Title :
A Protection Scheme for MOC-Enabled Smart Cards
Author :
Barral, Claude ; Vaudenay, Serge
Author_Institution :
GEMALTO Technol. & Innovation, La Ciotat
fDate :
Sept. 19 2006-Aug. 21 2006
Abstract :
The concept of match-on-card (MoC) consists of a smart card which receives an applicant\´s candidate template T to be compared with the stored reference template Tref by processing the complete matching algorithm during a biometric authentication request. The smart card will then output whether this comparison is positive or not. The main argument against MoC-enabled smart cards is that it opens the way for YesCard (i.e. an attack path previously seen in banking, a card always returning "yes"). The threat regarding biometrics is not only YesCard, but also NoCard as we will see in this paper. We will propose a protocol to easily thwart these attacks by using simple cryptographic primitives such as symmetric encryption. This protocol will however only protect the system from malicious smart cards, but will not protect the smart card against malicious systems. Finally we will enhance this pro tocol to protect the smart card against its use as a so-called oracle to guess the stored reference biometric template.
Keywords :
biometrics (access control); cryptography; message authentication; smart cards; Match-on-Card; MoC-enabled smart card; NoCard; YesCard; biometric authentication request; biometric template; cryptographic primitives; malicious systems; matching algorithm; oracle; protection scheme; symmetric encryption; Authentication; Banking; Biometrics; Cryptographic protocols; Cryptography; Magnetic cores; Microprocessors; Protection; Read only memory; Smart cards;
Conference_Titel :
Biometric Consortium Conference, 2006 Biometrics Symposium: Special Session on Research at the
Conference_Location :
Baltimore, MD
Print_ISBN :
978-1-4244-0487-2
Electronic_ISBN :
978-1-4244-0487-2
DOI :
10.1109/BCC.2006.4341632
