
For FullText PDF, please login, if you are a member of IEICE,
or go to Pay Per View on menu list, if you are a nonmember of IEICE.

Wolf Attack Probability: A Theoretical Security Measure in Biometric Authentication Systems
Masashi UNE Akira OTSUKA Hideki IMAI
Publication
IEICE TRANSACTIONS on Information and Systems
Vol.E91D
No.5
pp.13801389 Publication Date: 2008/05/01
Online ISSN: 17451361
DOI: 10.1093/ietisy/e91d.5.1380
Print ISSN: 09168532 Type of Manuscript: Special Section PAPER (Special Section on Information and Communication System Security) Category: Biometrics Keyword: biometric authentication system, bruteforce attack, fingerveinpattern based algorithm, minutiaematching algorithm, wolf attack probability,
Full Text: PDF(724.7KB)>>
Summary:
This paper will propose a wolf attack probability (WAP) as a new measure for evaluating security of biometric authentication systems. The wolf attack is an attempt to impersonate a victim by feeding "wolves" into the system to be attacked. The "wolf" means an input value which can be falsely accepted as a match with multiple templates. WAP is defined as a maximum success probability of the wolf attack with one wolf sample. In this paper, we give a rigorous definition of the new security measure which gives strength estimation of an individual biometric authentication system against impersonation attacks. We show that if one reestimates using our WAP measure, a typical fingerprint algorithm turns out to be much weaker than theoretically estimated by Ratha et al. Moreover, we apply the wolf attack to a fingerveinpattern based algorithm. Surprisingly, we show that there exists an extremely strong wolf which falsely matches all templates for any threshold value.

