Fingerprint authentication techniques have been employed in various Internet of Things (IoT) applications for access control to protect private data, but raw fingerprint template leakage in unprotected IoT applications may render the authentication system insecure. Cancelable fingerprint templates can effectively prevent privacy breaches and provide strong protection to the original templates. However, to suit resource-constrained IoT devices, oversimplified templates would compromise authentication performance significantly. In addition, the length of existing cancelable fingerprint templates is usually fixed, making them difficult to be deployed in various memory-limited IoT devices. To address these issues, we propose a novel length-flexible lightweight cancelable fingerprint template for privacy-preserving authentication systems in various resource-constrained IoT applications. The proposed cancelable template design primarily consists of two components: 1) length-flexible partial-cancelable feature generation based on the designed re-indexing scheme; and 2) lightweight cancelable feature generation based on the designed encoding-nested-difference-XOR scheme. Comprehensive experimental results on public databases~FVC2002 DB1-DB4 and FVC2004 DB1-DB4 demonstrate that the proposed cancelable fingerprint template achieves equivalent authentication performance to state-of-the-art methods in IoT environments, but our design substantially reduces template storage space and computational cost. More importantly, the proposed length-flexible lightweight cancelable template is suitable for a variety of commercial smart cards (e.g., C5-M.O.S.T. Card Contact Microprocessor Smart Cards CLXSU064KC5). To the best of our knowledge, the proposed method is the first length-flexible lightweight, high-performing cancelable fingerprint template design for resource-constrained IoT applications.
翻译:在各种Times (IoT) 的互联网应用中采用了指纹认证技术来保护私人数据,但是,在无保护的 IoT 应用中,原始指纹模板渗漏可能会使认证系统变得不安全。取消的指纹模板可以有效防止侵犯隐私的行为,并为原始模板提供强有力的保护。然而,为了适应资源限制的 IoT 设备,过度简化的模板将大大损害认证性能。此外,现有的可取消的指纹模板通常都固定下来,使得难以在各种内存有限的 IoT 设备中部署。为了解决这些问题,我们提议为各种资源限制的 IoT 应用中保存隐私认证系统的新的长灵活光重指纹模板渗漏可能会使该模板变得不安全。拟议取消的模板设计主要包括两个组成部分:1基于设计重索引计划的长弹性部分取消性特征生成;2) 根据设计自上加加码的易变码的Iferf-XOR 计划生成的轻质可取消特性。为了解决这些问题,我们公共数据库的智能测试结果:FVC2002-DB4 和FV-D-D-D-D-B-B-M-M-M-M-M-M-B-B-B-M-M-B-B-B-B-B-B-B-B-B-B-B-B-B-B-B-M-M-D-D-D-D-D-D-D-M-M-D-M-M-M-D-D-D-D-D-D-M-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-M-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D-D