Research Article
Biometric Identity Trust: Toward Secure Biometric Enrollment in Web Environments
@INPROCEEDINGS{10.1007/978-3-319-03874-2_13, author={Florian Obergrusberger and Baris Baloglu and Johannes S\aa{}nger and Christian Senk}, title={Biometric Identity Trust: Toward Secure Biometric Enrollment in Web Environments}, proceedings={Cloud Computing. Third International Conference, CloudComp 2012, Vienna, Austria, September 24-26, 2012, Revised Selected Papers}, proceedings_a={CLOUDCOMP}, year={2014}, month={6}, keywords={Authentication Biometrics Identity Management Trust}, doi={10.1007/978-3-319-03874-2_13} }
- Florian Obergrusberger
Baris Baloglu
Johannes Sänger
Christian Senk
Year: 2014
Biometric Identity Trust: Toward Secure Biometric Enrollment in Web Environments
CLOUDCOMP
Springer
DOI: 10.1007/978-3-319-03874-2_13
Abstract
The nonrepudiation of a biometric authentication depends on the authenticity of the corresponding biometric profile. If the enrollment process is not controlled by some trusted entity, a user’s biometric data might be misleadingly linked to another person’s digital identity. To secure the biometric enrollment in open Web-based environments, we propose the biometric observer principle: An arbitrary trustworthy person observes an individual’s enrollment at a biometric identity provider and confirms this to the system. The concept rests on a specified trust model, which assesses the trustworthiness of both the observer and the authenticity of an observed biometric profile. Trust relations between observer and observed persons are managed by the authentication system. We implemented a cloud-based biometric identity provider to validate and demonstrate the proposed concept.