RU2473125C1 - Method of classifying fingerprint pictures during personal authentication - Google Patents

Abstract

FIELD: information technology.

SUBSTANCE: during training, a random number N with length of n bits is obtained; n artificial neurons are created; neuron inputs are randomly connected to memory cells with data on inclination of dermal ridges of fragments of examples of the classified fingerprint picture; further, the neurons are trained to output a random number N when presenting examples of the classified picture; the random number N is the hashed and the reference hash value is stored, as well as the connection of the neural network and its training parameters; and during authentication, there is repeated breaking up of the scanned picture into fragments, calculation of the average inclination on the fragment and the calculated value is transmitted to inputs of the neural network; the hash result is calculated at the output of the neural network and then compared with the reference value; in case of a match, personal authentication is continued, otherwise the authentication procedure is stopped once the time allocated for an authentication session runs out.

EFFECT: safeguarding the finger print picture and its biometric parameters which are used during biometric authentication, and providing conditions wherein it is impossible to find the owner of biometric parameters from biometric authentication data, while also cutting the average time of loading the authentication server.

2 cl, 3 dwg

Description

The invention relates to the field of biometric identity authentication, built on keeping the biometric image used in authentication in the form of a fingerprint pattern secret.

The aim of the invention is to keep the fingerprint pattern and its biometric parameters of a person used in biometric authentication in secret, and to ensure the conditions under which biometric authentication cannot be used to find the owner of the biometrics, disavowing his anonymity or anonymity.

A known method of classifying drawings of fingerprints [1], based on the perception of the figure by a person. Typically, 4 to 7 classes of fingerprint patterns are distinguished. The main disadvantage of this classification method is that it is carried out by man and applied by man. In addition, there are very few drawing classes and classification data are openly given in the description of the biometric fingerprint pattern.

A known automated method for classifying fingerprint patterns by the location of the deltoid fragments of the picture [2]. Using this method, the number and location of delta-shaped fragments of fingerprint patterns are found and their classification is already carried out. So, class-1 “Arc” (Figure 1, the leftmost fragment) does not have a delta-like fragment at all (its central part has a bend of lines that is not a delta). Class-2 “Right loop” has a deltoid fragment in the left part of the figure. Class-3 “Left loop” has a deltoid fragment in the opposite part of the figure. Class-4 “Curl” has two deltoid fragments located symmetrically relative to the center (the far right fragment of Figure 1). Drawings with more than two deltas are extremely rare and are usually considered as a separate class. An example of the implementation of such an approach to classification are Papilon products (http://www.papillon.ru).

Automation of the classification of patterns by the location and number of deltoid fragments does not improve the situation. As in the previous method, information about the class of the fingerprint pattern is stored in an open form and, thereby, compromises a person’s biometry.

One of the methods partially solving the problem of ensuring the confidentiality of biometric templates is a method of converting a fingerprint picture into an access key [3]. The method is characterized in that, based on the biometric source data, only a set of the most characteristic data is obtained, selected on the basis of the possibility of statistically validating the belonging of the indicated biometric source data to a specific person, and based on this set of the most characteristic data, a uniquely reproducible set of access key parameters is always generated. This method boils down to multiple scanning of the fingerprint pattern, revealing all the features of the pattern (all control points), statistical estimation of the probability of occurrence of a particular control point, the selection of only those special control points that are often found in the presented examples of scanned fingerprint drawings . Of the often appearing special control points, special biometric templates are formed in the form of special graphs. When authenticating a person, they verify that the obtained graph matches the list of parameters of the vertices of the reference graphs. Each reference graph (biometric template) is assigned its own PIN code, which is used later for authentication.

The method [3] is devoid of the first drawback of the analogues described previously and ensures the confidentiality of the list of singular points, however, it has another serious drawback. By this method, it is only necessary to take into account (statistically significant) the special control points that are most often encountered in the examples (it is necessary to discard from 30% to 70% of the detected special control points with a probability of occurrence of 0.7 or lower), which significantly reduces the resistance of the authentication system to selection attacks. Simply discarding “bad” statistically unstable data is undesirable, since most of them are up to 70%. Failure to account for up to 70% of unstable data can lead to a two-fold reduction in the effective length of the access key (PIN). More precisely, losses can be estimated according to table No. A3 of Appendix “A” to GOST [4].

A known method of authenticating a person according to a fingerprint, aimed at ensuring the confidentiality of human biometric data [5]. This method is based on multiple scanning of a fingerprint pattern, highlighting special points on it and determining the inclination of papillary lines in various fragments of the pattern. Further, this method involves the use of a biometric-code code neural network converter that converts the coordinates of the detected special points of the fingerprint pattern and the slopes of the papillary lines in different fragments of the fingerprint pattern as the initial biometric data for automatic training of the neural network according to GOST [6].

The main disadvantage of the method [5] is that its implementation consumes significant computational resources for automatic centering of the introduced examples of the fingerprint pattern along several reference specific points of the fingerprint pattern. At the same time, computing resources are spent, including on centering fingerprint drawings that are completely different from the original, since the method [5] does not provide for a preliminary classification of the drawings. A simple introduction to the method [5] of the fingerprint pattern classifiers according to the method [2] compromises the biometric data used, since the classification [2] has a small number of degrees of freedom and involves open storage of the pattern classes in the template.

The claimed invention "A method for classifying fingerprint patterns in authentication of identity" is aimed at eliminating these shortcomings and solving the problem of reducing the average load time of the authentication server (means) without introducing any additional compromise of secrecy, which allows it to be used for authentication of human biometric data .

This goal is achieved by the fact that after multiple scanning of the fingerprint pattern, papillary lines are distinguished on each example pattern, then examples of patterns are fragmented into fragments and the average slope of the papillary lines of the fingerprint pattern is calculated on the selected fragment, then these mean slopes are stored and used as learning the neural network, and when authenticating a person’s identity according to his fingerprint pattern.

The technical result from the solution of the problem is achieved due to the fact that during the training it includes obtaining a random number N of length n bits, creating n artificial neurons, randomly connecting neuron inputs to memory cells with data on the slopes of papillary lines of fragments of examples of a classified fingerprint pattern, further training of neurons to produce a random number N upon presentation of examples of a classified pattern, then hashing a random number N and remembering the reference hash value, also the connections of the neural network and its training parameters, and during authentication it contains repeating the splitting of the scanned pattern into fragments, calculating the average slope of the fragment and applying the calculated value to the inputs of the neural network, then calculating the hash of the result at the output of the neural network and comparing it with the reference value, in this case, if the calculated hash value matches, the authentication of the person continues, and if the calculated hash and the standard do not match, the authentication procedure after the expiration of the allotment time for the authentication session ends. Moreover, during authentication, the papillary lines of the fingerprint pattern of the input biometric image are masked when the position of the fingerprint is displayed in the scanner window.

According to the proposed method, a random number N of n binary digits is obtained, which is the secret "class" of the authenticated biometric image (the recognizable fingerprint pattern is "Own"). All other numbers that do not coincide with N will be other classes of other Alien fingerprints.

After obtaining a random number N, a neural network is created with n neurons of the biometrics-code converter in accordance with GOST R 52633.5 [6], then this neural network is trained in accordance with GOST R 52633.5 [6] to produce a random number N when exposed to the inputs of neurons with the average values of the slopes on the selected fragments fingerprint drawing. After that, the value of the number N is hashed, the reference value of the hash function.

During authentication, the average slopes of the selected fragments of the fingerprint pattern are fed to the inputs of the trained neural network, then the response of the outputs of the neural network is hashed and compared with the hash reference. If they match, then they continue to authenticate the person, for example, by launching a complex algorithm for centering the entered fingerprint pattern by the position of a part of the special points in accordance with the patent description [5]. If the hash of the received output code did not match, then the user is informed of the fact of a mismatch and the authentication procedure is terminated after the time allotted for the authentication session has expired.

A feature of the proposed method is to preserve the confidentiality of the introduced biometric image, which is ensured by displaying only the position of the fingerprint pattern on the monitor screen, and the pattern of papillary lines is masked, for example, by filling in selected fragments of the pattern.

The stated technical task of reducing the cost of computing resources is performed by the fact that during authentication, a relatively simple task of classifying the presented fingerprint picture is solved. The much more difficult task of obtaining a complete access code is solved only if the fingerprint pattern is correctly classified. As a result, the authentication tool responds to the position of the finger and the general characteristics of the presented picture many times faster than the tool that implements the prototype method.

Compared with known methods, the proposed method according to claim 1 ensures that the classification system used by the means is kept secret, since the class numbers for different figures turn out to be random (they cannot be comprehended). For each specific fingerprint picture, “Own” actually creates its own unique classification of all other options for fingerprint patterns. In addition, the dimension of the number of classification classes increases sharply. If by the analogue method it is possible to distinguish no more than 7 classes (7 characteristic positions of delta fragments), then by the proposed class it is possible to isolate about 65536 classes, which corresponds to n = 16 (if a 16-bit code is used as a random number N). Such a significant increase in the number of possible classes is due to the fact that the proposed method uses not only information about the position of the delta fragments of the picture, but also a much larger amount of information about all the slopes of the fingerprint picture in all its selected fragments.

The method according to claim 2, in comparison with analog methods and the prototype method, eliminates the compromise of the input fingerprint pattern by intercepting the image of papillary lines on the monitor screen.

The figure 1 shows an example of crushing the entered fingerprint pattern into rectangular fragments, in each fragment the values of the average slope of the papillary lines are displayed.

The figure 2 shows the screen form of the authentication tool that implements the display of papillary lines of the entered fingerprint pattern in open mode.

The figure 3 shows the screen form of the authentication tool that implements the display of papillary lines of the entered fingerprint pattern in the "secret" mode, where the papillary lines are masked and only the darkened outline of the input pattern is displayed.

As an example of the implementation of the method proposed according to claim 1, we consider the simplest fragmentation of the input pattern of papillary lines into rectangular fragments, an example of which is shown in Figure 1. According to the proposed method, the average value of the slopes of the papillary lines is determined in each fragment of the input image (these data are shown in the corresponding rectangular fragments the analyzed figure in figure 1). A total of 58 fragments of the picture are obtained, the slopes of the lines in which vary from -80 to +85. The slope of each of the papillary lines is found as the ratio Δy / Δx.

Further, the proposed method creates a neural network consisting of 16 neurons (perceptrons), each of which is randomly connected to 27 data on the average value of the slopes of the lines of 58 selected fragments. Random connection of neuron inputs to half of the selected fragments was carried out in accordance with the recommendations of GOST R 52633.5 [6].

Then, according to the proposed method, a random 16-bit number N is created. After this, the first neuron is trained to give the state of the first bit of a random number N upon presentation of fingerprint examples “Own”. Training is conducted in accordance with GOST R 52633.5 [6].

Next, they train the second neuron so that upon presenting to its inputs the average values of the slopes of examples of papillary lines of “Ow” images, it would give the state of the second bit of the random code N. This learning operation is repeated for all 16 neurons, respectively, when presenting examples of the “Ow” image on the 16-bit N. code appears on the outputs of 16 neurons. If other data obtained from the images of Alien fingerprints are fed to the neuron inputs, then a random number other than the N. code appears on the outputs of the neural network.

After training the neural network, data on examples of Svoi images is erased according to the requirements of GOST R 52633.0 [4]. Also, according to general security requirements, the value of the N code is erased from memory, having previously determined the hash function of this number, for example, using MD5 through accessing the standard functions of Windows cryptoAPI. Further, only the reference hash value of the number N is stored.

When authenticating the user, the user presents his fingerprint pattern to the scanner, the data on the pattern is digitized and displayed on the monitor screen access restrictions. The entered image is divided into fragments, as shown in figure 1. Next, papillary lines are selected on the image and their slope is calculated, according to the fragmentation of the image, the average value of the slopes of the papillary lines for each of the fragments is determined and this data is fed to the input of the biometric code consisting of 16 trained neurons. The code is taken from the outputs of the neurons and the value of its hash (MD5) is determined, then the value of its hash is compared with the standard. If the value of the hash and its standard coincide, then the “yellow” color of the traffic light is displayed on the monitor screen (Figure 2), and the full authentication procedure is started taking into account both the inclination of the papillary lines and the location of the special points in the fingerprint image. The full authentication procedure can end positively if the presented fingerprint pattern matches the location of its features with the reference examples of the “Own” image. Then a full access code will be received and a “green” color of the traffic light will appear, informing the user about the passage of biometric authentication and the successful launch of the protocol for subsequent cryptographic authentication.

If the hash value does not match the standard, then the red light of the traffic light is displayed on the monitor screen. The user can change the position of his finger, focusing on the position of his image on the sensor (figure 2). The user has a feedback and he independently aligns the position of his finger on the sensitive area of the fingerprint scanner. The user aligns the position of the entered fingerprint pattern either until the indicator “yellow” appears, or until the end of the time allotted for biometric authentication.

The proposed method according to claim 2 of the claims is implemented by masking papillary lines in the entered image print. The outline of the entered pattern, filled with a darker color, is displayed. This allows you to hide from outsiders the features of your fingerprint pattern in the "secret" biometric authentication mode (figure 3). The possibility of intercepting an image in the form of a fingerprint image from the monitor screen by technical means of industrial espionage is excluded.

LITERATURE

1. Ball Rood et al. Biometrics Guide. / Ball Rood, Connel Jonathan X., Pancanti Sharat, Ratha Nalini K., Senior Andrew W. // Moscow: Technosphere, 2007 .-- 368 p. (top paragraph on page 48).

2. Statistical fingerprinting. Methodological problems / Ed. L.G. Edzhubova. - M .: Gorodets, 1999 .-- 184 p.

3. RF patent No.RU 2267159 C2, IPC ⁷ G06K 9/46 “Method and system for generating a set of access key, as well as for authenticating a person based on its biometric parameter”, priority from 05/09/2000 (claims 1-28) DE 10022570.5, application publication date 04/20/2004, published 12/21/2005, Bull. Number 36.

4. GOST R 52633.0-2006 “Information security. Information security technique. Requirements for highly reliable biometric authentication. ” Moscow: Standartinform, 2007

5. Patent RU 2355307, application No. 2007118896/09 (020584). Ivanova A.I., Funtikova D.A. “A method of authenticating a person using a fingerprint pattern and a device for its implementation”, priority dated May 21, 2007, published May 20, 2009, Bull. Number 14.

6. GOST R 52633.5-2011 "Information security. Information security technique. Automatic training of neural network converters biometrics-access code "Moscow: Standartinform, 2011

Claims (2)

1. A method for classifying fingerprint patterns in authentication of persons, consisting in the fact that the fingerprint pattern is repeatedly scanned and papillary lines are selected on each example pattern, then examples of patterns are fragmented into fragments and the average slope of the papillary lines of the fingerprint pattern is calculated according to the selected fragment, then remember these values of the average slopes, characterized in that it contains, during training, obtaining a random number N of length n bits, creating n artificial neurons, connecting randomly how to enter neurons to memory cells with data on the slopes of papillary lines of fragments of examples of a classified fingerprint pattern, then training neurons to produce a random number N when presenting examples of a classified pattern, then hashing a random number N and memorizing the reference hash value, as well as neural network and parameters of its training, during authentication, contains repeating the splitting of the scanned picture into fragments, calculating the average slope of the fragment and supplying the calculated about the values at the inputs of the neural network, then calculating the hash of the result at the output of the neural network and comparing it with the reference value, in this case, if the calculated hash value matches, the authentication continues, and if the calculated hash and the standard do not match, the authentication procedure after the expiration of the authentication session time ends. 2. The method according to claim 1, characterized in that the papillary lines of the fingerprint pattern of the input biometric image are masked when displaying the position of the fingerprint in the scanner window.

Images