for achieving strong, low cost multi-factor authentication on the Internet of Things that is convenient for people to use. Authentication relies on tagged objects functioning with biometric sensors connected to a telecommunications network. Access control systems based on these telebiometric authentication objects do not require users to carry individually assigned security tokens, remember complex passwords, or possess and manage cryptographic keys and public key certificates. Authentication decisions are based on previously registered person-object associations created using cryptographic techniques that bind the biometric reference template of an individual to one or more tagged objects. Trusted person-object bindings are formed using digital signature or signcryption techniques based on certificates in a public key infrastructure. Cryptographic message syntax is defined that can be used to provide data integrity and origin authenticity services for telebiometric authentication objects and messages, and to protect the confidentiality of personally identifiable and other sensitive information.