on the resilience of biometric authentication systems
play

On the Resilience of Biometric Authentication Systems against - PowerPoint PPT Presentation

Nov 30, 2022 •289 likes •547 views

On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao , Hassan Asghar, Dali Kaafar Biometric Authentication: Overview Metrics Face Feature Extraction FRR, Engineered FPR, Embeddings EER,

  1. On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao , Hassan Asghar, Dali Kaafar

  2. Biometric Authentication: Overview Metrics Face Feature Extraction • FRR, • Engineered • FPR, • Embeddings • EER, Fingerprint • ROC. Speech Registration Training User Records The Sensors Touch Authentication Model 1 Record Decision Classification Yes / No Record In Authentication Question Gait 2 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  3. Biometrics as an API Feature Vector API Secure Enclave / UI API User/OS Space Cloud User Raw Feature The Authentication Input Sensors Input Features Decision: Yes/No Extractor Model o Engineered o Embeddings Attack Surface Raw Input API Secure Enclave / API UI Cloud What if an attacker had User Raw The Input Input Sensors access to these APIs? Model 3 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  4. What is the success of an attacker? • Perception: FPR is indicative of success of this attacker. • Yes, if attacker inputs have the same distribution as biometric data. • If the API is available, an attacker has more freedom. Length of Input Assumptions • In particular, an attacker can submit random inputs. Value Bounds User Identifier What is the Security of the biometric system against these Random Inputs? 5 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  5. Contributions • A notion of Acceptance Region (AR): positively classified region of features. • Formally and experimentally show AR is larger than positive user’s data region. • Show Random Input attacker with black-box feature API access succeeds more than EER. • Show Random Input attacker with Raw Input (before feature extraction) API succeeds more than EER • Demonstrate attack on four real-world biometric schemes, and four ML algorithms. • Propose mitigation against attackers with either Raw or Feature API access. • Release our code in our Repo : https://imathatguy.github.io/Acceptance-Region/ 6 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  6. Contributions • A notion of Acceptance Region (AR): positively classified region of features. • Formally and experimentally show AR is larger than positive user’s data region. • Show Random Input attacker with black-box feature API access succeeds more than EER. • Show Random Input attacker with Raw Input (before feature extraction) API succeeds more than EER • Demonstrate attack on four real-world biometric schemes, and four ML algorithms. • Propose mitigation against attackers with either Raw or Feature API access. • Release our code in our Repo : https://imathatguy.github.io/Acceptance-Region/ 7 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  7. Outline • What is the Random Input Attacker? • How we evaluate a Random Input Attacker’s Success. • Are Random Input Attacker successful on real-world datasets? • Factors that may affect the Success of the Random Input Attacker. • Evaluation of factors on Synthetic Data. • Propose a defence mechanism. • Code Available in our Repo: https://imathatguy.github.io/Acceptance-Region/ 8 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  8. Random Input Attacker • How easy can a Random Input Attacker find an accepting sample? • The region where biometric samples are labelled as positive, Acceptance Region ( AR ). • And this is exactly equal to success probability of an attacker submitting random inputs. The Model Attacker Assumptions: Length of Input Uniformly Sampled Random Inputs Input Bounds {0 − 1, 0 − 1} User Identifier 9 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  9. Evaluation Methodology Gait Touch Linear SVM Radial SVM Face Voice Random Forest DNN Synthetic Find system Balanced Data Two-class problem parameter for EER EER Training Features Feature The User Extractor Model Inputs Evaluate AR at AR T esting Features system parameter for EER. Uniformly Sampled Random Inputs Attacker 10 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  10. Real-world Data Evaluation Face Dataset , Random Forest Classifier EER when FRR = FPR 0.03 System Parameter (Threshold) 11 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  11. Real-world Data Evaluation Face Dataset , Random Forest Classifier 0.78 EER when FRR = FPR 0.03 System Parameter (Threshold) In many cases AR exceeds the EER Hides a vulnerability not revealed by EER 12 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  12. Real-world Data Evaluation Face Dataset , Random Forest Classifier AR is now zero, Problem Solved? System Parameter (Threshold) In many cases AR exceeds the EER Hides a vulnerability not revealed by EER 13 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  13. Real-world Data Evaluation Face Dataset , Linear SVM Classifier A flat AR response can be observed in many configurations System Parameter (Threshold) Simply adjusting system parameters is ineffective in mitigating the Random Input Attacker. 14 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  14. Real-world Data Evaluation - Individuals Face Dataset, Random Forests & DNN Classifiers Touch, All Classifiers Find details in Paper when AR == EER Relationship between a user’s AR and EER not always guaranteed. 15 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  15. Recap – Real World Data ü Random Input Attacker, Leverages an exposed Feature Vector Input API to submit crafted inputs ü The Acceptance Region an approximate measure of success of a Random Input Attacker ü The Random Input attacker has success comparable to EER in user averages. ü An individual’s EER is not a reliable indicator of Random Input Attacker success • Outline factors that may affect the Success of the Random Input Attacker. • Evaluation of factors on Synthetic Data. • Propose a defence mechanism. 16 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  16. Factors Effecting the Acceptance Region • Both the positive and negative examples are expected to be highly concentrated. • It is desirable for models to bound it’s decision boundary around this region • However model-based classifiers do not penalize empty space. • Variability of the Positive class. • Variability of the Negative class. 17 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  17. Synthetic Data Evaluation – Positive User Variance Synthetic Data, DNN Classifier System-wide success of the Random Input Attacker may not capture the large vulnerability of a few users. A user with high feature variance, will be more susceptible to a Random Input Attacker 18 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  18. Synthetic Data Evaluation – Negative User Variance Synthetic Data, DNN Classifier A User’s vulnerability to the Random Input Attacker can be decreased by only increasing the variance of the Negative Class. 19 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  19. Recap – Synthetic Data ü A user with high feature variance, will be more susceptible to a Random Input Attacker ü A User’s vulnerability to the Random Input Attacker can be decreased by only increasing the variance of the Negative Class. • Propose a defence mechanism. 20 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  20. Proposed Defence Mechanism • If we can increase the variance of the Negative class, we can reduce the success of the Random Input Count Attacker. User Noise • We can increase negative class variation with noise. • Conveniently, Beta-distributed noise, will sample Feature Value values distant from a user’s values. Far away from user values, minimize impact on existing EER • Data manipulation is algorithm Independent • • Train user model with noise vectors sampled from beta-distributions defined from the user’s training samples. 21 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

  21. Proposed Defence Mechanism – Beta Noise • Maintain balanced dataset. • 1/3 positive, 1/3 negative, 1/3 beta noise. Before Defence | After Defence Before Defence | After Defence EER AR EER AR EER AR EER AR Gait 0.09 0.03 0.09 0.00 0.215 0.20 0.170 0.00 The AR has been Touch 0.21 0.23 0.21 0.00 0.325 0.30 0.375 0.00 substantially reduced below Face 0.03 0.78 0.03 0.00 0.095 0.10 0.065 0.04 EER Voice 0.04 0.01 0.04 0.00 0.115 0.08 0.090 0.02 Random Forests DNN 22 | University of New South Wales, Macquarie University, Data61 CSIRO | Benjamin Zhao

Recommend

A Key to Your Heart: Biometric Authentication Based on ECG Signals Who Are You?! Adventures in

A Key to Your Heart: Biometric Authentication Based on ECG Signals Who Are You?! Adventures in

A Key to Your Heart: Biometric Authentication Based on ECG Signals Who Are You?! Adventures in Authentication Workshop (WAY) 2019 Nikita Samarin, Donald Sannella Traditional Passwords Most common mechanism of authenticating users online

251 views • 14 slides
Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication System? How does a Biometric System work? Biometric Comparisons Types of Biometrics Fingerprint-Scan Iris-Scan 2 BIOMETRICS

568 views • 36 slides
Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com

Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com

Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com Facial Recognition Biometric Data Privacy The LocalAuthentication Framework Up Next: Securing an App using Biometrics

97 views • 5 slides
Information Security Identification and authentication Advanced User Authentication I 2018-02-02

Information Security Identification and authentication Advanced User Authentication I 2018-02-02

Information Security Identification and authentication Advanced User Authentication I 2018-02-02 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for this part of the course Background Statistics in user authentication Biometric systems

568 views • 41 slides
Information Security Identification and authentication Advanced User Authentication I 2016-01-26

Information Security Identification and authentication Advanced User Authentication I 2016-01-26

Information Security Identification and authentication Advanced User Authentication I 2016-01-26 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for this part of the course Background Statistics in user authentication Biometric systems

865 views • 40 slides
Information Security Identification and authentication Advanced User Authentication I 2019-02-01

Information Security Identification and authentication Advanced User Authentication I 2019-02-01

Information Security Identification and authentication Advanced User Authentication I 2019-02-01 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for this part of the course Background Statistics in user authentication Biometric systems

573 views • 32 slides
Philippeit GmbH In the twinkling of an eye to greater efficiency Biometric ID-Systems DNA

Philippeit GmbH In the twinkling of an eye to greater efficiency Biometric ID-Systems DNA

Philippeit GmbH In the twinkling of an eye to greater efficiency Biometric ID-Systems DNA FACIAL RECOGNITION IRISSCAN FINGERPRINT HANDSCAN ID PALM The bio standard for user authentication ID-Palm Features

424 views • 6 slides
Biometric and Physical Identifiers with Correlated Noise for Controllable Private Authentication

Biometric and Physical Identifiers with Correlated Noise for Controllable Private Authentication

Biometric and Physical Identifiers with Correlated Noise for Controllable Private Authentication Onur G unl u Information Theory and Applications Chair, TU Berlin Joint work with Rafael F. Schaefer (TU Berlin) and H. Vincent Poor

501 views • 26 slides
Hanno Coetzer RESEARCH PROJECTS / STUDENT SUPERVISION BIOMETRIC AUTHENTICATION / RECOGNITION

Hanno Coetzer RESEARCH PROJECTS / STUDENT SUPERVISION BIOMETRIC AUTHENTICATION / RECOGNITION

Hanno Coetzer RESEARCH PROJECTS / STUDENT SUPERVISION BIOMETRIC AUTHENTICATION / RECOGNITION BEHAVIOURAL Offline and online handwritten signatures (MSc, PhD) PHYSICAL Hand veins (MSc, PhD), Fingerprints (MSc), Ears (MSc)

502 views • 15 slides
Put Identity at the Heart of Security Strong Authentication via Hitachi Biometric Technology

Put Identity at the Heart of Security Strong Authentication via Hitachi Biometric Technology

Put Identity at the Heart of Security Strong Authentication via Hitachi Biometric Technology Tadeusz Woszczyski Country Manager Poland, Hitachi Europe Ltd. 20 September 2017 Financial security in the old world The Perimeter Assets were

659 views • 31 slides
Biometric Authentication Revisited: Understanding the Impact of Wolves in Sheeps clothing in

Biometric Authentication Revisited: Understanding the Impact of Wolves in Sheeps clothing in

Biometric Authentication Revisited: Understanding the Impact of Wolves in Sheeps clothing in Sheeps clothing Lucas Ballard, Fabian Monrose, Daniel Lopresti Presented by : Anuj Sawani 1 Biometrics What is it? identifying, or

884 views • 15 slides
Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric Data? Athletes need real-time feedback to improve ! You only improve what you measure What is Biometric Data? Cycle Monitors 20M 10M 1980 1990

458 views • 20 slides
How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and C. Rosenberger GREYC Research Lab, ENSICAEN - CNRS University of Caen, FRANCE NIST International Biometric Performance Testing Conference 2012

682 views • 31 slides
Metadata Filtering for User-friendly Central Biometric Authentication CHRISTIAN GEHRMANN, MARCUS

Metadata Filtering for User-friendly Central Biometric Authentication CHRISTIAN GEHRMANN, MARCUS

Metadata Filtering for User-friendly Central Biometric Authentication CHRISTIAN GEHRMANN, MARCUS RODAN AND NIKLAS JNSSON This presentation contains material from the following publication (to appear): C. Gehrmann, M. Rodan and N. Jnsson,

381 views • 22 slides
BIOMETRICS Security Systems 5338025 Hyungseok C. 5418102 Wooram L. 5655248 Jutamas T.

BIOMETRICS Security Systems 5338025 Hyungseok C. 5418102 Wooram L. 5655248 Jutamas T.

BIS4857 Internet Security BIOMETRICS Security Systems 5338025 Hyungseok C. 5418102 Wooram L. 5655248 Jutamas T. CONTENTS What is Biometric Security System? Evolution of Biometric Security Systems Types of Biometric Security

783 views • 29 slides
Authentication of People what you know (passwords) what you have (keys) what you are

Authentication of People what you know (passwords) what you have (keys) what you are

people 1 Authentication of People what you know (passwords) what you have (keys) what you are (biometric devices) where you are (physical) October 26, 2000 people 2 Passwords initial password distribution (students)

559 views • 13 slides
1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
Authentication of People what you know (passwords) what you have (keys) what you are

Authentication of People what you know (passwords) what you have (keys) what you are

people 1 Authentication of People what you know (passwords) what you have (keys) what you are (biometric devices) where you are (physical) Slide 1 Passwords initial password distribution (students) limit password guessing

305 views • 7 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
Making decisions with biometric systems: the usefulness of a Bayesian perspective A. Nautsch ,

Making decisions with biometric systems: the usefulness of a Bayesian perspective A. Nautsch ,

Making decisions with biometric systems: the usefulness of a Bayesian perspective A. Nautsch , D. Ramos Castro , J. Gonz guez , alez Rodr Christian Rathgeb , Christoph Busch Hochschule Darmstadt, CRISP, CASED, da/sec

1.24k views • 57 slides
Authentication: Beyond Passwords Prof. Tom Austin San Jos State University Biometrics

Authentication: Beyond Passwords Prof. Tom Austin San Jos State University Biometrics

CS 166: Information Security Authentication: Beyond Passwords Prof. Tom Austin San Jos State University Biometrics Something You Are Biometric You are your key Schneier Examples Fingerprint Are Handwritten

800 views • 32 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part II Identification and authentication Recognition: Selection from a set of known identities Verification: confirming or denying a claimed

320 views • 10 slides
Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part II Identification and authentication Recognition: Selection from a set of known identities Verification: confirming or denying a claimed

369 views • 20 slides

More recommend