Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics
Само за регистроване кориснике
2019
Аутори
Maček, NemanjaAdamović, Saša
Milosavljević, Milan
Jovanović, Miloš
Gnjatović, Milan
Trenkić, Branimir
Чланак у часопису (Објављена верзија)
Метаподаци
Приказ свих података о документуАпстракт
This paper presents an approach to designing secure modular authentication
framework based on iris biometrics and its’ implementation into mobile banking scenario.
The system consists of multiple clients and an authentication server. Client, a smartphone
with accompanying application, is used to capture biometrics, manage auxiliary data and
create and store encrypted cancelable templates. Bank’s authentication server manages
encryption keys and provides the template verification service. Proposed system keeps
biometric templates encrypted or at least cancelable during all stages of storage,
transmission and verification. As templates are stored on clients in encrypted form and
decryption keys reside on bank's authentication server, original plaintext templates are
unavailable to an adversary if the phone gets lost or stolen. The system employs public key
cryptography and pseudorandom number generator on small-sized templates, thus not
suffering from severe computational cost...s like systems that employ homomorphic
encryption. System is also general, as it does do not depend on specific cryptographic
algorithms. Having in mind that modern smartphones have iris scanners or at least high-
quality front cameras, and that no severe computational drawbacks exist, one may
conclude that the proposed authentication framework is highly applicable in mobile
banking authentication.
Кључне речи:
mobile banking / authentication / biometrics / iris / cryptographИзвор:
Acta Polytechnica Hungarica, 2019, 16, 1, 45-62Издавач:
- Budapest : Óbuda University
Институција/група
JakovTY - JOUR AU - Maček, Nemanja AU - Adamović, Saša AU - Milosavljević, Milan AU - Jovanović, Miloš AU - Gnjatović, Milan AU - Trenkić, Branimir PY - 2019 UR - http://jakov.kpu.edu.rs/handle/123456789/1517 AB - This paper presents an approach to designing secure modular authentication framework based on iris biometrics and its’ implementation into mobile banking scenario. The system consists of multiple clients and an authentication server. Client, a smartphone with accompanying application, is used to capture biometrics, manage auxiliary data and create and store encrypted cancelable templates. Bank’s authentication server manages encryption keys and provides the template verification service. Proposed system keeps biometric templates encrypted or at least cancelable during all stages of storage, transmission and verification. As templates are stored on clients in encrypted form and decryption keys reside on bank's authentication server, original plaintext templates are unavailable to an adversary if the phone gets lost or stolen. The system employs public key cryptography and pseudorandom number generator on small-sized templates, thus not suffering from severe computational costs like systems that employ homomorphic encryption. System is also general, as it does do not depend on specific cryptographic algorithms. Having in mind that modern smartphones have iris scanners or at least high- quality front cameras, and that no severe computational drawbacks exist, one may conclude that the proposed authentication framework is highly applicable in mobile banking authentication. PB - Budapest : Óbuda University T2 - Acta Polytechnica Hungarica T1 - Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics VL - 16 IS - 1 SP - 45 EP - 62 DO - 10.12700/APH.16.1.2019.1.3 ER -
@article{ author = "Maček, Nemanja and Adamović, Saša and Milosavljević, Milan and Jovanović, Miloš and Gnjatović, Milan and Trenkić, Branimir", year = "2019", abstract = "This paper presents an approach to designing secure modular authentication framework based on iris biometrics and its’ implementation into mobile banking scenario. The system consists of multiple clients and an authentication server. Client, a smartphone with accompanying application, is used to capture biometrics, manage auxiliary data and create and store encrypted cancelable templates. Bank’s authentication server manages encryption keys and provides the template verification service. Proposed system keeps biometric templates encrypted or at least cancelable during all stages of storage, transmission and verification. As templates are stored on clients in encrypted form and decryption keys reside on bank's authentication server, original plaintext templates are unavailable to an adversary if the phone gets lost or stolen. The system employs public key cryptography and pseudorandom number generator on small-sized templates, thus not suffering from severe computational costs like systems that employ homomorphic encryption. System is also general, as it does do not depend on specific cryptographic algorithms. Having in mind that modern smartphones have iris scanners or at least high- quality front cameras, and that no severe computational drawbacks exist, one may conclude that the proposed authentication framework is highly applicable in mobile banking authentication.", publisher = "Budapest : Óbuda University", journal = "Acta Polytechnica Hungarica", title = "Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics", volume = "16", number = "1", pages = "45-62", doi = "10.12700/APH.16.1.2019.1.3" }
Maček, N., Adamović, S., Milosavljević, M., Jovanović, M., Gnjatović, M.,& Trenkić, B.. (2019). Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics. in Acta Polytechnica Hungarica Budapest : Óbuda University., 16(1), 45-62. https://doi.org/10.12700/APH.16.1.2019.1.3
Maček N, Adamović S, Milosavljević M, Jovanović M, Gnjatović M, Trenkić B. Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics. in Acta Polytechnica Hungarica. 2019;16(1):45-62. doi:10.12700/APH.16.1.2019.1.3 .
Maček, Nemanja, Adamović, Saša, Milosavljević, Milan, Jovanović, Miloš, Gnjatović, Milan, Trenkić, Branimir, "Mobile Banking Authentication Based on Cryptographically Secured Iris Biometrics" in Acta Polytechnica Hungarica, 16, no. 1 (2019):45-62, https://doi.org/10.12700/APH.16.1.2019.1.3 . .