Biometric Cryptosystems based Fuzzy Commitment Scheme: A Security Evaluation

Biometric Cryptosystems based Fuzzy Commitment Scheme: A Security Evaluation

  Maryam Lafkih1, Mounia Mikram1, 2, Sanaa Ghouzali1, 3, Mohamed El Haziti1, 4, Driss Aboutajdine1

1LRIT (associated unit with CNRST, URAC 29), Mohammed V-Agdal University, Morocco

2The School of Information Sciences, Morocco

3 Department of Information Technology, King Saud University, Saudi Arabia

4Higher School of Technology, Morocco

Abstract: Biometric systems are developed in order to replace traditional authentication. However, protecting the stored templates is considered as one of the critical steps in designing a secure biometric system. When biometric data is compromised, unlike passwords, it can’t be revoked. One methodology for biometric template protection is ‘Biometric Cryptosystem’. Biometric cryptosystems benefit from both fields of cryptography and biometrics where the biometrics exclude the need to remember passwords and the cryptography provides high security levels for data. In order to, develop these systems, Fuzzy Commitment Scheme (FCS) is considered as well known approach proposed in the literature to protect the user’s data and has been used in several applications. However, these biometric cryptosystems are hampered by the lack of formal security analysis to prove their security strength and effectiveness. Hence, in this paper we present several metrics to analyze the security and evaluate the weaknesses of biometric cryptosystems based on fuzzy commitment scheme.

 

Keywords: Biometric systems vulnerabilities, biometric cryptosystems, fuzzy commitment, security analysis.

   Received August 18, 2013; accepted May 10, 2014

Full Text
Read 1973 times Last modified on Monday, 24 February 2020 06:15
Share
Top
We use cookies to improve our website. By continuing to use this website, you are giving consent to cookies being used. More details…