Enhanced fingerprint system with user password

S. Pooja; R. Saritha

doi:10.1109/CIMCA.2016.8053281

Enhanced fingerprint system with user password

S. Pooja, R. Saritha

Department of Information and Communication Technology, Manipal Institute of Technology, Manipal

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

Original language	English
Title of host publication	2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781509053698
DOIs	https://doi.org/10.1109/CIMCA.2016.8053281
Publication status	Published - 27-09-2017
Event	2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016 - Bangalore, India Duration: 04-10-2016 → 06-10-2016

Conference

Conference	2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016
Country/Territory	India
City	Bangalore
Period	04-10-16 → 06-10-16

All Science Journal Classification (ASJC) codes

Computer Science Applications
Energy Engineering and Power Technology
Electrical and Electronic Engineering
Control and Optimization
Computer Networks and Communications
Instrumentation

Access to Document

10.1109/CIMCA.2016.8053281

Cite this

@inproceedings{f4156e4508ba44d99014e07c65b1e2b7,

title = "Enhanced fingerprint system with user password",

abstract = "User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.",

author = "S. Pooja and R. Saritha",

year = "2017",

month = sep,

day = "27",

doi = "10.1109/CIMCA.2016.8053281",

language = "English",

booktitle = "2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

note = "2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016 ; Conference date: 04-10-2016 Through 06-10-2016",

}

Pooja, S & Saritha, R 2017, Enhanced fingerprint system with user password. in 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016., 8053281, Institute of Electrical and Electronics Engineers Inc., 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016, Bangalore, India, 04-10-16. https://doi.org/10.1109/CIMCA.2016.8053281

TY - GEN

T1 - Enhanced fingerprint system with user password

AU - Pooja, S.

AU - Saritha, R.

PY - 2017/9/27

Y1 - 2017/9/27

N2 - User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

AB - User authentication based on biometrie system has several advantages over traditional systems which are only password-based. This architecture, known as fingerprint-cryptosystem has cryptography and fingerprint merged together, that securely stores the private key for cryptosystem. The private key of AES system is 128 bit long and is usually alphanumeric. Thus for a user to remember such a long password is cumbersome, hence a system called Fuzzy Vault exist which securely stores the private key. This architecture makes use of fingerprint features know as minutia points. Minutia points are evaluated on polynomial, whose coefficients are the secret key which is to be stored securely. Thus the evaluated values and the minutia points are stored securely in vault. The security of this system depends on the infeasibility of the polynomial reconstruction problem. This paper proposes a second layer of protection using password generated from user, which further does a logical xor computations. This paper thus suggests that even if biometric feature is compromised, without the user password, an attacker won't have access to vault. Thus to get access to the private key, an attacker must have access both to fingerprint and user password, to securely retrieve the key.

UR - http://www.scopus.com/inward/record.url?scp=85034216273&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85034216273&partnerID=8YFLogxK

U2 - 10.1109/CIMCA.2016.8053281

DO - 10.1109/CIMCA.2016.8053281

M3 - Conference contribution

AN - SCOPUS:85034216273

BT - 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2016 International Conference on Circuits, Controls, Communications and Computing, I4C 2016

Y2 - 4 October 2016 through 6 October 2016

ER -

Enhanced fingerprint system with user password

Abstract

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this