Chaitanya Kommini,Srinivasulu Asadi,Kamalesh Ellanti,quotScale,Hao Luo,Fa-Xin Yu,Jeng-Shyang Pan,Shu-Chuan Chu,H. C Lee,K. R Park,B. J Kang,S. J Park,Y. H Park,D. N Tien,E. C Lee,S. M Kim,H. C Kim,quotA,Bhupesh Gour,T. K. Bandopadhyaya,Sudhir Sharma,quot,B. Y. Hiew,Andrew B. J. Teoh,Pravesh Kumar,Atanu Chatterjee,Shuvankar Mandal,G. M. Atiqur Rahaman,Abu Shamim,Mohammed Arif,quotFingerprint

2020-01-01

Abstract:Multimodal biometric systems have been widely used to overcome the limitations of unimodal biometric systems and to achieve high recognition accuracy. Among various multimodality options, fingerprint and finger vein has gained much attention among researchers to combine accuracy, universality and cost efficiency of the solution. This study proposes a survey of multimodal fingerprint and finger vein recognition techniques. Most of the existing work is systematically described and compared in five parts, i. e. , fingerprint and finger vein image acquisition, preprocessing, feature extraction, feature matching and fusion. According to the available work in literatures and commercial utilization experiences, fingerprint and finger vein multimodality ensures higher performance and spoofing resistance. This multimodal technology has reached an unparalleled level of security, accuracy and performance.

Jiajia Li,Qian Yi,Ming K. Lim,Shuping Yi,Pengxing Zhu,Xingjun Huang

DOI: https://doi.org/10.1109/tifs.2024.3480363

IF: 7.231

2024-11-02

IEEE Transactions on Information Forensics and Security

Abstract:Continuous authentication based on behavioral biometrics is effective and crucial as user behaviors are not easily copied. However, relying solely on one behavioral biometric limits the accuracy of continuous authentication. Therefore, a continuous authentication system based on multimodal behavioral biometrics fusion is proposed in this study, which fuses three modalities: contextual behavior, mouse behavior, and information interaction behavior. The multimodal dataset of user behavior is collected through a self-built website, and the behavioral feature sets for each modality are then created. An improved generative adversarial network method is used to align the datasets of the three modalities. The autoencoder with long short-term memory is employed for unsupervised anomaly detection of time-series behaviors and enables continuous authentication for each modality. The multimodal fusion is achieved using the meta-model of the stacked generalization method, and the final decision for continuous authentication is then determined. The experimental results demonstrate that the proposed multimodal fusion method significantly outperforms the unimodal and provides an effective way to improve the accuracy and user-friendliness of continuous authentication. This study offers insights into user behavior analysis, behavioral anomaly detection, and multimodal behavior fusion.

computer science, theory & methods,engineering, electrical & electronic

Riseul Ryu,Soonja Yeom,Soo-Hyung Kim,David Herbert

DOI: https://doi.org/10.1109/access.2021.3061589

IF: 3.9

2021-01-01

IEEE Access

Abstract:Building safeguards against illegitimate access and authentication is a cornerstone for securing systems. Existing user authentication schemes suffer from challenges in detecting impersonation attacks which leave systems vulnerable and susceptible to misuse. A range of research proposals have suggested continuous multimodal biometric authentication (CMBA) systems as a reliable solution. Though contemporary authentication systems have the potential to change their current authentication scheme, there is a lack of critical analysis of current progress in the field to foster and influence practical solutions. This paper provides a systematic survey of existing literature on CMBA systems, followed by analysis to identify and discuss current research and future trends. The study has found that many diverse biometric characteristics are used for multimodal biometric authentication systems. The majority of the studies in the literature reviewed apply supervised learning approaches as a classification technique, and score level fusion is predominantly used as a fusion model. The review has determined however that there is a lack of comparative analysis on CMBA design in terms of combinations of biometric types (behavioural only, physiological only, or both), machine learning algorithms (unsupervised learning and semi-supervised learning), and fusion models. Most of the studies evaluated a CMBA system's accuracy functionality, such as False Acceptance Rate (FAR), False Rejection Rate (FRR) and Equal Error Rate (EER). However, security, scalability and usability (user acceptance and satisfaction) are generally not addressed thoroughly even though these are key factors for system success in a real deployment. Furthermore, a CMBA system should be implemented and evaluated extensively on real data without restriction to prove that such systems are feasible.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yuanchao Shu,Yu (Jason) Gu,Jiming Chen

DOI: https://doi.org/10.1109/tpds.2013.153

IF: 5.3

2014-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Access card authentication is critical and essential for many modern access control systems, which have been widely deployed in various government, commercial, and residential environments. However, due to the static identification information exchange among the access cards and access control clients, it is very challenging to fight against access control system breaches due to reasons such as loss, stolen or unauthorized duplications of the access cards. Although advanced biometric authentication methods such as fingerprint and iris identification can further identify the user who is requesting authorization, they incur high system costs and access privileges cannot be transferred among trusted users. In this work, we introduce a dynamic authentication with sensory information for the access control systems. By combining sensory information obtained from onboard sensors on the access cards as well as the original encoded identification information, we are able to effectively tackle the problems such as access card loss, stolen, and duplication. Our solution is backward-compatible with existing access control systems and significantly increases the key spaces for authentication. We theoretically demonstrate the potential key space increases with sensory information of different sensors and empirically demonstrate simple rotations can increase key space by more than 1,000,000 times with an authentication accuracy of 90 percent. We performed extensive simulations under various environment settings and implemented our design on WISP to experimentally verify the system performance.

Gabriel Dahia,Leone Jesus,Maurício Pamplona Segundo

DOI: https://doi.org/10.1002/widm.1365

2020-03-24

WIREs Data Mining and Knowledge Discovery

Abstract:The shortcomings of conventional access control systems for high‐security environments have led to the concert of continuous authentication. Contrary to traditional verification, in which users are authenticated only once at the start of their session, continuous authentication systems regularly check users' identities to prevent hijackings. The challenges in this area involve balancing the security of protected assets by quickly detecting intruders with the system usability for genuine users. Biometric recognition plays a major role within this context, as it is the main way to assure that users are who they claim to be. A comparative analysis of the latest works revealed different aspects of this problem. First, some biometrics traits among those applied for continuous authentication are more suitable for this task than others. Second, systems combining multiple traits have advantages over those relying on a single one. Finally, many works fail to report proper evaluation metrics. With this in mind, we were able to identify new opportunities for researchers in the field. We highlight the potential for mining new datasets on the internet, which would benefit validation and benchmarking, and how recent deep learning techniques could address some of the open challenges in the area.This article is categorized under: Technologies > PredictionTechnologies > Machine LearningApplication Areas > Science and Technology

Swimpy Pahuja,Navdeep Goel

DOI: https://doi.org/10.3233/aic-220247

IF: 1.029

2024-05-18

AI Communications

Abstract:Critical applications ranging from sensitive military data to restricted area access demand selective user authentication. The prevalent methods of tokens, passwords, and other commonly used techniques proved deficient as they can be easily stolen, lost, or broken to gain illegitimate access, leading to data spillage. Since data safety against tricksters is a significant issue nowadays, biometrics is one of the unique human characteristic-based techniques that may give better solutions in this regard. The technique entails biometric authentication of users based on an individual's inimitable physiological or behavioral characteristics to provide access to a specific application or data. This paper provides a detailed description of authentication and its approaches, focusing on biometric-based authentication methods, the primary challenges they encounter, and how they have been addressed. The tabular view shows the benefits and downsides of various multimodal biometric systems, and open research challenges. To put it another way, this article lays out a roadmap for the emergence of multimodal biometric-based authentication, covering both the challenges and the solutions that have been proposed. Further, the urge to develop various multi-trait-based methods for secure authentication and data privacy is focused. Lastly, some multimodal biometric systems comprising fingerprint and iris modalities have been compared based on False Accept Rate (FAR), False Reject Rate (FRR), and accuracy to find the best secure model with easy accessibility.

computer science, artificial intelligence

Guannan Wu,Jian Wang,Yongrong Zhang,Shuai Jiang

DOI: https://doi.org/10.3390/s18010179

IF: 3.9

2018-01-01

Sensors

Abstract:Wearable devices have flourished over the past ten years providing great advantages to people and, recently, they have also been used for identity authentication. Most of the authentication methods adopt a one-time authentication manner which cannot provide continuous certification. To address this issue, we present a two-step authentication method based on an own-built fingertip sensor device which can capture motion data (e.g., acceleration and angular velocity) and physiological data (e.g., a photoplethysmography (PPG) signal) simultaneously. When the device is worn on the user's fingertip, it will automatically recognize whether the wearer is a legitimate user or not. More specifically, multisensor data is collected and analyzed to extract representative and intensive features. Then, human activity recognition is applied as the first step to enhance the practicability of the authentication system. After correctly discriminating the motion state, a one-class machine learning algorithm is applied for identity authentication as the second step. When a user wears the device, the authentication process is carried on automatically at set intervals. Analyses were conducted using data from 40 individuals across various operational scenarios. Extensive experiments were executed to examine the effectiveness of the proposed approach, which achieved an average accuracy rate of 98.5% and an F1-score of 86.67%. Our results suggest that the proposed scheme provides a feasible and practical solution for authentication.

Chao Shen,Yunpeng Li,Tianwen Yu,Sheng Yuan,Xiao Yi,Xiaohong Guan

DOI: https://doi.org/10.1109/wcica.2016.7578519

2016-01-01

Abstract:Existing smartphone authentication methods (e.g., PIN) typically provide one-time identity verification, but the verified user is still subject to session hijacking or masquerading attacks. This paper presents a framework and performance analysis of a sensor-based smartphone authentication system that continuously verifies the presence of a smartphone user. When a user touches the smartphone screen, motion-sensor data are extracted and analyzed to obtain descriptive features for accurately depicting users' touch habit and rhythm. Then a one-class learning algorithm is employed in the feature space to perform the continuous authentication task. Based on touch-tapping data collected from over 50 users, we conduct a series of experiments to validate the efficacy of our proposed approach. Our experimental results show that our verification system achieves a relatively high accuracy with an equal-error rate of 11.05%. Additional experiment on usability to the observation window size is provided to further examine the effectiveness. Our authentication system can be seamlessly integrated with extant smartphone authentication mechanisms, and is non-intrusive to users and does not need extra hardware.

Soumik Mondal,Patrick Bours

DOI: https://doi.org/10.1016/j.neucom.2016.11.031

IF: 6

2017-03-01

Neurocomputing

Abstract:In this paper we focus on a context independent continuous authentication system that reacts on every separate action performed by a user. We contribute with a robust dynamic trust model algorithm that can be applied to any continuous authentication system, irrespective of the biometric modality. We also contribute a novel performance reporting technique for continuous authentication. Our proposed approach was validated with extensive experiments with a unique behavioural biometric dataset. This dataset was collected under complete uncontrolled condition from 53 users by using our data collection software. We considered both keystroke and mouse usage behaviour patterns to prevent a situation where an attacker avoids detection by restricting to one input device because the system only checks the other input device. During our research, we developed a feature selection technique that could be applied to other pattern recognition problems.The best result obtained in this research is that 50 out of 53 genuine users are never inadvertently locked out by the system, while the remaining 3 genuine users (i. e. 5.7%) are sometimes locked out, on average after 2265 actions. Furthermore, there are only 3 out of 2756 impostors not been detected, i.e. only 0.1% of the impostors go undetected. Impostors are detected on average after 252 actions.

computer science, artificial intelligence

Akriti Verma,Valeh Moghaddam,Adnan Anwar

DOI: https://doi.org/10.48550/arXiv.2110.03149

2021-10-07

Abstract:Recent studies have shown how motion-based biometrics can be used as a form of user authentication and identification without requiring any human cooperation. This category of behavioural biometrics deals with the features we learn in our life as a result of our interaction with the environment and nature. This modality is related to change in human behaviour over time. The developments in these methods aim to amplify continuous authentication such as biometrics to protect their privacy on user devices. Various Continuous Authentication (CA) systems have been proposed in the literature. They represent a new generation of security mechanisms that continuously monitor user behaviour and use this as the basis to re-authenticate them periodically throughout a login session. However, these methods usually constitute a single classification model which is used to identify or verify a user. This work proposes an algorithm to blend behavioural biometrics with multi-factor authentication (MFA) by introducing a two-step user verification algorithm that verifies the user's identity using motion-based biometrics and complements the multi-factor authentication, thus making it more secure and flexible. This two-step user verification algorithm is also immune to adversarial attacks, based on our experimental results which show how the rate of misclassification drops while using this model with adversarial data.

Machine Learning,Signal Processing

Nassim Ammour,Yakoub Bazi,Naif Alajlan

DOI: https://doi.org/10.3390/jimaging9090168

2023-08-22

Abstract:Unimodal biometric systems rely on a single source or unique individual biological trait for measurement and examination. Fingerprint-based biometric systems are the most common, but they are vulnerable to presentation attacks or spoofing when a fake fingerprint is presented to the sensor. To address this issue, we propose an enhanced biometric system based on a multimodal approach using two types of biological traits. We propose to combine fingerprint and Electrocardiogram (ECG) signals to mitigate spoofing attacks. Specifically, we design a multimodal deep learning architecture that accepts fingerprints and ECG as inputs and fuses the feature vectors using stacking and channel-wise approaches. The feature extraction backbone of the architecture is based on data-efficient transformers. The experimental results demonstrate the promising capabilities of the proposed approach in enhancing the robustness of the system to presentation attacks.

Hui Xu,Yangfan Zhou,Michael R. Lyu

2014-01-01

Abstract:Current smartphones generally cannot continuously authenticate users during runtime. This poses severe security and privacy threats: A malicious user can manipulate the phone if bypassing the screen lock. To solve this problem, our work adopts a continuous and passive authentication mechanism based on a user's touch operations on the touchscreen. Such a mechanism is suitable for smartphones, as it requires no extra hardware or intrusive user interface. We study how to model multiple types of touch data and perform continuous authentication accordingly. As a first attempt, we also investigate the fundamentals of touch operations as biometrics by justifying their distinctiveness and permanence. A one-month experiment is conducted involving over 30 users. Our experiment results verify that touch biometrics can serve as a promising method for continuous and passive authentication.

Li Wan,Kechen Liu,Hanan Abdullah Mengash,Nuha Alruwais,Mesfer Al Duhayyim,K. Venkatachalam

DOI: https://doi.org/10.1016/j.asoc.2024.111461

IF: 8.7

2024-05-01

Applied Soft Computing

Abstract:Biometric authentication methods have gained prominence as secure and convenient alternatives to traditional passwords and PINs. In this paper, we propose a novel approach for biometric authentication using photoplethysmography (PPG) signals and deep learning techniques. PPG is a non-invasive method that measures variations in blood volume within microvascular tissue beds, and it is typically used for monitoring heart rate and oxygen saturation. Our research leverages the unique characteristics of PPG signals to develop a robust and continuous user verification system. The primary goal of our study is to explore the feasibility and effectiveness of PPG-based biometric authentication, enabling a seamless and secure means of confirming the identity of individuals. We use a diverse dataset of PPG signals from various individuals, ensuring that it encompasses differences in skin tone, age, and other variables that can influence PPG signal characteristics. The collected data undergoes careful preprocessing, including noise removal, baseline correction, and heartbeat segmentation. For the core of our authentication system, we design and train a multiscale feature fusion deep learning (MFFD) model. This model, utilizing a Convolutional Neural Network (CNN) architecture, takes as input the relevant features extracted from PPG signals and learns to differentiate between individuals based on their unique PPG patterns. In this study, the input is constructed by gradually incorporating various features, beginning with a single PPG signal. In this study, the CNN model was trained independently, followed by the implementation of score fusion techniques. Our evaluation demonstrates the effectiveness of the PPG-based biometric authentication system, achieving high accuracy while addressing key security concerns. We consider false acceptance rate (FAR) and false rejection rate (FRR) to assess the system's performance. The model achieves the Accuracy of 99.5 % on BIDMC, 98.6 % on MIMIC, 99.2 % on CapnoBase dataset.

computer science, artificial intelligence, interdisciplinary applications

Yan Zhuang,Chen Song,Feng Lin,Yiran Li,Changzhi Li,Wenyao Xu

DOI: https://doi.org/10.1109/rws.2016.7444405

2016-01-01

Abstract:Cryptographic security is of great importance. Biometrics play a vital role in modern authentication systems. Among all emerging biometrics, heart-based biometrics are promising because they are unique and hard to counterfeit. The current solutions on cardiac motion detection are either obtrusive or incapable of providing comprehensive cardiac motion information. To this end, we present Non-contact Cardiac Motion Sensing (NCMS), an end-to-end hardware and software solution, to sense and characterize the cardiac motion in a continuous, unobtrusive and user-friendly manner. We evaluate the performance of NCMS and compare the cardiac motion cycle on human subjects. Experimental results indicate the feasibility of NCMS to detect the cardiac motion and show the concept of a new modality in emerging heart-based biometrics.

Fangshi Zhou,Tianming Zhao

DOI: https://doi.org/10.48550/arXiv.2212.08224

2022-12-16

Abstract:Nowadays, traditional authentication methods are vulnerable to face attacks that are often based on inherent security issues. Professional attackers leverage adversarial offenses on the security holes. Biometrics has intrinsic advantages to overcome the traditional authentication methods on security, success rates, efficiency, and accessibility. Biometrics has wide prospects to implement various applications in fields. Whether in authentication security or clinical medicine, biometrics is one of the mainstream studies. In this paper, we surveyed and reviewed some related studies of biometrics, which are outstanding and significant in driving the development and popularization of biometrics. Although they still have some inherent disadvantages to restrict popularization, these obstacles could not conceal the promising future of biometrics. Multi-factors continuous biometrics authentication has become the mainstream trend of development. We reflect the findings as well as the challenges of the studies in the survey paper.

Cryptography and Security

Chao Shen,Yuanxun Li,Yufei Chen,Xiaohong Guan,Roy A. Maxion

DOI: https://doi.org/10.1109/tifs.2017.2737969

IF: 7.231

2018-01-01

IEEE Transactions on Information Forensics and Security

Abstract:The increasing use of smartphones as personal computing platforms to access personal information has stressed the demand for secure and usable authentication techniques, and for constantly protecting privacy. Smartphone sensors can measure users' unique behavioral characteristics when they interact with smartphones, based on different habits, gestures, and angle preferences of touch actions. This paper investigates the reliability and applicability of using motion-sensor behavior for active and continuous smartphone authentication across various operational scenarios, and presents a systematic evaluation of the distinctiveness and permanence properties of the behavior. For each sample of sensor behavior, kinematic information sequences are extracted and analyzed, which are characterized by statistic-, frequency-, and wavelet-domain features, to provide accurate and fine-grained characterization of users' touch actions. A Markov-based decision procedure, using one-class learning techniques, is developed and applied to the feature space for performing authentication. Analyses are conducted using the sensor data of 520 200 touch actions from 102 subjects across various operational scenarios. Extensive experiments show that motion-sensor behavior exhibits sufficient discriminability and stability for active and continuous authentication, and can achieve a false-rejection rate of 5.03% and a false-acceptance rate of 3.98%. Additional experiments on usability to operation length, sensitivity to application scenario, scalability to user size, contribution to different sensors, and response to behavior change are provided to further explore the effectiveness and applicability. We also implement an authentication system into the Android system that can react to the presence of the legitimate user.

Chenyi Zhou,Jing Huang,Feng Yang,Yaqin Liu

DOI: https://doi.org/10.1007/s11042-020-08914-6

IF: 2.577

2020-08-08

Multimedia Tools and Applications

Abstract:Biometric system has been widely adopted for human verification or identification, so inherently it requires the characteristics like high security, accuracy and acceptability. However, most of existing unimodal biometric systems provide low-middle security and are vulnerable to attacks. Therefore, multimodal biometric system fuses information from multiple modalities to break these limitations. This paper presents a novel hybrid fusion model for a multimodal biometric system. The hybrid fusion model includes an improved feature fusion algorithm and a novel weighting vote strategy. It captures canonical characteristics with multi-set structure and utilizes score distribution information to help guiding decision-making. The system was examined on databases from CASIA, PolyU and SDU respectively, which provided high precision and strong robustness over previous work. Experimental results showed that the proposed approach achieved an average accuracy of 99.33%, which outperformed other fusion strategies in multimodal biometric systems.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

Chao Shen,Yong Zhang,Zhongmin Cai,Tianwen Yu,Xiaohong Guan

DOI: https://doi.org/10.1109/icb.2015.7139046

2015-01-01

Abstract:The increasing use of smartphones to access sensitive and privacy data has given rise to the need of secure authentication technique. Existing authentication mechanisms on smartphones can only provide one-time verification, but the verified users are still vulnerable to the session hijacking. In this article, we propose a transparent and continuous authentication system based on users' touch interaction data. We consider four common types of touch operations, and extract behavioral features to characterize users' touch behavior. Distance-measurement technique is applied to mitigate the behavioral variability. Then a multiple decision procedure is developed to perform continuous authentication, in which one-class classification algorithms are applied for classification. The efficacy of our approach is validated through a series of experiments in four real-world application scenarios. Our experimental results show that the proposed approach could verify a user in an accurate and timely manner, and suffice to be an enhancement for traditional authentication mechanisms in smartphones.

Aditi Roy,Tzipora Halevi,Nasir Memon

DOI: https://doi.org/10.1109/MILCOM.2015.7357626

2017-12-22

Abstract:With the increased popularity of smart phones, there is a greater need to have a robust authentication mechanism that handles various security threats and privacy leakages effectively. This paper studies continuous authentication for touch interface based mobile devices. A Hidden Markov Model (HMM) based behavioral template training approach is presented, which does not require training data from other subjects other than the owner of the mobile device and can get updated with new data over time. The gesture patterns of the user are modeled from multiple sensors - touch, accelerometer and gyroscope data using a continuous left-right HMM. The approach models the tap and stroke patterns of a user since these are the basic and most frequently used interactions on a mobile device. To evaluate the effectiveness of the proposed method a new data set has been created from 42 users who interacted with off-the-shelf applications on their smart phones. Results show that the performance of the proposed approach is promising and potentially better than other state-of-the-art approaches.

Cryptography and Security

Heewoong Lee,Deok Gyu Lee,Kihyo Nam,Mun‐Kweon Jeong

DOI: https://doi.org/10.1111/exsy.13806

IF: 3.3

2024-12-05

Expert Systems

Abstract:Biometric technology, which performs continuous authentication based on user behaviour, has been developed in various ways depending on the type of device, input device, and sensor. Research on continuous authentication technology in PC‐based systems with few sensors installed is based on data from physical devices that extract and analyse features from keyboard and mouse input patterns. Among these, previous studies on continuous authentication through keyboard input performed continuous authentication using the key hold delay time that occurs when one key is pressed, the key interval delay time that occurs due to the interaction between fingers, and the key press delay time. However, the keyboard‐based continuous authentication model has limitations in increasing accuracy due to a small number of features. Therefore, in this paper, when a user inputs a sentence using a QWERTY keyboard in a PC system, the function is subdivided by reflecting the characteristics of each finger and used for continuous authentication. The features extracted by reflecting the characteristics of the finger were subdivided into a total of 151 latencies, and Support Vector Data Description (SVDD), decision tree and CNN were used as continuous authentication models. Experimental data was collected through the user's input of randomly displayed sentences, and features were created based on this. User keystroke behaviour was used to validate the continuous authentication in the artificial intelligence model. Validation metrics included thresholds for classification accuracy (ACC), ROC curves, false rejection rate (FRR), equal error rate (EER), and false acceptance rate (FAR). As a result of the experiment, it was found that continuous authentication including the user's finger input pattern was superior to the existing method.

computer science, artificial intelligence, theory & methods