Page 28 - Implementation of Secure Authentication Technologies for Digital Financial Services
P. 28
IFAA specifications define three main protocols for the local model: registration, authentication, and deregis-
tration.
Figure 15 is the message flow of the registration protocol:
Figure 15 – IFAA biometric authentication – local model – Registration
User IFAA Credential Biometrics Application IFAA Authentication
User IFAA Client
Application manager system Server Server
1. User initiates
registration and 2. User registration request with authentication information
provides information 3. Verify User
for server authentication
authentication info
4. initiates
registration
5. Generates
registration
request info
6. Registration
request info
7. Registration request info
8. Registration
request info
9. Registration
request info
10. Registration
request info
11. Trigger biometric 12. Check user
authenticator enrollment status
13. Prompt biometric verification or
enrollment interface to user
14. User
biometric
verification or 15. User biometric verification or enrollment 16. Generate key
enrollment pair as auth
17. Registration credential
response
18. Generate key
19. Registration pair as auth
response with public credential, of not
key part generated in 16
20. Registration
response with public
key part
21. Registration response with public key part
22. Registration
response with public
key part
23. Verify registration
response and store
public key part
24. Return
verification result
25. Return registration result
26 Implementation of Secure Authentication Technologies for Digital Financial Services
