Skip to Main Content
The public key infrastructure (PKI) provides an excellent security for e-transactions and other applications all over the world. However, it also encounters some problems as follows: Private key is often stored at central databases or distributed smart-cards and protected by password or PIN that may be guessed or stolen; on the other hand, PKI could not differentiate a legitimate user from an attacker having victim's private key. Therefore, attacker may directly attacks to the storage-device to steal Private Key to use. An approach to the problem is using people's biology characteristics - known as biometric - to authenticate and protect the private key. In this paper, we propose a new algorithm to generate biometric encryption key (BEK) based on the computation of inner-productions and error correction coding to protect both private key and biometric information. We also present the BK-BioPKI system in which the algorithm is integrated and then we present the experiment results.
Date of Conference: 8-10 Dec. 2009