BIO-key WEB-key Code
BIO-key WEB-key

Initially, WEB-key was developed as a biometric fingerprint authentication software solution for the web and today has evolved to include support web and windows applications as well as multiple forms of authentication.

WEB-key offers customers the option of integrating one-touch fingerprint authentication with options for proximity cards, one-time-passwords (OTP), Passwords/PINs, and knowledge based/challenge response questions.

WEB-key allows users to authenticate in the Cloud or on any intranet or extranet. WEB-key can strengthen security and privacy, with a patented encryption and session management approach. WEB-key can fully address your regulatory requirements for advanced authentication while improving user satisfaction and efficiency.

Using BIO-key's exclusive biometric algorithm, Vector Segment Technology™ (VST), more data is captured than any other biometric authentication software and assures the accurate identification of registered users. The key measure of any authentication method is the false acceptance rate (FAR) - the likelihood of erroneous authentication. In independent NIST testing, VST exceeded the U.S federal government's FAR standard by a factor of 10—or less than one in 100,000.

WEB-key offers, a packaged client, administrative tools and broad APIs that can be deployed to interface with the target solution's business logic and needs. It also includes a complete software developer's kit (SDK) with sample applications, installation guides and expert support from BIO-key. When deployed, the WEB-key service oriented architecture (SOA) includes:

BIO-key WEB-key flow diagram

WEB-key Client: Provides user interface on the user device, image or authentication data retrieval from the user, creation of the template or other data, and device and communications level security. Can operate with modern browsers, and Windows applications.

Application Server Plug-in: Manages communications between attached client devices and the WEB-key Authentication Server. The plug-in can be placed on any number of servers at any number of locations, allowing secure access control across the enterprise.

WEB-key Authentication Server: Enrolling and authenticating users, including the VST matching, and template storage. The Server can reside at any location, making it ideal for Cloud-based solutions.

Key Benefits

  • More accurate user authentication with fingerprint biometrics
  • Faster and more convenient than passwords
  • Solution integration for a seamless user experience
  • FFIEC, HIPAA, PCI and SOX-compliant advanced authentication

Key Functionality

  • Intuitive graphical interface for quick, easy enrollment and authentication
  • Unique 30+ level fingerprint image enhancement filters guaranteeing both low false match and false reject rates
  • Capable of storing hundreds of millions of user's fingerprints and handling a virtually unlimited number of simultaneous authentication requests
  • Use on workstations, thin clients, laptops and tablets with modern browsers


  • High ranking independently tested and verified NIST scores for fingerprint identification speed and accuracy
  • Scalable to user populations of any size and in any number of locations
  • Plug-and- play support for virtually all fingerprint readers from every major manufacturer
  • Reader interoperability so a user can enroll on one device and authenticate on virtually any other device in any authorized location or facility

Supported Environments

  • Databases: Oracle, MS SQL, MySQL Enterprise, and IBM DB2
  • App Servers: Apache TomCat, JBoss, IIS, WebLogic, WebSphere, and many more
  • Interfaces: .NET, COM, Java
  • End User Devices: Windows PCs and terminals