Abstract
Toward the combination of cryptographic and biometric systems, by performing a biding technique on cryptographic key and biometric template, fuzzy vault framework tries to totally enhance security level of current biometric cryptographic systems, hides secret key and protects the template. Though original schema suggests the use of error-correction techniques (e.g., Reed Solomon (RS) encoder/decoder) to reconstruct the original polynomial, recent implements do not share the same point of view. As a replacement, Cyclic Redundant Code (CRC) is applied to identify the genius polynomial from set of candidates. Within scope of this paper, we address a significant flaw of current CRC-based fuzzy vault schemas which leads to a potential of successful blend substitutions attack. To overcome that problem, we proposed a modification and integration of two novel modules into fuzzy vault’s general schema: chaff points generator and chaff points verifier. New modules are designed to integrate easily to current running systems as well as simple to enhance. The proposed schema can detect any of modification in vault and, as a result, eliminate the blend substitution attack, enhance general security.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Rathgeb, C., Uhl, A.: A survey on biometric cryptosystems and cancelable biometrics. EURASIP Journal on Information Security 2011(1), 1–25 (2011)
Juels, A., Sudan, M.: A fuzzy vault scheme. Designs, Codes and Cryptography 38(2), 237–257 (2006)
Uludag, U., Pankanti, S., Jain, A.K.: Fuzzy vault for fingerprints. In: Kanade, T., Jain, A., Ratha, N.K. (eds.) AVBPA 2005. LNCS, vol. 3546, pp. 310–319. Springer, Heidelberg (2005)
Uludag, U., Jain, A.: Securing fingerprint template: Fuzzy vault with helper data. In: Conference on Computer Vision and Pattern Recognition Workshop, CVPRW 2006. IEEE (2006)
Nandakumar, K., Jain, A.K., Pankanti, S.: Fingerprint-based fuzzy vault: Implementation and performance. IEEE Transactions on Information Forensics and Security 2(4), 744–757 (2007)
Nandakumar, K., Nagar, A., Jain, A.K.: Hardening fingerprint fuzzy vault using password. In: Lee, S.-W., Li, S.Z. (eds.) ICB 2007. LNCS, vol. 4642, pp. 927–937. Springer, Heidelberg (2007)
Poon, H.T., Miri, A.: On efficient decoding for the Fuzzy Vault scheme. In: 2012 11th International Conference on Information Science, Signal Processing and their Applications (ISSPA). IEEE (2012)
Clancy, T.C., Kiyavash, N., Lin, D.J.: Secure smartcardbased fingerprint authentication. In: Proceedings of the 2003 ACM SIGMM Workshop on Biometrics Methods and Applications. ACM (2003)
Mihailescu, P.: The fuzzy vault for fingerprints is vulnerable to brute force attack. arXiv preprint arXiv:0708.2974 (2007)
Chang, E.-C., Shen, R., Teo, F.W.: Finding the original point set hidden among chaff. In: Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security. ACM (2006)
Poon, H.T., Miri, A.: A Collusion Attack on the Fuzzy Vault Scheme. ISeCure 1(1) (2009)
Scheirer, W.J., Boult, T.E.: Cracking fuzzy vaults and biometric encryption. In: Biometrics Symposium. IEEE (2007)
Hartloff, J., et al.: Security analysis for fingerprint fuzzy vaults. In: SPIE Defense, Security, and Sensing. International Society for Optics and Photonics (2013)
Örencik, C., et al.: Improved fuzzy vault scheme for fingerprint verification, pp. 37–43 (2008)
Maio, D., Maltoni, D., Cappelli, R., Wayman, J.L., Jain, A.K.: FVC2004: Third fingerprint verification competition. In: Zhang, D., Jain, A.K. (eds.) ICBA 2004. LNCS, vol. 3072, pp. 1–7. Springer, Heidelberg (2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Nguyen, M.T., Truong, Q.H., Dang, T.K. (2014). Enhance Fuzzy Vault Security Using Nonrandom Chaff Point Generator. In: Dang, T.K., Wagner, R., Neuhold, E., Takizawa, M., Küng, J., Thoai, N. (eds) Future Data and Security Engineering. FDSE 2014. Lecture Notes in Computer Science, vol 8860. Springer, Cham. https://doi.org/10.1007/978-3-319-12778-1_16
Download citation
DOI: https://doi.org/10.1007/978-3-319-12778-1_16
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-12777-4
Online ISBN: 978-3-319-12778-1
eBook Packages: Computer ScienceComputer Science (R0)