Skip to Main content Skip to Navigation
New interface
Conference papers

Client-Side Biometric Verification Based on Trusted Computing

Abstract : Traditionally, a user requires substantial trust in a workstation for correctly handling her credentials (e.g. password/login). Unfortunately, malware and compromised software makes them unsuitable for secure credential management. Credentials are easily stolen and the user cannot trust what is being displayed on her workstation, obstructing informed consent.This paper presents a new solution that addresses these issues. Credentials are bound to the owner using biometrics, effectively impeding abuse through credential sharing and theft. The biometric verification is performed on the client side, preserving the privacy of the user. The solution ensures that the user is correctly informed about the pending authentication, preventing abuse by malware. To demonstrate the feasibility of our approach, a prototype was implemented.
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, March 20, 2017 - 3:51:48 PM
Last modification on : Thursday, February 21, 2019 - 10:31:47 AM
Long-term archiving on: : Wednesday, June 21, 2017 - 1:44:26 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Jan Vossaert, Jorn Lapon, Bart De Decker, Vincent Naessens. Client-Side Biometric Verification Based on Trusted Computing. 14th International Conference on Communications and Multimedia Security (CMS), Sep 2013, Magdeburg,, Germany. pp.34-49, ⟨10.1007/978-3-642-40779-6_3⟩. ⟨hal-01492832⟩



Record views


Files downloads