Enhanced fingerprint system with user password

S. Pooja, R. Saritha

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

Original languageEnglish
Title of host publication2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781509053698
DOIs
Publication statusPublished - 27-09-2017
Externally publishedYes
Event2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016 - Bangalore, India
Duration: 04-10-201606-10-2016

Conference

Conference2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016
CountryIndia
CityBangalore
Period04-10-1606-10-16

Fingerprint

Password
Fingerprint
Cryptography
polynomials
fuzzy systems
cryptography
biometrics
Polynomials
Cryptosystem
Fuzzy systems
Biometrics
Authentication
coefficients
Alphanumeric
Infeasibility
User Authentication
Polynomial
Fuzzy Systems
Coefficient

All Science Journal Classification (ASJC) codes

  • Computer Science Applications
  • Energy Engineering and Power Technology
  • Electrical and Electronic Engineering
  • Control and Optimization
  • Computer Networks and Communications
  • Instrumentation

Cite this

Pooja, S., & Saritha, R. (2017). Enhanced fingerprint system with user password. In 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016 [8053281] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CIMCA.2016.8053281
Pooja, S. ; Saritha, R. / Enhanced fingerprint system with user password. 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016. Institute of Electrical and Electronics Engineers Inc., 2017.
@inproceedings{f4156e4508ba44d99014e07c65b1e2b7,
title = "Enhanced fingerprint system with user password",
abstract = "User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.",
author = "S. Pooja and R. Saritha",
year = "2017",
month = "9",
day = "27",
doi = "10.1109/CIMCA.2016.8053281",
language = "English",
booktitle = "2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
address = "United States",

}

Pooja, S & Saritha, R 2017, Enhanced fingerprint system with user password. in 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016., 8053281, Institute of Electrical and Electronics Engineers Inc., 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016, Bangalore, India, 04-10-16. https://doi.org/10.1109/CIMCA.2016.8053281

Enhanced fingerprint system with user password. / Pooja, S.; Saritha, R.

2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016. Institute of Electrical and Electronics Engineers Inc., 2017. 8053281.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Enhanced fingerprint system with user password

AU - Pooja, S.

AU - Saritha, R.

PY - 2017/9/27

Y1 - 2017/9/27

N2 - User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

AB - User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

UR - http://www.scopus.com/inward/record.url?scp=85034216273&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85034216273&partnerID=8YFLogxK

U2 - 10.1109/CIMCA.2016.8053281

DO - 10.1109/CIMCA.2016.8053281

M3 - Conference contribution

AN - SCOPUS:85034216273

BT - 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

Pooja S, Saritha R. Enhanced fingerprint system with user password. In 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016. Institute of Electrical and Electronics Engineers Inc. 2017. 8053281 https://doi.org/10.1109/CIMCA.2016.8053281