Security and privacy enhanced smartphone-based gait authentication with random representation learning and digital lockers
作者:
Highlights:
•
摘要
Gait data captured by inertial sensors of smartphone have demonstrated promising results on user authentication. However, most existing models stored the enrolled gait pattern in plaintext for matching with the pattern being validated, thus, posed critical security and privacy issues. In this study, we present a gait cryptosystem that generates from gait data captured by smartphone sensors the random keys for user authentication, meanwhile, secures the gait pattern. First, we propose a revocable and random binary string extraction method using deep neural network followed by feature-wise binarization. A novel loss function for network optimization is also designed, to tackle not only the intra-user stability but also the inter-user randomness. Second, we propose a new biometric key generation scheme, namely Irreversible Error Correct and Obfuscate (IECO), improved from the Error Correct and Obfuscate (ECO) scheme, to securely generate from the binary string a random and irreversible key. The model was evaluated with two benchmark datasets as OU-ISIR and whuGAIT. The evaluation showed that our model could generate the key of 139 bits from 5-second data sequence with zero False Acceptance Rate (FAR) and False Rejection Rate (FRR) smaller than 5.441%. In addition, the security and user privacy analyses showed that our model was secure against existing attacks on biometric template protection, and fulfilled the irreversibility and unlinkability requirements.
论文关键词:Gait authentication,Biometric template protection,Biometric cryptosystems,Gait recognition,Key binding scheme,Biometric key generation
论文评审过程:Received 12 July 2021, Revised 14 April 2022, Accepted 29 April 2022, Available online 30 April 2022, Version of Record 7 May 2022.
论文官网地址:https://doi.org/10.1016/j.patcog.2022.108765