Abstract
Large-scale deployment of biometric systems for web-based services has to tackle technological issues related to security, interoperability and accuracy, and social issues related to privacy protection and biometric acquisition process acceptance. The variety of biometric traits, capturing devices, targeted populations and working scenarios makes the development of a universal solution for all-purpose deployment quite a difficult task.
This paper describes the design, implementation and applicability of an open framework for distributed biometric authentication oriented to access-control in web environment. The open principle makes this framework a novel and practical development tool for testing and integrating biometric algorithms and devices from third parties. Special attention has been paid to security and interoperability standards to ease concurrent integration and testing of biometric trait matchers developed by different laboratories or companies. Finally, in order to demonstrate the versatility and usability of the framework, we describe the construction process for a distributed multibiometric database acquisition tool based on this framework.
Résumé
La mise en marche à grande échelle de systèmes biométriques pour services web doit aborder des problèmes technologiques liés à la sécurité, l’interopérabilité et la précision, et les problèmes sociaux liés à la protection de l’intimité et l’acceptation du procédé d’acquisition. La variété des caractéristiques biométriques, des dispositifs d’acquisition, des populations ciblées et des scénarios de travail complique l’obtention d’une solution d’universelle de déploiement polyvalent.
Cet article décrit la conception, la mise en œuvre et l’applicabilité d’un cadre ouvert pour une authentication biométrique distribuée destinée au contrôle d’accès dans un environnement web. Le principe ouvert fait de cette structure un outil de développement pratique et nouveau pour l’essai et l’intégration des algorithmes et dispositifs biométriques. On prête attention surtout aux normes de sécurité et d’interopérabilité qui facilitent l’intégration et l’essai de dispositifs biométriques développés par différents laboratoires ou compagnies. Le cadre intègre également nos outils de vérification de visage et de locuteur. Finalement, on décrit un outil web distribué d’acquisition de données biométriques basé sur notre cadre ouvert.
Access this article
Rent this article via DeepDyve
Similar content being viewed by others
References
Biometric-aimed Sub-Committees of the ISO/IEC JTC1: http://isotc.iso.org, http://www.sc17.com
bioapi Consortium (ANSI/INCITS 358-2002): http://www.bioapi.org
Biometric Consortium: http://www.biometrics.org
xml Common Biometric Format: http://xml.coverpages.org/xcbf.html
Jain A., Bolle R., Pankanti S., Introduction to Biometrics. In Biometrics. Personal Identification in Networked Society. Kluwer Academic Publishers, 2002.
Ross A., Jain A.K., Multimodal Biometrics: An Overview. In Proc. of 12th European Signal Processing Conference (EUSIPCO), pp. 1221–1224, Vienna (Austria), September 2004.
González-Agulla E., Argones-Rúa E., García-Mateo C., Márquez-Flórez O., Development and Implementation of a Biometrie Verification System for Internet Applications. In Proc. of the 2nd COST275 Workshop, Vigo (Spain), pp. 33–39, March 2004.
Menkus B., Understanding the Use of Passwords. Computers and Security 72), pp. 132–136, 1988.
Ansi X9.84-2003, Biometrie information management and security for the financial services industry. American National Standards Institute, New-York (USA), 2003.
Java Web Start Technology: http://java.sun.com/products/javawebstart/
Yuan X., Hui S.C., Leung M.H.K, Gao Y), Towards a BIOAPI compliant face verification system, Computer Standards & Interfaces 26 (2004) pp. 289–299.
González-Jiménez D., Alba-Castro J. L., Frontal Face Authentication through creaseness driven Gabor jets. Lecture Notes in Computer Science 3212 (Springer), pp 660–667, 2004.
Rodríguez-Linares L., García-Mateo C., Alba-Castro J.L., On Combining Classifiers for speaker authentication, Pattern Recognition, 36, pp.347–359, 2003.
Open Source Project JBioAPi: a Java BioAPi wrapper for Linux. http://www.qrivy.net/~michael/blua/jbioapi/
Jni — Java Native Interface: http://java.sun.com/j2se/1.3/docs/guide/jni/
Richiardi J., Drygajlo A., Palacios-Venin A., Ludvig R., Genton O., Houmgny L., A distributed multimodal biometric authentication framework. In Proc. of the 3rd COST275 Workshop, Oct. 2005.
W3C Simple Object Access Protocol (SOAP) 1.1: http://www.w3.org/TR/soap/
Oasis Web Services Security — SOAP Messages Security 1.0: http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0.pdf
Apache open-source implementation of the OASIS Web Services Security: http://ws.apache.org/wss4j/
Proguard: Open Source Java shrinker, optimizer and obfuscator: http://proguard.sourceforge.net
W3C Extensible MultiModal Annotation markup language: http://www.w3.org/TR/emma/
Central Authentication Server Open-Source Project: https://clearinghouse.ja-sig.org/wiki/display/CAS/Home
Martinez A.M., Benavente R., The AR Face Database, CVC Technical Report #24, June 1998.
The SpeechDat Projects: http://www.speechdat.com
Nist special databases form the Image Group: http://www.itl.nist.gov/iad/894.03/databases/defs/dbases.html
Messer K., Matas J., Kittler J., Luettin J., Maïtre G., Xm2vtsdb: The extended M2VTSDB. International Conference on Audio and Video-based Biometric Person Authentication, 1999.
Nist Speaker Recognition Evaluation page: http://www.nist.gov/speech/tests/spk/index.htm
Phillips P., Flynn P., Scruggs T., Bowyer K.W., Chang J., Hoffman K., Marques J., Min J., Worek W., Overview of the face recognition grand challenge. In Proc. of IEEE Conf. on Computer Vision and Pattern Recognition (CVPR), San Diego, CA, June 2005.
Messer K., Kittler J., Sadeghi M., Hamouz M., Kostyn A., Marcel S., Bengio S., Cardinaux F., Sanderson C., Poh N., Rodriguez Y., Kryszczuk K., Czyz J., Vandendorpe L., Ng J., Cheung H., Tang B., Face authentication competition on the banca database. In Proceedings of the International Conference on Biometric Authentication (ICBA), Hong Kong, July 15-17 2004.
Signal Processing Group website, University of Vigo: http://www.gts.tsc.uvigo.es.
Ratha N. K., Connell J. H., Bolle R. M., Enhancing security and privacy in biometrics-based authentication systems, IBM Systems Journal, 40, n° 3, 2001.
Author information
Authors and Affiliations
Corresponding author
Additional information
This work was supported with funds provided partially by the next financial sources: the European sixth framework programme under the Network of Excellence BIOSECURE (IST-2002-507604), the Spanish ministry of education under project TEC2005-07212/TCM, and the R&D Galician department under project PGIDT05TIC32202PR
Rights and permissions
About this article
Cite this article
Otero-Muras, E., González-Agulla, E., Alba-Castro, J.L. et al. An open framework for distributed biometric authentication in a web environment. Ann. Telecommun. 62, 177–192 (2007). https://doi.org/10.1007/BF03253255
Received:
Accepted:
Issue Date:
DOI: https://doi.org/10.1007/BF03253255