Design And Application Of The Biometrics-Based Authentication System

Authentication technology is an effective means to guarantee the authenticity of communication entities,and is also one of the important technologies for realizing communication security.Biometrics-based authentication uses the unique biometrics features of people to verify the identity of users,and has the advantage of not easy to lose or forgery.Therefore,biometrics-based authentication is safe and reliable.On the other hand,with the rapid development of Internet and information technology,the network is becoming more and more popular and more and more servers provide their services to users who might distribute over the world through the Internet,which forms a multi-server environment.Due to the openness and freedom of the network,the information is vulnerable to all kinds of security threats,such as unauthorized access.Therefore,the research of authentication technology in multi-server environment has practical application value for the establishment and implementation of a more secure and efficient communication network environment.Combined with biometric-based authentication,we study authentication technology in multi-server environment.The main contents are as follows:Firstly,we analyze the biometric-based authentication scheme in multi-server environment proposed by Odelu et al..Through the security analysis and effectiveness analysis of the scheme,we point out that the scheme is vulnerable to offline password guessing attack and does not have three-factor(i.e.password,smart card and biometrics)security.Secondly,we propose two improved shemes to eliminate the security flaws in Odelu et al.'s sheme.We apply fuzzy verifier in two improved shemes.Since the fuzzy verifier is fuzzy,there is no other way than launching an online password guessing attack to guess the right password,while online password guessing can be effectively thwarted in the mutual authentication phase of two schemes.Therefore,two improved shemes can resist offline password guessing attack.Combined with the Chebyshev chaotic map-based cryptography,we proposed the second improved scheme based on the first improved scheme.Since the Chebyshev chaotic map-based encryption algorithm is more efficient than the elliptic curve encryption algorithm,the second improved scheme has better computational efficiency.Finally,we propose a secure authentication scheme for telecare medicine information system based on the second improved scheme.