An effective framework for addressing security issues in biometric fingerprint authentication system

Abstract

Out of the different biometric systems existing, Fingerprint Authentication System (FAS) is the newlinemost prominent, unique and consistent. Even though FAS is very effective, a set of newlinevulnerabilities is creating lot of security threats. Existing solutions are available to prevent the newlinemalicious attack, but they are not capable of fully eliminating the attacks because of certain newlinepitfalls in them. Due to an unauthorized access from a fraudulent user, original biometrics of the newlineuser is exposed. Hence, for a secured FAS system, it is vital to have good trade-off between newlineperformance and robust security. This research focusses on creating a cancellable Biometric newlineapproach using Bio-hashing to address the gaps in the current solutions in an efficient and newlineeffective manner. A novel method named One Time Finger Code (OTFC) algorithm is proposed. newlineThis algorithm uses techniques such as circular tessellation, time stamping and pseudo random newlinenumber generation for creating a secured OTFC in every user transaction. This unique encoding newlineapproach makes it extremely difficult for an unauthorized user to decode the generated Finger newlineCode that is used for a particular authentication session. Comparison of proposed method with newlineexisting methods in terms of time complexity, FAR vs FRR calculation, EER calculation and newlinesecurity attacks are encountered. The quantitative measurement of the security is performed newlinebased on analysis using Entropy. For the verification and validation compliance, an integrated newlinesecurity framework with a novel security protocol is conceptualized and implemented. The level newlineup to which the system is exposed to the various security attacks is observed based on newlineexperimental results obtained from this implementation. Statistical estimation of severity of newlinevarious security attacks has been carried out based on Base Score calculation and the effect of newlinealteration of original data in its output encrypted form during data transmission is analysed using newlinethe estimated Avalanche effect of the system being calculated.