Skip to Main content Skip to Navigation
Conference papers

Client-Side Biometric Verification Based on Trusted Computing

Abstract : Traditionally, a user requires substantial trust in a workstation for correctly handling her credentials (e.g. password/login). Unfortunately, malware and compromised software makes them unsuitable for secure credential management. Credentials are easily stolen and the user cannot trust what is being displayed on her workstation, obstructing informed consent.This paper presents a new solution that addresses these issues. Credentials are bound to the owner using biometrics, effectively impeding abuse through credential sharing and theft. The biometric verification is performed on the client side, preserving the privacy of the user. The solution ensures that the user is correctly informed about the pending authentication, preventing abuse by malware. To demonstrate the feasibility of our approach, a prototype was implemented.
Complete list of metadata

https://hal.inria.fr/hal-01492832
Contributor : Hal Ifip <>
Submitted on : Monday, March 20, 2017 - 3:51:48 PM
Last modification on : Thursday, February 21, 2019 - 10:31:47 AM
Long-term archiving on: : Wednesday, June 21, 2017 - 1:44:26 PM

File

978-3-642-40779-6_3_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Jan Vossaert, Jorn Lapon, Bart Decker, Vincent Naessens. Client-Side Biometric Verification Based on Trusted Computing. 14th International Conference on Communications and Multimedia Security (CMS), Sep 2013, Magdeburg,, Germany. pp.34-49, ⟨10.1007/978-3-642-40779-6_3⟩. ⟨hal-01492832⟩

Share

Metrics

Record views

210

Files downloads

335