Authors: Qinghai Gao
Addresses: Department of Security Systems and Law Enforcement Technology, Farmingdale State College, Farmingdale, NY, USA
Abstract: Password-based systems authenticate users with cryptographic one-way hashes without storing plaintext passwords. The method prevents a hacker from reversing the hashes and hacking into individual accounts easily. Biometric data cannot be reproduced with 100% accuracy. Therefore, the hashing technique has yet to be utilised directly to secure biometric data. Instead, biometric system manages biometric data in two ways. The first is to store original biometric templates in encrypted formats. However, real-time decryption is required upon authentication during which decrypted data can be stolen. The second is to transform original templates such that matching can be done directly in the transformed domain. However, the requirement of similarity-preserving transformation makes the transformed templates vulnerable to reverse engineering. In this paper we propose a novel approach of transforming fingerprint templates, with which matching can be conducted using cryptographic one-way hashes. Our testing results indicate its feasibility.
Keywords: fingerprint; synthetic template; randomised minutiae tessellation; minutiae hashing; MD5 entry matching.
International Journal of Biometrics, 2017 Vol.9 No.3, pp.205 - 224
Received: 20 Oct 2016
Accepted: 16 May 2017
Published online: 15 Sep 2017 *