Biometric cryptosystems: issues and challenges
Uludag, U.
Pankanti, S.
Prabhakar, S.
Jain, A.K.
Dept. of Comput. Sci. & Eng., Michigan State Univ., USA;
This paper appears in: Proceedings of the IEEE
Publication Date: June 2004
Volume: 92,
Issue: 6
On page(s): 948- 960
ISSN: 0018-9219
INSPEC Accession Number: 8021899
Digital Object Identifier: 10.1109/JPROC.2004.827372
Current Version Published: 2004-05-18
Abstract
In traditional cryptosystems, user authentication is based on possession of secret keys; the method falls apart if the keys are not kept secret (i.e., shared with non-legitimate users). Further, keys can be forgotten, lost, or stolen and, thus, cannot provide non-repudiation. Current authentication systems based on physiological and behavioral characteristics of persons (known as biometrics), such as fingerprints, inherently provide solutions to many of these problems and may replace the authentication component of traditional cryptosystems. We present various methods that monolithically bind a cryptographic key with the biometric template of a user stored in the database in such a way that the key cannot be revealed without a successful biometric authentication. We assess the performance of one of these biometric key binding/generation algorithms using the fingerprint biometric. We illustrate the challenges involved in biometric key generation primarily due to drastic acquisition variations in the representation of a biometric identifier and the imperfect nature of biometric feature extraction and matching algorithms. We elaborate on the suitability of these algorithms for digital rights management systems.
Index
Terms
Available to subscribers and IEEE members.
References
Available to subscribers and IEEE members.
Citing Documents
Available to subscribers and IEEE members.
Cart
