TY - GEN
T1 - A novel crypto-biometric scheme for establishing secure communication sessions between two clients
AU - Kanade, Sanjay G.
AU - Petrovska-Delacretaz, Dijana
AU - Dorizzi, Bernadette
PY - 2012/11/26
Y1 - 2012/11/26
N2 - Biometrics and cryptography are two tools which have high potential for providing information security and privacy. A combination of these two can eliminate their individual shortcomings, such as non-revocability, non-diversity, and privacy issues in biometrics and need of strong authentication in cryptography. Crypto-biometric systems combine techniques from biometrics and cryptography for these purposes, and more interestingly, to obtain biometrics based cryptographic keys. In this paper, we address the problem of sharing these keys. We propose a crypto-biometric scheme in which two clients can share a session key securely and establish a secure communication session. The scheme involves a Central Authority for Registration and Authentication (CARA) with which the clients are registered. The CARA stores biometric data only in transformed, cancelable form, allowing for easy revocation of the templates and protecting privacy. There are two distinctive features of this protocol (1) it achieves mutual authentication and starts secure communication between two clients which may be previously unknown to each other, and (2) this protocol works even if the two clients use different biometric modalities in the same (as well as in different) session.
AB - Biometrics and cryptography are two tools which have high potential for providing information security and privacy. A combination of these two can eliminate their individual shortcomings, such as non-revocability, non-diversity, and privacy issues in biometrics and need of strong authentication in cryptography. Crypto-biometric systems combine techniques from biometrics and cryptography for these purposes, and more interestingly, to obtain biometrics based cryptographic keys. In this paper, we address the problem of sharing these keys. We propose a crypto-biometric scheme in which two clients can share a session key securely and establish a secure communication session. The scheme involves a Central Authority for Registration and Authentication (CARA) with which the clients are registered. The CARA stores biometric data only in transformed, cancelable form, allowing for easy revocation of the templates and protecting privacy. There are two distinctive features of this protocol (1) it achieves mutual authentication and starts secure communication between two clients which may be previously unknown to each other, and (2) this protocol works even if the two clients use different biometric modalities in the same (as well as in different) session.
M3 - Conference contribution
AN - SCOPUS:84869414785
SN - 9783885792901
T3 - Proceedings of the International Conference of the Biometrics Special Interest Group, BIOSIG 2012
BT - Proceedings of the International Conference of the Biometrics Special Interest Group, BIOSIG 2012
T2 - 2012 International Conference of the Biometrics Special Interest Group, BIOSIG 2012
Y2 - 6 September 2012 through 7 September 2012
ER -