Privacy Preserving Multi-Factor
Authentication with Biometrics
Abstract— An emerging approach to the problem of identity theft is represented by the adoption of biometric authentication systems. Such systems however present several challenges, related to privacy, reliability and security of the biometric data. Inter-operability is also required among the devices used for authentication. Moreover, very often biometric authentication in itself is not sufﬁcient as a conclusive proof fact < Final Year Projects 2016 >of identity and has to be complemented with multiple other proofs of identity such as passwords, SSN, or other user identiﬁers. Multi-factor authentication mechanisms are thus required to enforce strong authentication based on the biometric and identiﬁers of other nature. In this paper we propose a two-phase authentication mechanism for federated identity management systems. The ﬁrst phase consists of a two-factor biometric authentication based on zero knowledge proofs. We employ techniques from the vector-space model to generate cryptographic biometric keys. These keys are kept secret, thus preserving the conﬁdentiality of the biometric data, and at the same time exploit the advantages of biometric authentication. The second phase combines several authentication factors in conjunction with the biometric to provide a strong authentication.
sales on Site11,021