Xu YAO,Lu YU,Jia-Yong LIU,Dian-Hua TANG

DOI: https://doi.org/10.3969/j.issn.0490-6756.2017.04.014

2017-01-01

Abstract:The cancellable fingerprint bio-cryptosystems based on the fingerprint binary string is study under the premise of protecting the security of fingerprint privacy.During the registration,first detect the fingerprint singular point as the base point,and extract the binary string from the fingerprint as the fingerprint feature,then generate the fingerprint key and auxiliary information by combining the errorcorrect code and fuzzy scheme.Finally,during the authentication,the fingerprint key could be recovered by auxiliary information and homology fingerprint.Experiments demonstrate that the proposed biometric cryptosystem has good recognition performance.And security analysis indicates that the security strength of the proposed biometric cryptosystem can satisfy the need of current security circumstances.

Xingbo Dong,Zhe Jin,Leshan Zhao,Zhenhua Guo

DOI: https://doi.org/10.1109/IJCB52358.2021.9484391

2021-01-01

Abstract:Biometrics as a means of personal authentication has demonstrated strong viability in the past decade. However, directly deriving a unique cryptographic key from biometric data is a non-trivial task due to the fact that biometric data is usually noisy and presents large intra-class variations. Moreover, biometric data is permanently associated with the user, which leads to security and privacy issues. Cancellable biometrics and bio-cryptosystem are two main branches to address those issues, yet both approaches fall short in terms of accuracy performance, security, and privacy. In this paper, we propose a BioCrypto system on fingerprint Cancellable template (BioCanCrypto), which bridges cancellable biometrics and biocryptosystem to achieve a middle-ground for alleviating the limitations of both. Specifically, a cancellable transformation is applied on a fixed-length fingerprint feature vector to generate cancellable templates. Next, an LDPC coding mechanism is introduced into a reusable fuzzy extractor scheme and used to extract the stable cryptographic key from the generated cancellable templates. The proposed system can achieve both cancellability and reusability in one scheme. Experiments are conducted on a public fingerprint dataset, i.e., FVC2002. The results demonstrate that the proposed LDPC coded reusable fuzzy extractor is effective and promising.

Sani M. Abdullahi,Ke Lv,Shuifa Sun,Hongxia Wang

DOI: https://doi.org/10.1109/tdsc.2022.3213704

2023-01-01

Abstract:The need for cancelable biometric techniques has seen a progressive rise due to the rapid deployment of biometric authentication systems. These techniques prevent compromising biometric data by generating and using their corresponding cancelable templates for user authentication. However, the non-invertible distance preserving transformation methods employed in various schemes are often vulnerable to information leakage since matching is performed in the transform domain. This paper proposed a non-invertible distance preserving scheme based on vector permutation and shift-order process. First, the dimension of feature vectors is reduced using kernelized principal component analysis before randomly permuting the extracted vector features. A shift-order process is then applied to the generated features to achieve non-invertibility and combat similarity correlation-based attacks. The generated hash codes are resilient to various security and privacy attacks such as ARM, masquerade, and brute-force preimage. Experimental evaluations conducted on eight fingerprint datasets from FVC2002, FVC2004, and FVC2006 reveal a high matching performance of the proposed method with better recognition accuracy than other existing state-of-the-art. The scheme also fulfills the revocability and unlinkability requirements of cancelable biometrics.

Zhendong Wu,Longwei Tian,Ping Li,Ting Wu,Ming Jiang,Chunming Wu

DOI: https://doi.org/10.1016/j.ins.2016.12.048

IF: 8.1

2018-01-01

Information Sciences

Abstract:Cloud computing is profoundly changing the way of data storage, transfer and process. User authentication is the first security barrier for cloud computing. However, the security of traditional biometric-template-based authentication technology has been challenged because of the information leakage of biometric templates and insufficient user-key strength, which is limited by the ability of the user to memorize keys. In this paper, we propose a new bio-key generation algorithm named FVHS, which combines the advantages of both biometrics authentication and user-key authentication. It directly generates stable and sufficiently strong bio-key sequences from finger vein biometrics. Based on FVHS, a new framework for cloud computing authentication is presented that provides a more flexible, convenient, and secure user authentication. The key idea of FVHS is that through combining machine learning, biometrics, and cryptography technologies, we can mine a special feature vector from the biometrics space that can be separated and stabilized into a fixed number sequence in a higher-dimensional space. Both a theoretical analysis and experimental verification show that FVHS can extract stable bio-keys from high quality finger vein images. FVHS can extract a finger vein bio-key with a Genuine Accept Rate of more than 99.9%, while the False Accept Rate is less than 0.8% and Equal Error Rate is less than 0.5%. Meanwhile, the security strength can reach 256 bits.

Qinghai Gao

DOI: https://doi.org/10.48550/arXiv.1608.07897

2016-08-30

Abstract:Fingerprint is widely used in a variety of applications. Security measures have to be taken to protect the privacy of fingerprint data. Cancelable biometrics is proposed as an effective mechanism of using and protecting biometrics. In this paper we propose a new method of constructing cancelable fingerprint template by combining real template with synthetic template. Specifically, each user is given one synthetic minutia template generated with random number generator. Every minutia point from the real template is individually thrown into the synthetic template, from which its k-nearest neighbors are found. The verification template is constructed by combining an arbitrary set of the k-nearest neighbors. To prove the validity of the scheme, testing is carried out on three databases. The results show that the constructed templates satisfy the requirements of cancelable biometrics.

Computer Vision and Pattern Recognition

Rudresh Dwivedi,Somnath Dey

DOI: https://doi.org/10.1117/1.JEI.27.5.053031

2018-05-28

Abstract:In a biometric verification system, leakage of biometric data leads to permanent identity loss since original biometric data is inherently linked to a user. Further, various types of attacks on a biometric system may reveal the original template and utility in other applications. To address these security and privacy concerns cancelable biometric has been introduced. Cancelable biometric constructs a protected template from the original biometric template using transformation functions and performs the comparison between templates in the transformed domain. Recent approaches towards cancelable fingerprint generation either rely on aligning minutiae points with respect to singular points (core/delta) or utilize the absolute coordinate positions of minutiae points. In this paper, we propose a novel non-invertible ridge feature transformation method to protect the original fingerprint template information. The proposed method partitions the fingerprint region into a number of sectors with reference to each minutia point employing a ridge-based co-ordinate system. The nearest neighbor minutiae in each sector are identified, and ridge-based features are computed. Further, a cancelable template is generated by applying the Cantor pairing function followed by random projection. We have evaluated our method with FVC2002, FVC2004 and FVC2006 databases. It is evident from the experimental results that the proposed method outperforms existing methods in the literature. Moreover, the security analysis demonstrates that the proposed method fulfills the necessary requirements of non-invertibility, revocability, and diversity with a minor performance degradation caused due to cancelable transformation.

Computer Vision and Pattern Recognition

Sani M. Abdullahi,Hongxia Wang,Tao Li

DOI: https://doi.org/10.1109/TIFS.2020.2971142

IF: 7.231

2020-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Biometric image hashing techniques have been widely studied and seen progressive advancements. However, only a handful of available solutions provide two-factor cancelability while simultaneously satisfying the tradeoff among all criteria of template protection mechanisms. In this paper, we propose a novel scheme for generating a secure and robust hash from a fingerprint image using Fourier-Mellin transform and fractal coding. First, due to its invariance property, Fourier-Mellin transform is incorporated into the domain fingerprint minutiae blocks to provide feature alignment, therein generating a fixed-length minutiae representation for comparison. Then, dimensionality reduction and texture compression are exploited using fractal coding to generate a robust and compact hash for improved security and recognition. The experimental results demonstrate a favorable recognition performance on benchmarked state-of-the-art schemes from FVC2002 and FVC2004 fingerprint databases. The analyses prove our method's robustness and resiliency to security and privacy attacks. Our method also satisfies the revocability and unlinkability criteria of cancelable biometrics.

Wencheng Yang,Song Wang,James Jin Kang,Michael N. Johnstone,Aseel Bedari

DOI: https://doi.org/10.1016/j.cose.2021.102583

2022-03-01

Abstract:Authentication is a critical requirement of many systems, in domains such as law enforcement, financial services and consumer devices. Due to poor user practices, especially regarding passwords, biometric technologies have been presented as a viable solution, and have been constantly evolving to meet this requirement. It is important to consider the security aspects of any proposed biometric authentication system, as threats targeting biometric template data are serious. Given that the original biometric data are not revocable, if compromised, they are lost (or tainted) forever. To prevent biometric template data from being compromised by attackers, we propose a new linear convolution-based cancelable fingerprint authentication system. In the proposed system, instead of using the original feature data themselves as the inputs to the linear convolution function, the second input is replaced by a help vector, which guarantees that errors from one part of the template data do not impact other parts. Moreover, to ensure the safety of the help vector chosen from a help vector pool in the lost-key scenario, a feature-guided index generation algorithm is developed. The experimental results show that the proposed system achieves satisfactory recognition accuracy, while providing strong protection to fingerprint template data.

computer science, information systems

Yuxing Li,Xueshuang Li,Guodong Zhao,Chuanxian Xin,Shiwei Lan,Zhenhuan Hu

DOI: https://doi.org/10.1007/s11042-024-20102-4

IF: 2.577

2024-08-26

Multimedia Tools and Applications

Abstract:Increasing security concerns have triggered the proliferation of biometrics-based applications. However, traditional uni-biometric systems cannot trump emerging security attacks and show insufficient recognition accuracy. Hence, multi-biometrics that fuses two or more modalities has become a preferred solution. Existing multi-biometrics schemes suffer from feature incompatibility and privacy leakage issues due to the features being stored in plaintext with different data formats. In this paper, we propose a cancelable multi-biometrics (fingerprint and finger vein) feature-level fusion scheme, ensuring privacy-preserving ability and decent accuracy. To explore the most discriminative features, the minutiae-based fingerprint descriptors and the image-based finger vein features were extracted. Then, the one permutation hashing-based template protection algorithm was deployed to transform these two features into a uniform representation. Extensive experiments were conducted over six self-constructed multi-biometrics datasets, demonstrating the proposed approach's high recognition performance. The security concerns in terms of renewability and unlinkability are also well-guaranteed.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

Lin You,Guowei Zhang,Fan Zhang

DOI: https://doi.org/10.1109/ICCIT.2010.5711128

2010-01-01

Abstract:The biometric cryptographic system can provide the organic integration of biometric features and the traditional cryptology. The application of biometric keys can not only hide the information of users' biometric features, but also securely realize secret key production, recovery and certification. This paper proposes a new scheme of cryptographic key generation method based on fingerprint features and the (t,n)- threshold scheme. Our method can not only protect the user's key but can also effectively prevent the legitimate user's biometric features revealed. Our experiment results show that the key generation and recovery are efficient, and our proposed algorithm can achieve the anticipated results.

Ziyuan Yang,Ming Kang,Andrew Beng Jin Teoh,Chengrui Gao,Wen Chen,Bob Zhang,Yi Zhang

2024-03-05

Abstract:In recent years, palmprints have been widely used for individual verification. The rich privacy information in palmprint data necessitates its protection to ensure security and privacy without sacrificing system performance. Existing systems often use cancelable technologies to protect templates, but these technologies ignore the potential risk of data leakage. Upon breaching the system and gaining access to the stored database, a hacker could easily manipulate the stored templates, compromising the security of the verification system. To address this issue, we propose a dual-level cancelable palmprint verification framework in this paper. Specifically, the raw template is initially encrypted using a competition hashing network with a first-level token, facilitating the end-to-end generation of cancelable templates. Different from previous works, the protected template undergoes further encryption to differentiate the second-level protected template from the first-level one. The system specifically creates a negative database (NDB) with the second-level token for dual-level protection during the enrollment stage. Reversing the NDB is NP-hard and a fine-grained algorithm for NDB generation is introduced to manage the noise and specified bits. During the verification stage, we propose an NDB matching algorithm based on matrix operation to accelerate the matching process of previous NDB methods caused by dictionary-based matching rules. This approach circumvents the need to store templates identical to those utilized for verification, reducing the risk of potential data leakage. Extensive experiments conducted on public palmprint datasets have confirmed the effectiveness and generality of the proposed framework. Upon acceptance of the paper, the code will be accessible at

Cryptography and Security

Vivek H. Champaneria,Sankita J. Patel,Mukesh A. Zaveri

DOI: https://doi.org/10.1007/s11042-024-19689-5

IF: 2.577

2024-06-21

Multimedia Tools and Applications

Abstract:In digital identification technologies, fingerprint-based biometric systems are extensively utilized for authentication. Fingerprint authentication systems usually store the original minutiae points as user templates in the database which consist of minutiae bifurcation and ridge end points. Storing original minutiae points in the database can create a potential security risk to a person's identity. An adversary might attack the database and compromise the user template. Various studies have demonstrated the feasibility of reconstructing the original fingerprint by utilizing the minutiae points. Existing research methods still need to be improved, and therefore, it is essential to provide security and robustness to fingerprint-based biometric systems. In this paper, a novel template protection technique using non-invertible transformation is proposed to create a secure and robust template. The transformation function uses the original minutiae positions, orientation details, and user key set values. The results demonstrated equal error rates of 1.5%, 0.85%, and 2.71% for the FVC2002 DB1, DB2, and DB3 fingerprint databases. The proposed method has demonstrated noteworthy performance improvement compared to other notable contributions. The outcome of the proposed method demonstrates practicality and effectiveness.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

Kai Xi,Jiankun Hu

DOI: https://doi.org/10.1109/icc.2009.5198785

2009-01-01

Abstract:Biometric authentication is emerging as the promising solution to conventional cryptography based authentication technologies. However, protecting users' biometric templates stored in a mobile device in a secure way is a challenge issue and has attracted many attentions. As one of the possible solutions, the Fuzzy Vault construct binds a secret key and biometric information to provide template protection. Most existing Fingerprint Fuzzy Vault algorithms use pre-aligned fingerprint impressions and rely strongly on image registration, a process that is well known to be nontrivial and unreliable. Moreover, it is inherently insecure to store raw fingerprint images for the alignment. In this paper, we propose a Fingerprint Fuzzy Vault based on composite features which are reliable, distortion tolerant and registration-free. Experimental results on public database show that our scheme can improve verification performance significantly.

Baogang Song,Dongdong Zhao,Jiang Yan,Huanhuan Li,Hao Jiang

2024-08-07

Abstract:With the wide application of biometrics, more and more attention has been paid to the security of biometric templates. However most of existing biometric template protection (BTP) methods have some security problems, e.g. the problem that protected templates leak part of the original biometric data (exists in Cancelable Biometrics (CB)), the use of error-correcting codes (ECC) leads to decodable attack, statistical attack (exists in Biometric Cryptosystems (BCS)), the inability to achieve revocability (exists in methods using Neural Network (NN) to learn pre-defined templates), the inability to use cryptographic hash to guarantee strong security (exists in CB and methods using NN to learn latent templates). In this paper, we propose a framework called BioDeepHash based on deep hashing and cryptographic hashing to address the above four problems, where different biometric data of the same user are mapped to a stable code using deep hashing instead of predefined binary codes thus avoiding the use of ECC. An application-specific binary string is employed to achieve revocability. Then cryptographic hashing is used to get the final protected template to ensure strong security. Ultimately our framework achieves not storing any data that would leak part of the original biometric data. We also conduct extensive experiments on facial and iris datasets. Our method achieves an improvement of 10.12$\%$ on the average Genuine Acceptance Rate (GAR) for iris data and 3.12$\%$ for facial data compared to existing methods. In addition, BioDeepHash achieves extremely low False Acceptance Rate (FAR), i.e. 0$\%$ FAR on the iris dataset and the highest FAR on the facial dataset is only 0.0002$\%$.

Cryptography and Security

HU Xiaocheng,ZHANG Weiming,YU Nenghai

DOI: https://doi.org/10.3969/j.issn.0253-2778.2011.07.002

2011-01-01

Journal of University of Science and Technology of China

Abstract:By merging several kinds of user authentication information such as fingerprints,faces,passwords etc.,multi-modal authentication can improve the security of traditional identify authentication systems.Furthermore,via data hiding technology,specific user identities can be imbedded into their biologic templates to ensure safe storage.A multi-modal authentication scheme was introduced,which uses fingerprint templates as the cover.The key problem of this technology is to ensure the quality of the template picture after embedding,which is important for the matching precision afterwards.Both theoretical analysis and experimental results demonstrate that by adopting a coding method which increases the sparseness of the original binary data before embedding,modification of the fingerprint template is lowers effectively,thus ensuring the image quality and matching precision.The method embeds fragile watermarks for the integrity authentication of the fingerprint template.

Guangwei Gao,Lei Zhang,Jian Yang,Lin Zhang,David Zhang

DOI: https://doi.org/10.1109/TIP.2013.2281429

IF: 10.6

2013-01-01

IEEE Transactions on Image Processing

Abstract:Recently, a new biometrics identifier, namely finger knuckle print (FKP), has been proposed for personal authentication with very interesting results. One of the advantages of FKP verification lies in its user friendliness in data collection. However, the user flexibility in positioning fingers also leads to a certain degree of pose variations in the collected query FKP images. The widely used Gabor filtering based competitive coding scheme is sensitive to such variations, resulting in many false rejections. We propose to alleviate this problem by reconstructing the query sample with a dictionary learned from the template samples in the gallery set. The reconstructed FKP image can reduce much the enlarged matching distance caused by finger pose variations; however, both the intra-class and inter-class distances will be reduced. We then propose a score level adaptive binary fusion rule to adaptively fuse the matching distances before and after reconstruction, aiming to reduce the false rejections without increasing much the false acceptances. Experimental results on the benchmark PolyU FKP database show that the proposed method significantly improves the FKP verification accuracy.

Sheng Li,Alex C. Kot

DOI: https://doi.org/10.1109/tifs.2012.2234740

IF: 7.231

2013-01-01

IEEE Transactions on Information Forensics and Security

Abstract:We propose here a novel system for protecting fingerprint privacy by combining two different fingerprints into a new identity. In the enrollment, two fingerprints are captured from two different fingers. We extract the minutiae positions from one fingerprint, the orientation from the other fingerprint, and the reference points from both fingerprints. Based on this extracted information and our proposed coding strategies, a combined minutiae template is generated and stored in a database. In the authentication, the system requires two query fingerprints from the same two fingers which are used in the enrollment. A two-stage fingerprint matching process is proposed for matching the two query fingerprints against a combined minutiae template. By storing the combined minutiae template, the complete minutiae feature of a single fingerprint will not be compromised when the database is stolen. Furthermore, because of the similarity in topology, it is difficult for the attacker to distinguish a combined minutiae template from the original minutiae templates. With the help of an existing fingerprint reconstruction approach, we are able to convert the combined minutiae template into a real-look alike combined fingerprint. Thus, a new virtual identity is created for the two different fingerprints, which can be matched using minutiae-based fingerprint matching algorithms. The experimental results show that our system can achieve a very low error rate with FRR $=$ 0.4% at FAR $=$ 0.1%. Compared with the state-of-the-art technique, our work has the advantage in creating a better new virtual identity when the two different fingerprints are randomly chosen.

Qin Liao,Ying Guo,Duan Huang

DOI: https://doi.org/10.1088/1674-1056/26/9/090302

2017-08-01

Chinese Physics B

Abstract:With the increasing popularity of fingerprint identification technology, its security and privacy have been paid much attention. Only the security and privacy of biological information are insured, the biological technology can be better accepted and used by the public. In this paper, we propose a novel quantum bit (qbit)-based scheme to solve the security and privacy problem existing in the traditional fingerprint identification system. By exploiting the properties of quantm mechanics, our proposed scheme, cancelable remote quantum fingerprint templates protection scheme, can achieve the unconditional security guaranteed in an information-theoretical sense. Moreover, this novel quantum scheme can invalidate most of the attacks aimed at the fingerprint identification system. In addition, the proposed scheme is applicable to the requirement of remote communication with no need to worry about its security and privacy during the transmission. This is an absolute advantage when comparing with other traditional methods. Security analysis shows that the proposed scheme can effectively ensure the communication security and the privacy of users’ information for the fingerprint identification.

physics, multidisciplinary