Unleashing Biometrics

Leading the way in biometric and identity authentication solutions

A Biometric and Identity Authentication Integration Platform

REKON ID is a biometric and identity authentication platform that enables large-scale identification systems for an entire organization ensuring security, data governance, auditability and confidentiality of personal and sensitive information. Our platform is used for verification and matching in both civil and criminal biometric systems, ID-card, Real ID, driver license and passport verification, user enrollment and onboarding, and for Know Your Customers (KYC) and Anti-Money-Laundering (AML) applications.

0
Face Recognitions per Second
0
Fingerprint or Iris Recognitions per Second

Our solution has a service-oriented architecture that allows the integration and construction of applications that take advantage of the platform’s identification and authentication services, for the various business processes that require it, in a unified, controlled and efficient way. It has a multi-platform application programming interface (API) for Windows .NET, Android and iOS to integrate biometric and identification capabilities to workstation and mobile applications.

The system integrates features both to carry out internal biometric identification and authentication processes with resources and information within the organization, as well as to carry out information exchange and authentication processes with external systems and services, such as external ABIS information exchange or voting card validation.

The platform supports multimodal biometrics (face, finger, iris, and voice recognition) and complies with applicable ANSI/NIST, ISO/IEC and FBI international standards.

Architecture

The REKON ID platform is made up of three main modules: Identity Broker, Automatic Biometric Identification System (ABIS), and Application Programming Interface (API).

Identity Broker
Automatic Biometric Identification System (ABIS)
Application Programming Interface (API)

Compatible with the technical and interoperability guidelines of RENAPO, INE, PROCESAR and SNSP; and it adheres to the General Law of Protection of Personal Data in Possession of Obligatory Subjects and Individuals.

Identity Broker

A powerful middleware platform that manages biometric and identification information, transactions, and business and logic rules for large-scale services. It is built around a service-oriented architecture and in accordance with international industry standards for biometric information processing, exchange and security.

Identity Broker manages the platform’s biometric and identity authentication services to be consumed by an organization, and manages the reception, authorization, processing and response of all service requests it receives. Each transaction is digitally signed and generates a log with relevant information for auditing, thus ensuring the unification and governance of all the authentication services provided by the platform. The broker also manages and controls identity databases and personal and biometric data within the system, maintaining the protection and confidentiality of all sensitive data.

Identity Broker has specialized connectors to directly integrate and manage automatic biometric identification systems (ABIS), and standardized interfaces to interoperate with external identification systems, such as those provided by RENAPO, INE, PROCESAR, SNSP, and DIGITUS. A graphical interface for the configuration and personalization of workflows facilitates designing and enabling workflows and activities tailored to each business process, as well as allowing for fast implementation of necessary adaptations to keep the services updated or incorporate new functionalities.

  • Administration of services and users.
  • Authentication and access control to system and services.
  • Secure transaction management and digital signing.
  • Management of OTP authentication codes.
  • User configurable and customizable workflows.
  • ID document scanning and authentication (passports, ID cards, driver licenses, voting cards, etc.).
  • Acquisition and quality assurance of biometric images (face, fingerprints, irises, voice).
  • Image processing (centering, segmentation, scaling, sequence check, WSQ compression/decompression, etc.).
  • Storage, consultation, packaging and exchange of biometric and identity information.
  • Local biometric identification searches (integrated AFIS/ABIS).
  • External biometric identification searches (external AFIS/ABIS with interoperability).
  • Identity verification queries with RENAPO, INE, PROCESAR, SNSP, DIGITUS.
  • Secure identification document printing (identification cards, driver licenses, etc.).
  • Audit and reports.
  • High availability, redundancy and DRP.
  • Can be configured as an in-house-platform or as a service.
  • Local development and support.

Automatic Biometric Identification System (ABIS)

A highly scalable, highly accurate (forensic category) integrated multimodal biometric automatic identification system with capabilities for facial, fingerprint, iris and voice recognition identification and verification searches.

The facial, fingerprint, iris and voice comparison engines are from the same manufacturer and integrated as a single service, using perfectly modulated and fine-tuned biometric fusion algorithms to process any type of search, whether it be a single biometry or several, in any combination, with the highest precision and reliability available in the industry.

The system is modular and scalable to satisfy any number of transactions that are required, and it is compatible with different database managers to facilitate the integration of identification systems of any size, from hundreds of thousands to hundreds of millions of records.

  • Multi-modal biometrics for facial, fingerprint, iris and voice recognition.
  • High precision algorithms, forensic category, recognized in the most recent and important independent precision tests: NIST FpVTE, FRVT, MINEX, etc.
  • Integrated biometric fusion algorithms to process any type of search, whether single or multiple biometrics, in any combination, with greater precision.
  • Fingerprint, facial and iris identification (1:N) searches.
  • Fingerprint (1:1) verification, face, iris and voice.
  • Management of batch (n:N) and de-duplication (N:N) searches.
  • Adheres to ANSI/NIST, ISO/IEC and FBI standards.
  • Capacity for identification systems with up to hundreds of millions of records.
  • Comparison speeds of up to 100 million faces, or 2 million fingerprints (four fingers per record), or 2 million iris records (one pair per record), per second.
  • Redundant configuration options (cluster).
  • For MS Windows or Linux platforms.
  • Multi-language API (Java, C++, C#, Python, etc.) and Thrift framework.
  • Possibility to filter searches by textual identifier, for segmentation by non-biometric characteristics, for partial or special identification flows.
  • High-level data interface with flexibility for integration with relational and non-relational databases, such as Oracle, SQL Server, MySQL, SAP HANA, MongoDB, etc.

Application Programming Interface (API)

A multi-platform application programming interface for Windows .NET, Android and iOS to integrate identity verification and authentication into workstation and mobile applications. The API offers device-independent methods for biometric and ID acquisition, data extraction and quality assurance according to international standards and identity verification through REKON ID BROKER.

  • Windows .NET, Android and iOS development platforms.
  • Hardware abstraction using the same API methods for different makes and models.
  • Capture, auto-segmentation and quality evaluation of fingerprints, photograph, irises and signature.
  • NIST NFIQ quality calculation and FBI WSQ compression of fingerprints.
  • Ensures compliance with ANSI/INCITS 385 – 2004 and ISO/IEC 19794 standards for the quality of biometric images.
  • Acquisition of passports and ID cards with OCR and MRZ (Machine-Readable Zone) reading and document authenticity validations through visible, ultraviolet and infrared lights.
  • Scanning of proof of identity documents.
  • Local searches for biometric matches 1:1 and 1:few.
  • Interface with Identity Broker.

The platform includes a framework for creating and managing workflows. It treats each step of a process as an activity, working with a predefined set of activities and adding custom activities for other kinds of functionality.  A Workflow Designer helps visualize these workflows.

General Architecture Diagram

The following diagram describes the platform’s architecture and how the Identity Broker, ABIS and API interact between each other and with other existing services.