Security Analysis and Improvement of Fingerprint Authentication for Smartphones
Joint Authors
Lee, Mun-Kyu
Jo, Young-Hoo
Jeon, Seong-Yun
Im, Jong-Hyuk
Source
Issue
Vol. 2016, Issue 2016 (31 Dec. 2016), pp.1-11, 11 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2016-03-08
Country of Publication
Egypt
No. of Pages
11
Main Subjects
Telecommunications Engineering
Abstract EN
Currently, an increasing number of smartphones are adopting fingerprint verification as a method to authenticate their users.
Fingerprint verification is not only used to unlock these smartphones, but also used in financial applications such as online payment.
Therefore, it is very crucial to secure the fingerprint verification mechanism for reliable services.
In this paper, however, we identify a few vulnerabilities in one of the currently deployed smartphones equipped with fingerprint verification service by analyzing the service application.
We demonstrate actual attacks via two proof-of-concept codes that exploit these vulnerabilities.
By the first attack, a malicious application can obtain the fingerprint image of the owner of the victimized smartphone through message-based interprocess communication with the service application.
In the second attack, an attacker can extract fingerprint features by decoding a file containing them in encrypted form.
We also suggest a few possible countermeasures to prevent these attacks.
American Psychological Association (APA)
Jo, Young-Hoo& Jeon, Seong-Yun& Im, Jong-Hyuk& Lee, Mun-Kyu. 2016. Security Analysis and Improvement of Fingerprint Authentication for Smartphones. Mobile Information Systems،Vol. 2016, no. 2016, pp.1-11.
https://search.emarefa.net/detail/BIM-1111654
Modern Language Association (MLA)
Jo, Young-Hoo…[et al.]. Security Analysis and Improvement of Fingerprint Authentication for Smartphones. Mobile Information Systems No. 2016 (2016), pp.1-11.
https://search.emarefa.net/detail/BIM-1111654
American Medical Association (AMA)
Jo, Young-Hoo& Jeon, Seong-Yun& Im, Jong-Hyuk& Lee, Mun-Kyu. Security Analysis and Improvement of Fingerprint Authentication for Smartphones. Mobile Information Systems. 2016. Vol. 2016, no. 2016, pp.1-11.
https://search.emarefa.net/detail/BIM-1111654
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1111654