Windows 7: Features

By Patrick Nelson

Biometrics offer users an easy way to log onto computers. Fingerprint readers can be used to authenticate and log users onto the machines.

The devices identify and authenticate the user through an infallible means of personal identification--unique fingerprints.

Windows 7 brings integrated biometric support. Many laptops include fingerprint readers and Windows 7 adds the functionality to use those readers.

Fingerprint recognition hasn’t been included in Windows before.

Previously, computer manufacturers had included their own software to operate the biometric device.

This was cumbersome and probably hindered the deployment of biometrics because it added a time consuming additional step for both IT departments and the end user.

The Windows Biometric Framework (WBF) included in Windows 7 allows users and administrators to log on to computers, grant elevation privileges through User Account Control (UAC) and manage the fingerprint hardware.

Enabling, limiting and blocking the use of the fingerprint readers can be administered through Group Policy settings.

The biometric support can be administered through the Control Panel just like any other element of Windows 7.

Users can adjust the way the biometric reader is used--to log on to a local computer or a domain. The Device Manager functions as the support mechanism for managing the drivers and Windows Update provides device driver support.

Windows Biometric Service (WBS) is a component for managing the biometric devices within Windows 7. It strictly separates the client applications and the biometric data.

WBS functions as a I/O proxy between the application and the device. It performs all capture, processing and storage--all within Windows 7.

Microsoft hopes its inclusion of biometric support in Windows 7 will add to the attractiveness of a Windows 7 upgrade.

In addition to laptops, Windows 7 biometric support can be used in stand-alone biometric readers and biometric readers could conceivably be deployed enterprise-wide with a consistent administrative and user experience.

This has not been possible before--biometric reader manufacturers or laptop makers provided their own technology stack resulting in unique interfaces.

Using the biometric pad on the computer adds an intriguing and amusing experience for the user and may encourage more users to incorporate user authentication in their daily use of laptops, thus improving security overall should the laptop get lost or stolen.

Microsoft has a white paper providing guidelines for WBF in Windows 7.

It’s geared towards vendors, like independent software vendors (ISV.) who are interested in developing applications which integrate with the biometric support in Windows 7. You can read it here.