A Simple Auditable Fingerprint Authentication Scheme Using Smart-Contracts

Biometric authentication, and notably using fingerprints, are now common. Despite its usability, biometrics have however a caveat which is the impossibility of revocation: once the raw fingerprint is breached, and depending on the technology of the reader, it is impossible to stop an illegitimate authentication. This places a focus on auditing both to detect fraud and to have clear indications that the fingerprint has been breached. In this paper we show how to take advantage of the immutability property of Blockchains to design an auditable protocol based on Diffie-Hellman key exchange with applications to fingerprint authentication.

[1]  Johan A. Pouwelse,et al.  Portable Trust: biometric-based authentication and blockchain storage for self-sovereign identity systems , 2017, ArXiv.

[3]  Sharath Pankanti,et al.  Secure one-time biometrie tokens for non-repudiable multi-party transactions , 2017, 2017 IEEE Workshop on Information Forensics and Security (WIFS).

[4]  M. V. Srinath,et al.  A Comprehensive Survey on Fingerprint Recognition Systems , 2015 .

[5]  Steven Furnell,et al.  Surveying the Development of Biometric User Authentication on Mobile Phones , 2015, IEEE Communications Surveys & Tutorials.

[6]  Nalini K. Ratha,et al.  Generating Cancelable Fingerprint Templates , 2007, IEEE Transactions on Pattern Analysis and Machine Intelligence.

[7]  Anil K. Jain,et al.  Biometric Authentication: System Security and User Privacy , 2012, Computer.

[8]  Carlos J. Costa,et al.  Blockchain technology in the auditing environment , 2018, 2018 13th Iberian Conference on Information Systems and Technologies (CISTI).