Jianwei Liu,Wenfan Song,Leming Shen,Jinsong Han,Xian Xu,Kui Ren

DOI: https://doi.org/10.1109/ICDCS51616.2021.00070

2021-01-01

Abstract:Biometric plays an important role in user authentication. However, the most widely used biometrics, such as facial feature and fingerprint, are easy to capture or record, and thus vulnerable to spoofing attacks. On the contrary, intracorporal biometrics, such as electrocardiography and electroencephalography, are hard to collect, and hence more secure for authentication. Unfortunately, adopting th...

Libing Wu,Jingxiao Yang,Man Zhou,Yanjiao Chen,Qian Wang

DOI: https://doi.org/10.1109/tifs.2019.2944058

IF: 7.231

2020-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Voice authentication is becoming increasingly popular, which offers potential benefits over knowledge and possession based authentication methods. Meanwhile, the unique features of lip movements during speaking have been proved to be useful for authentication. However, the unimodal biometric authentication systems based on either voice or lip movements have certain limitations. Voice authentication systems are prone to spoofing attacks and suffer from serious performance degradation in noisy environments. Lip movements authentication systems are unstable and are sensitive to the user's physical and psychological conditions. In this paper, we propose and implement LVID, a multimodal biometrics authentication system on smartphones, which resolves the defects of the original systems by combining the advantages of lip movements and voice. LVID simultaneously captures these two biometrics with the built-in audio devices on smartphones and fuses them at the data level. The reliable and effective features are then extracted from the fused data for authentication. LVID is practical as it requires neither cumbersome operations nor additional hardwares but only a speaker and a microphone that are commonly available on smartphones. Our experimental results with 104 participants show that LVID can achieve 95 accuracy for user authentication, and 93.47 of the attacks can be detected. It is also verified that LVID works well with different smartphones and is robust to different smartphone positions.

Li Lu,Jiadi Yu,Yingying Chen,Hongbo Liu,Yanmin Zhu,Linghe Kong,Minglu Li

DOI: https://doi.org/10.1109/tnet.2019.2891733

2019-01-01

IEEE/ACM Transactions on Networking

Abstract:To prevent users’ privacy from leakage, more and more mobile devices employ biometric-based authentication approaches, such as fingerprint, face recognition, voiceprint authentications, and so on, to enhance the privacy protection. However, these approaches are vulnerable to replay attacks. Although the state-of-art solutions utilize liveness verification to combat the attacks, existing approaches are sensitive to ambient environments, such as ambient lights and surrounding audible noises. Toward this end, we explore liveness verification of user authentication leveraging users’ mouth movements, which are robust to noisy environments. In this paper, we propose a lip reading-based user authentication system, LipPass, which extracts unique behavioral characteristics of users’ speaking mouths through acoustic sensing on smartphones for user authentication. We first investigate Doppler profiles of acoustic signals caused by users’ speaking mouths and find that there are unique mouth movement patterns for different individuals. To characterize the mouth movements, we propose a deep learning-based method to extract efficient features from Doppler profiles and employ softmax function, support vector machine, and support vector domain description to construct multi-class identifier, binary classifiers, and spoofer detectors for mouth state identification, user identification, and spoofer detection, respectively. Afterward, we develop a balanced binary tree-based authentication approach to accurately identify each individual leveraging these binary classifiers and spoofer detectors with respect to registered users. Through extensive experiments involving 48 volunteers in four real environments, LipPass can achieve 90.2% accuracy in user identification and 93.1% accuracy in spoofer detection.

Yanjiao Chen,Meng Xue,Jian Zhang,Qianyun Guan,Zhiyuan Wang,Qian Zhang,Wei Wang

DOI: https://doi.org/10.1145/3494962

2021-01-01

Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies

Abstract:Voice-based authentication is prevalent on smart devices to verify the legitimacy of users, but is vulnerable to replay attacks. In this paper, we propose to leverage the distinctive chest motions during speaking to establish a secure multi-factor authentication system, named ChestLive. Compared with other biometric-based authentication systems, ChestLive does not require users to remember any complicated information (e.g., hand gestures, doodles) and the working distance is much longer (30cm). We use acoustic sensing to monitor chest motions with a built-in speaker and microphone on smartphones. To obtain fine-grained chest motion signals during speaking for reliable user authentication, we derive Channel Energy (CE) of acoustic signals to capture the chest movement, and then remove the static and non-static interference from the aggregated CE signals. Representative features are extracted from the correlation between voice signal and corresponding chest motion signal. Unlike learning-based image or speech recognition models with millions of available training samples, our system needs to deal with a limited number of samples from legitimate users during enrollment. To address this problem, we resort to meta-learning, which initializes a general model with good generalization property that can be quickly fine-tuned to identify a new user. We implement ChestLive as an application and evaluate its performance in the wild with 61 volunteers using their smartphones. Experiment results show that ChestLive achieves an authentication accuracy of 98.31% and less than 2% of false accept rate against replay attacks and impersonation attacks. We also validate that ChestLive is robust to various factors, including training set size, distance, angle, posture, phone models, and environment noises.

Li Lu,Jiadi Yu,Yingying Chen,Hongbo Liu,Yanmin Zhu,Yunfei Liu,Minglu Li

DOI: https://doi.org/10.1109/infocom.2018.8486283

2018-01-01

Abstract:To prevent users' privacy from leakage, more and more mobile devices employ biometric-based authentication approaches, such as fingerprint, face recognition, voiceprint authentications, etc., to enhance the privacy protection. However, these approaches are vulnerable to replay attacks. Although state-of-art solutions utilize liveness verification to combat the attacks, existing approaches are sensitive to ambient environments, such as ambient lights and surrounding audible noises. Towards this end, we explore liveness verification of user authentication leveraging users' lip movements, which are robust to noisy environments. In this paper, we propose a lip reading-based user authentication system, LipPass, which extracts unique behavioral characteristics of users' speaking lips leveraging build-in audio devices on smartphones for user authentication. We first investigate Doppler profiles of acoustic signals caused by users' speaking lips, and find that there are unique lip movement patterns for different individuals. To characterize the lip movements, we propose a deep learning-based method to extract efficient features from Doppler profiles, and employ Support Vector Machine and Support Vector Domain Description to construct binary classifiers and spoofer detectors for user identification and spoofer detection, respectively. Afterwards, we develop a binary tree-based authentication approach to accurately identify each individual leveraging these binary classifiers and spoofer detectors with respect to registered users. Through extensive experiments involving 48 volunteers in four real environments, LipPass can achieve 90.21% accuracy in user identification and 93.1% accuracy in spoofer detection.

Jiaqi Pan,Xinyan Zhou,Yue Hou,Xiaoyu Ji,Haiming Chen

DOI: https://doi.org/10.1109/jsen.2024.3443914

IF: 4.3

2024-01-01

IEEE Sensors Journal

Abstract:With the popularity of wearable devices, verifying the user identity of wearable devices is critical for system security, especially when performing sensitive operations such as financial payments. In this paper, we propose M-PPG, which uses photoplethysmography (PPG) measurements with motor vibrations to authenticate user identities. Specifically, our observations reveal a strong correlation between PPG measurements and users, such as the user’s heartbeat characteristics and wearing habits reflected by PPG measurements are implicitly associated with users’ identities, and the motor vibration provides stable excitation signals for better security performance. M-PPG requires zero user effort with a built-in sensor and actuator in most wearable devices, i.e., PPG sensor and motor. Additionally, we reveal that indoor lighting strobe noise is an unavoidable noise in PPG-based authentication methods, and a noise reduction mechanism is designed to mitigate such phenomenon. Moreover, a multiple authentication scheme and an adaptive update scheme are proposed to keep a long-term authentication in M-PPG. The experimental results among 20 participants demonstrate that M-PPG achieves an average accuracy of 94:5% in daily situations. With a well-designed authentication mechanism, the pass rate of legitimate users can reach 99:9%, while the pass rate of attackers is only 0:6%.

Li Lü,Jiadi Yu,Yingying Chen,Yan Wang

DOI: https://doi.org/10.1145/3397320

2020-01-01

Proceedings of the ACM on Interactive Mobile Wearable and Ubiquitous Technologies

Abstract:Recent years have witnessed the surge of biometric-based user authentication for mobile devices due to its promising security and convenience. As a natural and widely-existed behavior, human speaking has been exploited for user authentication. Existing voice-based user authentication explores the unique characteristics from either the voiceprint or mouth movements, which is vulnerable to replay attacks and mimic attacks. During speaking, the vocal tract, including the static shape and dynamic movements, also exhibits the individual uniqueness, and they are hardly eavesdropped and imitated by adversaries. Hence, our work aims to employ the individual uniqueness of vocal tract to realize user authentication on mobile devices. Moreover, most voice-based user authentications are passphrase-dependent, which significantly degrade the user experience. Thus, such user authentications are pressed to be implemented in a passphrase-independent manner while being able to resist various attacks. In this paper, we propose a user authentication system, VocalLock, which senses the whole vocal tract during speaking to identify different individuals in a passphrase-independent manner on smartphones leveraging acoustic signals. VocalLock first utilizes FMCW on acoustic signals to characterize both the static shape and dynamic movements of the vocal tract during speaking, and then constructs a passphrase-independent user authentication model based on the unique characteristics of vocal tract through GMM-UBM. The proposed VocalLock can resist various spoofing attacks, while achieving a satisfactory user experience. Extensive experiments in real environments demonstrate VocalLock can accurately authenticate user identity in a passphrase-independent manner and successfully resist various attacks.

Zi Wang,Jie Yang

DOI: https://doi.org/10.48550/arXiv.2108.05432

2021-08-11

Cryptography and Security

Abstract:Biometric-based authentication is gaining increasing attention for wearables and mobile applications. Meanwhile, the growing adoption of sensors in wearables also provides opportunities to capture novel wearable biometrics. In this work, we propose EarDynamic, an ear canal deformation-based user authentication using in-ear wearables. EarDynamic provides continuous and passive user authentication and is transparent to users. It leverages ear canal deformation that combines the unique static geometry and dynamic motions of the ear canal when the user is speaking for authentication. It utilizes an acoustic sensing approach to capture the ear canal deformation with the built-in microphone and speaker of the in-ear wearable. Specifically, it first emits well-designed inaudible beep signals and records the reflected signals from the ear canal. It then analyzes the reflected signals and extracts fine-grained acoustic features that correspond to the ear canal deformation for user authentication. Our extensive experimental evaluation shows that EarDynamic can achieve a recall of 97.38% and an F1 score of 96.84%. Results also show that our system works well under different noisy environments with various daily activities.

Xinyue Fang,Jianwei Liu,Yike Chen,Xian Xu,Jinsong Han

DOI: https://doi.org/10.1109/iwqos61813.2024.10682871

2024-01-01

Abstract:Smartwatches have become increasingly prevalent in people’s daily lives, offering support for a wide range of privacy and security-sensitive applications, such as SMS messaging and mobile payment. Consequently, there is an imperative need for independent user authentication on smartwatches to safeguard against property loss and personal privacy breaches. However, current authentication methods rely on passwords, leaving users vulnerable to shoulder surfing attacks. Moreover, existing biometric-based authentication methods either require dedicated sensors or cannot support continuous authentication. In this paper, we propose a replay-resistant continuous authentication system on smartwatches, namely WristPass. It extracts acoustic impedance biometrics from ultrasonic signals. Leveraging a theoretical model based on the principle of ultrasound propagation, WristPass correlates spectrograms of reflected signals with impedance features of wrist skin. Utilizing a deep learning model as a feature extractor, WristPass mines fine-grained impedance features from the spectrograms for accurate user authentication. Additionally, to prevent WristPass from replay attacks, we design a device fingerprinting method to detect replayed signals. Extensive experiments show that WristPass can achieve 96.7% accuracy in user authentication. Furthermore, WristPass exhibits robustness for long-term usage.

Guannan Wu,Jian Wang,Yongrong Zhang,Shuai Jiang

DOI: https://doi.org/10.3390/s18010179

IF: 3.9

2018-01-01

Sensors

Abstract:Wearable devices have flourished over the past ten years providing great advantages to people and, recently, they have also been used for identity authentication. Most of the authentication methods adopt a one-time authentication manner which cannot provide continuous certification. To address this issue, we present a two-step authentication method based on an own-built fingertip sensor device which can capture motion data (e.g., acceleration and angular velocity) and physiological data (e.g., a photoplethysmography (PPG) signal) simultaneously. When the device is worn on the user's fingertip, it will automatically recognize whether the wearer is a legitimate user or not. More specifically, multisensor data is collected and analyzed to extract representative and intensive features. Then, human activity recognition is applied as the first step to enhance the practicability of the authentication system. After correctly discriminating the motion state, a one-class machine learning algorithm is applied for identity authentication as the second step. When a user wears the device, the authentication process is carried on automatically at set intervals. Analyses were conducted using data from 40 individuals across various operational scenarios. Extensive experiments were executed to examine the effectiveness of the proposed approach, which achieved an average accuracy rate of 98.5% and an F1-score of 86.67%. Our results suggest that the proposed scheme provides a feasible and practical solution for authentication.

Xiang Zhang,Lina Yao,Chaoran Huang,Tao Gu,Zheng Yang,Yunhao Liu

DOI: https://doi.org/10.1145/3393619

IF: 5

2020-01-01

ACM Transactions on Intelligent Systems and Technology

Abstract:Biometric authentication involves various technologies to identify individuals by exploiting their unique, measurable physiological and behavioral characteristics. However, traditional biometric authentication systems (e.g., face recognition, iris, retina, voice, and fingerprint) are at increasing risks of being tricked by biometric tools such as anti-surveillance masks, contact lenses, vocoder, or fingerprint films. In this article, we design a multimodal biometric authentication system named DeepKey, which uses both Electroencephalography (EEG) and gait signals to better protect against such risk. DeepKey consists of two key components: an Invalid ID Filter Model to block unauthorized subjects, and an identification model based on attention-based Recurrent Neural Network (RNN) to identify a subject’s EEG IDs and gait IDs in parallel. The subject can only be granted access while all the components produce consistent affirmations to match the user’s proclaimed identity. We implement DeepKey with a live deployment in our university and conduct extensive empirical experiments to study its technical feasibility in practice. DeepKey achieves the False Acceptance Rate (FAR) and the False Rejection Rate (FRR) of 0 and 1.0%, respectively. The preliminary results demonstrate that DeepKey is feasible, shows consistent superior performance compared to a set of methods, and has the potential to be applied to the authentication deployment in real-world settings.

Jianxiang Peng,Zhanjun Hao,Zhenyi Zhang,Ruidong Wang,Mengqiao Li,Xiaochao Dang

DOI: https://doi.org/10.1109/jsen.2024.3353256

IF: 4.3

2024-03-15

IEEE Sensors Journal

Abstract:User authentication is crucial for privacy and security. In daily life, personalized intelligent devices are frequently used; however, these devices are vulnerable to unauthorized access, which can result in serious privacy breaches. To address this problem, this article proposes a user security authentication method that uses millimeter-wave radar to perceive human life signals for verification. First, the millimeter-wave radar is used to perceive the user's breathing and heartbeat signals. Second, to eliminate the influence of breath-holding on the verification result, this article adopts the method of recognizing breathing patterns and establishing two channels: one for other breathing signals when not holding breath and another for heartbeat signals when holding breath. Finally, the wavelet packet decomposition (WPD) and Mel-frequency cepstral coefficients (MFCC) features of the user's breathing signals, as well as the MFCC features of the heartbeat signals, are extracted. A lightweight neural network, ShuffleNet V2, is used for security authentication. Through a large number of experiments, the verification accuracy is 93.7%.

engineering, electrical & electronic,instruments & instrumentation,physics, applied

Zhang Xiang,Yao Lina,Huang Chaoran,Gu Tao,Yang Zheng,Liu Yunhao

2019-01-01

Abstract: Biometric authentication involves various technologies to identify individuals by exploiting their unique, measurable physiological and behavioral characteristics. However, traditional biometric authentication systems (e.g., face recognition, iris, retina, voice, and fingerprint) are facing an increasing risk of being tricked by biometric tools such as anti-surveillance masks, contact lenses, vocoder, or fingerprint films. In this paper, we design a multimodal biometric authentication system named Deepkey, which uses both Electroencephalography (EEG) and gait signals to better protect against such risk. Deepkey consists of two key components: an Invalid ID Filter Model to block unauthorized subjects and an identification model based on attention-based Recurrent Neural Network (RNN) to identify a subject`s EEG IDs and gait IDs in parallel. The subject can only be granted access while all the components produce consistent evidence to match the user`s proclaimed identity. We implement Deepkey with a live deployment in our university and conduct extensive empirical experiments to study its technical feasibility in practice. DeepKey achieves the False Acceptance Rate (FAR) and the False Rejection Rate (FRR) of 0 and 1.0%, respectively. The preliminary results demonstrate that Deepkey is feasible, show consistent superior performance compared to a set of methods, and has the potential to be applied to the authentication deployment in real world settings.

Li Wan,Kechen Liu,Hanan Abdullah Mengash,Nuha Alruwais,Mesfer Al Duhayyim,K. Venkatachalam

DOI: https://doi.org/10.1016/j.asoc.2024.111461

IF: 8.7

2024-05-01

Applied Soft Computing

Abstract:Biometric authentication methods have gained prominence as secure and convenient alternatives to traditional passwords and PINs. In this paper, we propose a novel approach for biometric authentication using photoplethysmography (PPG) signals and deep learning techniques. PPG is a non-invasive method that measures variations in blood volume within microvascular tissue beds, and it is typically used for monitoring heart rate and oxygen saturation. Our research leverages the unique characteristics of PPG signals to develop a robust and continuous user verification system. The primary goal of our study is to explore the feasibility and effectiveness of PPG-based biometric authentication, enabling a seamless and secure means of confirming the identity of individuals. We use a diverse dataset of PPG signals from various individuals, ensuring that it encompasses differences in skin tone, age, and other variables that can influence PPG signal characteristics. The collected data undergoes careful preprocessing, including noise removal, baseline correction, and heartbeat segmentation. For the core of our authentication system, we design and train a multiscale feature fusion deep learning (MFFD) model. This model, utilizing a Convolutional Neural Network (CNN) architecture, takes as input the relevant features extracted from PPG signals and learns to differentiate between individuals based on their unique PPG patterns. In this study, the input is constructed by gradually incorporating various features, beginning with a single PPG signal. In this study, the CNN model was trained independently, followed by the implementation of score fusion techniques. Our evaluation demonstrates the effectiveness of the PPG-based biometric authentication system, achieving high accuracy while addressing key security concerns. We consider false acceptance rate (FAR) and false rejection rate (FRR) to assess the system's performance. The model achieves the Accuracy of 99.5 % on BIDMC, 98.6 % on MIMIC, 99.2 % on CapnoBase dataset.

computer science, artificial intelligence, interdisciplinary applications

Yang Gao,Wei Wang,Vir V. Phoha,Wei Sun,Zhanpeng Jin

DOI: https://doi.org/10.1145/3351239

2019-01-01

Proceedings of the ACM on Interactive Mobile Wearable and Ubiquitous Technologies

Abstract:Smart wearable devices have recently become one of the major technological trends and been widely adopted by the general public. Wireless earphones, in particular, have seen a skyrocketing growth due to its great usability and convenience. With the goal of seeking a more unobtrusive wearable authentication method that the users can easily use and conveniently access, in this study we present EarEcho as a novel, affordable, user-friendly biometric authentication solution. EarEcho takes advantages of the unique physical and geometrical characteristics of human ear canal and assesses the content-free acoustic features of in-ear sound waves for user authentication in a wearable and mobile manner. We implemented the proposed EarEcho on a proof-of-concept prototype and tested it among 20 subjects under diverse application scenarios. We can achieve a recall of 94.19% and precision of 95.16% for one-time authentication, while a recall of 97.55% and precision of 97.57% for continuous authentication. EarEcho has demonstrated its stability over time and robustness to cope with the uncertainties on the varying background noises, body motions, and sound pressure levels.

Lingkun Li,Fan Dang,Duo Liu,Zhichao Cao

DOI: https://doi.org/10.1109/icpads63350.2024.00013

2024-01-01

Abstract:In this study, we propose BreathPass, a non-invasive authentication system that characterizes the chest/abdomen movement incurred by human breath to enable unlocking smart devices while wearing various types of face covers, clothing, in different postures, and dynamic status such as walking or running. To capture the breathing pattern, BreathPass uses speakers to emit ultrasound signals. The signals are reflected off the chest wall and abdomen and then back to the microphone, which records the reflected signals. The system then extracts the breathing pattern from the reflected signals, and further extracts fingerprints from the breathing pattern, and use these fingerprints to perform authentication. We carefully design a Deep Neural Network model and explore its capacity for feature abstraction in order to address the challenges associated with tiny position changes resulting in different breathing patterns and the extremely narrow bandwidth of breathing. We implement a prototype and conduct extensive experiments. BreathPass achieves an overall accuracy of 83%, a true positive rate of 73%, and a false positive rate of 5%, according to performance evaluation results.

Xinyue Fang,Jianwei Liu,Yike Chen,Jinsong Han

DOI: https://doi.org/10.1109/icpads63350.2024.00019

2024-01-01

Abstract:With a wide range of common and privacy-sensitive applications, smartphones are frequently accessed for substantial personal information. Therefore, user-friendliness and security are crucial for user authentication on smartphones. Recently, convenient and secure biometric-based authentication is widely employed for smartphones, where the facial authentication stands out due to its potential for advancements in both user-friendliness and security. However, existing facial authentication methods possess some defects. For example, camera-based methods require good illumination conditions and are susceptible to 2D spoofing attacks. Moreover, previous acoustic-based methods either require camera assistance, or still suffer from 3D spoofing attacks. Even worse, some acoustic-based methods use audible sound waves, causing discomfort to users. To solve these questions, in this paper we propose UltraFace, an anti-spoofing and user-friendly facial authentication system on smartphones. It extracts facial geometry features and acoustic impedance features from imperceptible ultrasound. Leveraging the principle of ultrasound propagation, UltraFace correlates spectrograms of reflected signals with facial biometrics. Utilizing a deep learning model as a feature extractor, UltraFace mines fine-grained facial geometry features and acoustic impedance features from the spectrograms for accurate user authentication. Extensive experiments show that UltraFace achieves $97.2 \%$ accuracy in user authentication and can effectively defend against spoofing attacks. Furthermore, UltraFace exhibits robustness for long-term usage.

Zhanglei Shu,Zhangsen Wang,Guozheng Yang,Cheng Zang,Zhe Ma,Feng Lin,Kui Ren

DOI: https://doi.org/10.1109/ICPADS56603.2022.00013

2023-01-01

Abstract:Fingerprint recognition technology is the most widely used technology in the field of biometrics and is also the preferred solution for mobile devices and the financial industry. However, traditional fingerprint recognition technology requires expensive sensors on the one hand and risks leaking fingerprint images on the other hand. In this paper, we propose Fingersound, a low-cost and deployable authentication system that utilizes the sound generated by finger sliding as an identity feature. We use a microphone array to record continuous sliding sound and extract multiple features in the frequency and time domains. Then we use various algorithms including a deep neural network to perform user authentication. We also design a mobile phone application that can interact with the embedded system to manage users and record authentication history. In our experiments, 100 participants used this system and achieved an equal error rate of 5.2%. Additionally, we investigate the system’s robustness within different sliding materials, texturesand under noise disturbances. We further demonstrate the resistance of Fingersound to replay attack.

Xinyu Jiang,Xiangyu Liu,Jiahao Fan,Xinming Ye,Chenyun Dai,Edward A. Clancy,Wei Chen

DOI: https://doi.org/10.1109/tim.2022.3180434

IF: 5.6

2022-10-29

IEEE Transactions on Instrumentation and Measurement

Abstract:Measuring the physical, physiological, behavioral, or chemical characteristics of an individual as biometrics for personal identification has attracted increasing attention in smart environment applications. Noncancelability and cross-application invariance are two flaws of traditional DNA, face, and fingerprint-based biometrics because users cannot volitionally change the biometric template. In this work, we acquired high-density surface electromyogram (HD-sEMG) signals encoded by gesture passwords as biometrics. The different sEMG patterns under different motor tasks allow users to enroll multiple accounts using sEMG under different hand gestures as biometrics. By simply changing to a new gesture password, users can cancel the original template once it is compromised. Even if impostors enter the correct gesture password, the individual differences of HD-sEMG as the second defense can still achieve excellent performance. To improve the current state-of-the-art identification accuracy, we acquired 256-channel forearm HD-sEMG and decoded high-resolution neuromuscular information in temporal–spectral–spatial domain. We achieved a high identification accuracy of 99.85% on a 200-account (20 subjects accounts per subject) recognition task, with training and testing data acquired 3 to 25 days apart. Moreover, to address the concern of "unknown identities," we applied an "authentication + identification" validation, achieving high accuracy of 93.81% on a 200-account [(16 enrolled subjects +4 unknown subjects) accounts per subject] task. Our work substantially improves the current state-of-the-art accuracy for cross-day s- MG biometric identification (improved from % to >99% with a similar number of identified classes).

engineering, electrical & electronic,instruments & instrumentation

Feiyu Han,Panlong Yang,Shaojie Yan,Haohua Du,Yuanhao Feng

DOI: https://doi.org/10.1109/INFOCOM53939.2023.10229037

2023-01-01

Abstract:As one of the most natural physiological activities, breathing provides an effective and ubiquitous approach for continuous authentication. Inspired by that, this paper presents BreathSign, which reveals a novel biometric characteristic using bone-conducted human breathing sound and provides an anti-spoofing and transparent authentication mechanism based on inward-facing microphones on commercial earphones. To explore the breathing differences among persons, we first analyze how the breathing sound propagates in the body, and then derive unique body physics-level features from breathing-induced body sounds. Furthermore, to eliminate the impact of behavioral biometrics, we design a triple network model to reconstruct breathing behavior-independent features. Extensive experiments with 20 subjects over a period have been conducted to evaluate the accuracy, robustness, and vulnerability of BreathSign. The results show that our system accurately authenticates users with an average authentication accuracy rate of 95.17% via only one breathing cycle, and effectively defends against various spoofing attacks with an average spoofing attack detection rate of 98.25%. Compared with other continuous authentication solutions, BreathSign extracts hard-to-forge biometrics in the effortless human breathing activity for authentication and can be easily implemented on commercial earphones with high usability and enhanced security.