Title :
Attestation-Based Remote Biometric Authentication
Author :
Polon, Thomas ; Sander, Sam
Author_Institution :
Clemson Univ., Clemson
fDate :
Sept. 19 2006-Aug. 21 2006
Abstract :
Migration from password and token-based authentication in distributed systems requires fundamental changes to the authentication process. A person´s biometric data is not a secret, which presents a fundamental difference with other authentication methods. Matching a sample with a database template is secondary to establishing trust in the integrity of the sample. The process is similar to establishing a chain of custody for judicial evidence. In computer systems this is accomplished using attestation architectures. In this paper, a design for a secure remote biometric login system based on an attestation architecture is analyzed. The system uses a commercially available Trusted Platform Module (TPM) to authenticate the platform during the boot process and perform trusted private-key functions to participate in a challenge/response between the client and a remote biometric matcher. The result is a system that can provide higher assurance than current systems in an economically and administratively feasible system.
Keywords :
biometrics (access control); database management systems; message authentication; attestation-based remote biometric authentication; database template; token-based authentication; trusted platform module; trusted private-key functions; Authentication; Biometrics; Biosensors; Computer architecture; Emulation; Hardware; Immune system; Protection; Sensor systems; System testing;
Conference_Titel :
Biometric Consortium Conference, 2006 Biometrics Symposium: Special Session on Research at the
Conference_Location :
Baltimore, MD
Print_ISBN :
978-1-4244-0487-2
Electronic_ISBN :
978-1-4244-0487-2
DOI :
10.1109/BCC.2006.4341619