Title :
Best practices for the security evaluation of biometric systems
Author :
Fernandez-Saavedra, Belen ; Sanchez-Reillo, Raul ; Liu-Jimenez, Judith ; Gutierrez Ruiz, Jorge
Author_Institution :
IDTestingLab, Carlos III Univ. of Madrid, Leganes, Spain
Abstract :
This paper describes best practices for the security evaluation of biometric systems. This type of evaluation has been addressed in several documents. However, not all of these documents describe the complete evaluation methodology, or are focused on biometrics or do propose clear testing procedures. Therefore, this work defines the most proper way to carry out this evaluation methodology considering biometrics and the special characteristics of these kind of systems (i.e. biometrics is non-deterministic technology highly influenced by user behavior and the operational environment). In particular, this paper specifies how to select which attacks shall be studied, how to conduct such attacks and which is the most suitable method to report the evaluation results.
Keywords :
biometrics (access control); human factors; security of data; biometric systems; nondeterministic technology; operational environment; security evaluation methodology; user behavior; Biometrics (access control); Guidelines; IEC standards; ISO standards; Security; Testing; attack potential; best practices; biometric systems; security testing;
Conference_Titel :
Security Technology (ICCST), 2014 International Carnahan Conference on
Conference_Location :
Rome
Print_ISBN :
978-1-4799-3530-7
DOI :
10.1109/CCST.2014.6987034
