Token-Based Biometric Enhanced Key Derivation for Authentication Over Wireless Networks
Contribution to Journal
Cui, Hui, Yang, Xuechao, Yang, Wencheng, Qin, Baodong and Yi, Xun. 2023. "Token-Based Biometric Enhanced Key Derivation for Authentication Over Wireless Networks." IEEE Transactions on Network Science and Engineering. 10 (4), pp. 2347-2357. https://doi.org/10.1109/TNSE.2023.3246439
Article Title | Token-Based Biometric Enhanced Key Derivation for Authentication Over Wireless Networks |
---|---|
ERA Journal ID | 212767 |
Authors | Cui, Hui, Yang, Xuechao, Yang, Wencheng, Qin, Baodong and Yi, Xun |
Journal Title | IEEE Transactions on Network Science and Engineering |
Journal Citation | 10 (4), pp. 2347-2357 |
Number of Pages | 11 |
Year | 2023 |
Publisher | IEEE (Institute of Electrical and Electronics Engineers) |
Place of Publication | United States |
ISSN | 2327-4697 |
2334-329X | |
Digital Object Identifier (DOI) | https://doi.org/10.1109/TNSE.2023.3246439 |
Web Address (URL) | https://ieeexplore.ieee.org/document/10049085 |
Abstract | A biometric authenticated key derivation (BAKD) scheme is an architecture allowing users to derive keys from their biometric characteristics with the help of the server via a wireless network. Traditionally, the user registers his/her biometric feature with the server, and the server keeps a record for the user to recover the key locked by the biometric data. In this case, when the server is compromised, an attacker is able to launch exhaustive attacks to learn the user's biometric input. With such a concern in mind, we introduce a notion called Biometric Enhanced Key Derivation (BEKD) to prevent brute-force attacks. In a BEKD scheme, the server does not store any biometric related information for the user. It is the user who locally stores tokens to recover the cryptographic key. An attacker who steals tokens from the user cannot launch exhaustive attacks to confirm the user's biometric distribution. In addition, the BEKD scheme protects users' privacy in that the server could not distinguish a user's biometric input from a token. We define security requirements for a BEKD scheme, present a concrete BEKD construction, and analyse its security. We also implement the proposed basic BEKD scheme to evaluate its performance in practice. © 2013 IEEE. |
Keywords | Authentication; biometric; key derivation; password; token |
Contains Sensitive Content | Does not contain sensitive content |
ANZSRC Field of Research 2020 | 460403. Data security and protection |
Public Notes | Files associated with this item cannot be displayed due to copyright restrictions. |
Byline Affiliations | Monash University |
Royal Melbourne Institute of Technology (RMIT) | |
School of Mathematics, Physics and Computing | |
Xi’an University of Posts and Telecommunications, China |
Permalink -
https://research.usq.edu.au/item/z2589/token-based-biometric-enhanced-key-derivation-for-authentication-over-wireless-networks
28
total views0
total downloads2
views this month0
downloads this month