Biometric authentication systems verify the identity of users by relying on their distinctive traits, like fingerprint, face, iris, signature, voice, etc. Biometrics is commonly perceived as a strong authentication method; in practice several well-known vulnerabilities exist, and security aspects should be carefully considered, especially when it is adopted to secure the access to applications controlling critical systems and infrastructures. In this paper we perform a quantitative security evaluation of the CASHMA multi-biometric authentication system, assessing the security provided by different system configurations against attackers with different capabilities. The analysis is performed using the ADVISE modeling formalism, a formalism for security evaluation that extends attack graphs; it allows to combine information on the system, the attacker, and the metrics of interest to produce quantitative results. The obtained results provide useful insight on the security offered by the different system configurations, and demonstrate the feasibility of the approach to model security threats and countermeasures in real scenarios
Quantitative Security Evaluation of a Multi-Biometric Authentication System / L. Montecchi; P. Lollini; A. Bondavalli; E. La Mattina. - STAMPA. - 7613:(2012), pp. 209-221. (Intervento presentato al convegno DESEC4LCCI 2012 tenutosi a Magdeburg, Germany nel 25-28 September 2012) [10.1007/978-3-642-33675-1_19].
Quantitative Security Evaluation of a Multi-Biometric Authentication System
MONTECCHI, LEONARDO;LOLLINI, PAOLO;BONDAVALLI, ANDREA;
2012
Abstract
Biometric authentication systems verify the identity of users by relying on their distinctive traits, like fingerprint, face, iris, signature, voice, etc. Biometrics is commonly perceived as a strong authentication method; in practice several well-known vulnerabilities exist, and security aspects should be carefully considered, especially when it is adopted to secure the access to applications controlling critical systems and infrastructures. In this paper we perform a quantitative security evaluation of the CASHMA multi-biometric authentication system, assessing the security provided by different system configurations against attackers with different capabilities. The analysis is performed using the ADVISE modeling formalism, a formalism for security evaluation that extends attack graphs; it allows to combine information on the system, the attacker, and the metrics of interest to produce quantitative results. The obtained results provide useful insight on the security offered by the different system configurations, and demonstrate the feasibility of the approach to model security threats and countermeasures in real scenariosFile | Dimensione | Formato | |
---|---|---|---|
Documento 1 non salvato
Accesso chiuso
Tipologia:
Altro
Licenza:
Tutti i diritti riservati
Dimensione
1.12 kB
Formato
Unknown
|
1.12 kB | Unknown | Richiedi una copia |
2012_SAFECOMP_DESEC4LCCI.pdf
Accesso chiuso
Tipologia:
Altro
Licenza:
Tutti i diritti riservati
Dimensione
1.75 MB
Formato
Adobe PDF
|
1.75 MB | Adobe PDF | Richiedi una copia |
I documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.