Design and evaluation of a secure, privacy-preserving and cancelable biometric authentication : Bio-Capsule

dc.contributor.advisorZou, Xukai, 1963-
dc.contributor.authorSui, Yan
dc.contributor.otherBertino, Elisa
dc.contributor.otherLi, Ninghui
dc.contributor.otherDu, Yingzi, 1975-
dc.contributor.otherLi, Feng
dc.contributor.otherPrabhakar, Sunil
dc.contributor.otherGorman, William J.
dc.date.accessioned2014-09-04T14:08:30Z
dc.date.available2014-09-04T14:08:30Z
dc.date.issued2014-09-04
dc.degree.date2013en_US
dc.degree.grantorPurdue Universityen_US
dc.degree.levelPh.D.en_US
dc.descriptionIndiana University-Purdue University Indianapolis (IUPUI)en_US
dc.description.abstractA large portion of system breaches are caused by authentication failure either during the system login process or even in the post-authentication session, which is further related to the limitations associated with existing authentication approaches. Current authentication methods, whether proxy based or biometrics based, are hardly user-centric; and they either put burdens on users or endanger users' (biometric) security and privacy. In this research, we propose a biometrics based user-centric authentication approach. The main idea is to introduce a reference subject (RS) (for each system), securely fuse the user's biometrics with the RS, generate a BioCapsule (BC) (from the fused biometrics), and employ BCs for authentication. Such an approach is user-friendly, identity-bearing yet privacy-preserving, resilient, and revocable once a BC is compromised. It also supports "one-click sign on" across multiple systems by fusing the user's biometrics with a distinct RS on each system. Moreover, active and non-intrusive authentication can be automatically performed during the user's post-authentication on-line session. In this research, we also formally prove that the proposed secure fusion based BC approach is secure against various attacks and compare the new approach with existing biometrics based approaches. Extensive experiments show that the performance (i.e., authentication accuracy) of the new BC approach is comparable to existing typical biometric authentication approaches, and the new BC approach also possesses other desirable features such as diversity and revocability.en_US
dc.identifier.urihttps://hdl.handle.net/1805/4985
dc.identifier.urihttp://dx.doi.org/10.7912/C2/2320
dc.language.isoen_USen_US
dc.subjectAuthenticationen_US
dc.subjectBiometric securityen_US
dc.subject.lcshAuthentication -- Research -- Analysisen_US
dc.subject.lcshComputer networks -- Security measuresen_US
dc.subject.lcshComputer security -- Managementen_US
dc.subject.lcshData protectionen_US
dc.subject.lcshBiometric identification -- Researchen_US
dc.subject.lcshSecurity systemsen_US
dc.subject.lcshComputers -- Access controlen_US
dc.subject.lcshPattern recognition systemsen_US
dc.subject.lcshOperating systems (Computers)en_US
dc.titleDesign and evaluation of a secure, privacy-preserving and cancelable biometric authentication : Bio-Capsuleen_US
dc.typeThesisen
thesis.degree.disciplineComputer & Information Scienceen
Files
Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
Thesis_YanSui_revised_final.pdf
Size:
1.97 MB
Format:
Adobe Portable Document Format
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.88 KB
Format:
Item-specific license agreed upon to submission
Description: