Séminaire confiance numériques (Kasper Rasmussen, Oxford University)

Authentication Using Pulse-Response Biometrics

Many modern access control systems augment the traditional two-factor authentication procedure (something you know and something you have) with a third factor: "something you are'', i.e., some form of biometric authentication. This additional layer of security comes in many flavors: from fingerprint readers on laptops used to facilitate easy login with a single finger swipe, to iris scanners used as auxiliary authentication for accessing secure facilities. In the latter case, the authorized user typically presents a smart card, then types in a PIN, and finally performs an iris (or fingerprint) scan.

In this talk I will introduce a new biometric -- based on the human body's response to an electric square pulse signal -- that we call pulse-response. The pulse-response biometric is effective because each human body exhibits a unique response to a signal pulse applied at the palm of one hand, and measured at the palm of the other. Using a prototype setup, we show that users can be correctly identified, with high probability, in a matter of seconds. This identification mechanism integrates very well with other well-established methods and offers a reliable layer of additional security, either on a continuous basis or at login time. I will present our results from experiments with a proof-of-concept prototype that demonstrate the feasibility of using pulse-response as a biometric.

Our results are very encouraging: we achieve accuracies of 100% over a static data set and 88% over a data set with samples taken over several weeks.

371 vues
Vendredi 13 Juin 2014
Tag(s) : confiance numerique, sécurité informatique
Partager : Facebook
Intégrer :
Vidéos suggérées