Synchronous One Time Biometrics with Pattern Based Authentication

2016 11th International Conference on Availability, Reliability and Security (ARES) Pub Date : 2016-08-30 DOI:10.1109/ARES.2016.61

Patrick Lacharme, C. Rosenberger

{"title":"Synchronous One Time Biometrics with Pattern Based Authentication","authors":"Patrick Lacharme, C. Rosenberger","doi":"10.1109/ARES.2016.61","DOIUrl":null,"url":null,"abstract":"One time passwords are commonly used for authentication purposes in electronic transactions. Nevertheless, providing such a one time password is not really a strong authentication proof %as it can be given by an impostor. because the token generating the passwords can be given by an impostor. In order to cope with this problem, biometric recognition is more and more employed. Even if biometric data are strongly linked with the user, their revocability nor diversity is possible, without an adapted post-processing. Biometric template protection schemes, including the BioHashing algorithm, are used to manage the underlying privacy and security issues. These schemes are used for the protection of several biometric modalities, but are not necessary adapted for all of them. In this paper, we propose a new protocol combining protected biometric data and a classical synchronous one time password to enhance the security of user authentication while preserving usability and privacy. Behavioral biometrics is used to provide a fast and a usable solution for users. We show through experimental results the efficiency of the proposed method.","PeriodicalId":216417,"journal":{"name":"2016 11th International Conference on Availability, Reliability and Security (ARES)","volume":"78 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 11th International Conference on Availability, Reliability and Security (ARES)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARES.2016.61","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

Abstract

One time passwords are commonly used for authentication purposes in electronic transactions. Nevertheless, providing such a one time password is not really a strong authentication proof %as it can be given by an impostor. because the token generating the passwords can be given by an impostor. In order to cope with this problem, biometric recognition is more and more employed. Even if biometric data are strongly linked with the user, their revocability nor diversity is possible, without an adapted post-processing. Biometric template protection schemes, including the BioHashing algorithm, are used to manage the underlying privacy and security issues. These schemes are used for the protection of several biometric modalities, but are not necessary adapted for all of them. In this paper, we propose a new protocol combining protected biometric data and a classical synchronous one time password to enhance the security of user authentication while preserving usability and privacy. Behavioral biometrics is used to provide a fast and a usable solution for users. We show through experimental results the efficiency of the proposed method.

查看原文本刊更多论文

基于模式认证的同步一次性生物识别

在电子交易中，一次性密码通常用于认证目的。然而，提供这样一个一次性密码并不是一个真正强大的身份验证证明，因为它可以由冒名顶替者提供。因为生成密码的令牌可以由冒名顶替者提供。为了解决这一问题，生物特征识别被越来越多地应用。即使生物特征数据与用户密切相关，如果没有适当的后处理，它们的可撤销性和多样性也是可能的。生物识别模板保护方案，包括biohash算法，用于管理潜在的隐私和安全问题。这些方案用于保护几种生物识别模式，但不一定适用于所有这些模式。为了在保证可用性和隐私性的前提下提高用户认证的安全性，本文提出了一种将生物特征保护数据与经典的同步一次性密码相结合的新协议。行为生物识别技术为用户提供了一个快速、可用的解决方案。实验结果表明了该方法的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 11th International Conference on Availability, Reliability and Security (ARES)

自引率

0.00%

发文量