{"id":2719,"date":"2023-06-15T09:13:56","date_gmt":"2023-06-15T14:13:56","guid":{"rendered":"https:\/\/media-moon.com\/blog\/?p=2719"},"modified":"2024-07-10T00:25:50","modified_gmt":"2024-07-10T05:25:50","slug":"how-to-use-biometrics-for-your-cloud-infrastructure-part-4","status":"publish","type":"post","link":"https:\/\/media-moon.com\/blog\/how-to-use-biometrics-for-your-cloud-infrastructure-part-4\/","title":{"rendered":"How to Use Biometrics for Your Cloud Infrastructure \u2013 Part 4"},"content":{"rendered":"\n<p class=\"has-text-align-center wp-block-paragraph\"><em><strong>Introduction<\/strong><\/em><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Our last blog reviewed what the \u201cPlatform as a Service\u201d (or \u201cPaaS\u201d) part of the Cloud is.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It is essentially the second layer, which contains of both hardware and software components for your IT Infrastructure.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this blog, we look at third and final component of the Cloud, which is known as the \u201cSoftware as a Service\u201d, or \u201cSaaS\u201d.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is in fact the most heavily used part of the Cloud, as many software applications can be rented or purchased on demand, at an affordable and fixed monthly pricing.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Also, we will examine how Biometrics can protect the SaaS layer.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p class=\"wp-block-paragraph\"><em><strong>The SaaS<\/strong><\/em><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A specific definition of the SaaS is as follows:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cThe (SaaS) allows users to connect to and use cloud-based apps over the Internet. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Common examples are email, calendaring, and office tools (such as Microsoft Office 365).\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">(SOURCE:&nbsp; <a href=\"https:\/\/azure.microsoft.com\/en-us\/overview\/what-is-saas\/\">https:\/\/azure.microsoft.com\/en-us\/overview\/what-is-saas\/<\/a>).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Typically, the SaaS platform will reside in the same part of the PaaS server where that has its own set of software applications (as just described).<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p class=\"wp-block-paragraph\"><em><strong>How Can Biometrics Be Used to Protect the SaaS?<\/strong><\/em><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Since at this point we are now discussing securing software applications, Physical Access Entry is no longer the issue, it is now how to secure the Logical Access Entry side of this equation. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this scenario, there are four assumptions that are made:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">1. The PaaS Server (which also contains the SaaS Platform) will have a separate \u201cAuthentication Server\u201d which will store the Enrollment Biometric Templates of the subscriber\u2019s whom have purchased SaaS based applications;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">2. Fingerprint Recognition will be the predominant Biometric Technology to be used in this regard;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">3. A Web Browser will be used to access the SaaS applications;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">4. The use of APIs is also made in the authentication process.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p class=\"wp-block-paragraph\">How Fingerprint Recognition can be used to authenticate the end user wishing to connect to a SaaS app and also protect the SaaS platform is illustrated in the diagram below:<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"396\" height=\"413\" src=\"https:\/\/media-moon.com\/blog\/wp-content\/uploads\/2023\/09\/20.jpg\" alt=\"\" class=\"wp-image-2720\" srcset=\"https:\/\/media-moon.com\/blog\/wp-content\/uploads\/2023\/09\/20.jpg 396w, https:\/\/media-moon.com\/blog\/wp-content\/uploads\/2023\/09\/20-288x300.jpg 288w, https:\/\/media-moon.com\/blog\/wp-content\/uploads\/2023\/09\/20-144x150.jpg 144w\" sizes=\"(max-width: 396px) 100vw, 396px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">(SOURCE: <a href=\"https:\/\/azure.microsoft.com\/en-us\/overview\/what-is-the-cloud\/\">https:\/\/azure.microsoft.com\/en-us\/overview\/what-is-the-cloud\/<\/a>)<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\">\n<li>Step 1:<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">The end user submits their fingerprint via a Fingerprint Recognition Device connected to their computer via a USB connection.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">From here, the raw image is compiled, the unique features are extracted, and the Biometric Template (which is a mathematical file) is created.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This then becomes what is known as the \u201cModel File\u201d.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 2:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The \u201cModel File\u201d is then sent from the Fingerprint Recognition application (which actually resides in the device itself) to the API Service using what is known as a \u201cREST Call\u201d.&nbsp;<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 3:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The \u201cREST Call\u201d then connects to the Authentication Server; it sends it the \u201cModel File\u201d, and also requests for the authentication process of the end user to begin.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 4:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The Authentication Server then confirms the Enrollment Template it has of the end user with the information that is presented in the \u201cModel File\u201d.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 5:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">If the authentication proves to be successful in Step #4, the Authentication Server then ends over an API based username\/password combination.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 6:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Now having the username\/password combination that was established in Step #5, the API now sets up a new session on the web interface for the end user to access the SaaS application that he or she needs access to.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 7:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The API then creates and sends over the Session ID to the end user\u2019s computer.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 8:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The end user can now download this specific SaaS based application onto their own computer and access via a Graphical User Interface (GUI) through the web browser of their choice.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Step 9:<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The SaaS Platform can further manage this connection and service that is being provided through the Session ID that was created in Step #7.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p class=\"has-text-align-center wp-block-paragraph\"><em><strong>Conclusions<\/strong><\/em><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This concludes our series on the Cloud.\u00a0 <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Our next blog will examine how Biometrics can be used to protect your mission critical IT assets that are stored on your Network Infrastructure.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">By using a Hand Geometry Scanner and a Fingerprint Recognition Device in tandem like this, it also serves a Two Factor Authentication (2FA) solution.\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this post, we explore the concept of &#8220;Software as a Service&#8221; (SaaS), the third and most commonly used component of the Cloud, and we delve into how biometrics can be employed to secure SaaS applications, emphasizing the use of fingerprint recognition for logical access entry.<\/p>\n","protected":false},"author":7,"featured_media":2721,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[156],"tags":[51,18,101,45,44,35],"class_list":["post-2719","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-security","tag-cyber-security","tag-data","tag-data-security","tag-malware","tag-phishing","tag-security"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/posts\/2719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/comments?post=2719"}],"version-history":[{"count":0,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/posts\/2719\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/media\/2721"}],"wp:attachment":[{"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/media?parent=2719"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/categories?post=2719"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/media-moon.com\/blog\/wp-json\/wp\/v2\/tags?post=2719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}