Abstract: A system and method executed in one or more servers that interface with a Database Management System (DBMS) for signing and exchanging documents electronically with or without a PIV. If a PIV card is used, a card reader reads embedded private biometric key stored on the card and sends the private key to a node that has the corresponding public key on the X.509 certificate. The public key is derived from the private biometric key embedded in the PIV card as described above. Information contained in X.509 certificate is used to authenticate a user for example using the SSH protocol. If a PIV card is not used, the biometric data represents captured biometric data blocks, which are used to generate a biometric hash at a subscriber node. The subscriber node sends the biometric hash to a plurality of observer nodes that validate the hash by sending validation responses based on hash ledgers states at each observer node.
Abstract: A system and method executed in one or more servers that interface with a Database Management System (DBMS) for signing and exchanging documents electronically with or without a PIV. If a PIV card is used, a card reader reads embedded private biometric key stored on the card and sends the private key to a node that has the corresponding public key on the X.509 certificate. The public key is derived from the private biometric key embedded in the PIV card as described above. Information contained in X.509 certificate is used to authenticate a user for example using the SSH protocol. If a PIV card is not used, the biometric data represents captured biometric data blocks, which are used to generate a biometric hash at a subscriber node. The subscriber node sends the biometric hash to a plurality of observer nodes that validate the hash by sending validation responses based on hash ledgers states at each observer node.