{"title":"基于安全细节的模板的实际注意事项","authors":"A. Arakala, K. Horadam, S. Boztaş","doi":"10.1109/BSYM.2008.4655528","DOIUrl":null,"url":null,"abstract":"We illustrate the steps in building a secure authentication system using a construct called PinSketch where the identifier is a set of points derived from the minutiae extracted from a fingerprint. We define a relative set difference based threshold for matching templates, that takes the sizes of the sets being compared into account and show that it performs better than a fixed threshold for all fingerprints in a database. We describe the process of selecting the quantisation parameters and the design of the authentication system based on the PinSketch construct. The main question asked, and answered, is: At the operating parameters chosen, is the authentication system secure? We determine an empirical measure of the entropy of the quantised minutiae-based template and demonstrate how an attacker can exploit a non uniform distribution of the template elements to masquerade as a genuine user. We finally list desirable requirements for a template if it has to be protected using a set difference based construct like PinSketch.","PeriodicalId":389538,"journal":{"name":"2008 Biometrics Symposium","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-10-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Practical considerations for secure minutiae based templates\",\"authors\":\"A. Arakala, K. Horadam, S. Boztaş\",\"doi\":\"10.1109/BSYM.2008.4655528\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"We illustrate the steps in building a secure authentication system using a construct called PinSketch where the identifier is a set of points derived from the minutiae extracted from a fingerprint. We define a relative set difference based threshold for matching templates, that takes the sizes of the sets being compared into account and show that it performs better than a fixed threshold for all fingerprints in a database. We describe the process of selecting the quantisation parameters and the design of the authentication system based on the PinSketch construct. The main question asked, and answered, is: At the operating parameters chosen, is the authentication system secure? We determine an empirical measure of the entropy of the quantised minutiae-based template and demonstrate how an attacker can exploit a non uniform distribution of the template elements to masquerade as a genuine user. We finally list desirable requirements for a template if it has to be protected using a set difference based construct like PinSketch.\",\"PeriodicalId\":389538,\"journal\":{\"name\":\"2008 Biometrics Symposium\",\"volume\":\"9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-10-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 Biometrics Symposium\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/BSYM.2008.4655528\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 Biometrics Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/BSYM.2008.4655528","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Practical considerations for secure minutiae based templates
We illustrate the steps in building a secure authentication system using a construct called PinSketch where the identifier is a set of points derived from the minutiae extracted from a fingerprint. We define a relative set difference based threshold for matching templates, that takes the sizes of the sets being compared into account and show that it performs better than a fixed threshold for all fingerprints in a database. We describe the process of selecting the quantisation parameters and the design of the authentication system based on the PinSketch construct. The main question asked, and answered, is: At the operating parameters chosen, is the authentication system secure? We determine an empirical measure of the entropy of the quantised minutiae-based template and demonstrate how an attacker can exploit a non uniform distribution of the template elements to masquerade as a genuine user. We finally list desirable requirements for a template if it has to be protected using a set difference based construct like PinSketch.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
