On the design of forgiving biometric security systems

Raphael C.W. Phan, John N. Whitley, David J. Parish

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

1 Citation (Scopus)

Abstract

This work aims to highlight the fundamental issue surrounding biometric security systems: it's all very nice until a biometric is forged, but what do we do after that? Granted, biometric systems are by physical nature supposedly much harder to forge than other factors of authentication since biometrics on a human body are by right unique to the particular human person. Yet it is also due to this physical nature that makes it much more catastrophic when a forgery does occur, because it implies that this uniqueness has been forged as well, threatening the human individuality; and since crime has by convention relied on identifying suspects by biometric characteristics, loss of this biometric uniqueness has devastating consequences on the freedom and basic human rights of the victimized individual. This uniqueness forgery implication also raises the motivation on the adversary to forge since a successful forgery leads to much more impersonation situations when biometric systems are used i.e. physical presence at crime scenes, identification and access to security systems and premises, access to financial accounts and hence the ability to use the victim's finances. Depending on the gains, a desperate highly motivated adversary may even resort to directly obtaining the victim's biometric parts by force e.g. severing the parts from the victim's body; this poses a risk and threat not just to the individual's uniqueness claim but also to personal safety and well being. One may then wonder if it is worth putting one's assets, property and safety into the hands of biometrics based systems when the consequences of biometric forgery far outweigh the consequences of system compromises when no biometrics are used.

Original languageEnglish
Title of host publicationiNetSec 2009 - Open Research Problems in Network Security
Subtitle of host publicationIFIP WG 11.4 International Workshop, Zurich, Switzerland, April 23-24, 2009, Revised Selected Papers
EditorsJan Camenisch, Dogan Kesdogan
Pages1-8
Number of pages8
DOIs
Publication statusPublished - 2009
Externally publishedYes
EventIFIP WG 11.4 International Workshop on Open Problems in Network Security 2009 - Zurich, Switzerland
Duration: 23 Apr 200924 Apr 2009
https://link.springer.com/book/10.1007/978-3-642-05437-2 (Proceedings)

Publication series

NameIFIP Advances in Information and Communication Technology
Volume309
ISSN (Print)1868-4238

Conference

ConferenceIFIP WG 11.4 International Workshop on Open Problems in Network Security 2009
Abbreviated titleiNetSec 2009
Country/TerritorySwitzerland
CityZurich
Period23/04/0924/04/09
Internet address

Cite this