| The development of cloud computing and Internet technology promotes the wide application of mobile cloud computing.Mobile cloud computing enriches and facilitates people's production and daily life,but it also has security problems that can not be ignored.Identity authentication scheme plays an important role in ensuring the security of mobile cloud environment,so it has widely attracted the research interest of scholars.Among them,biometric authentication based on fingerprint,with its convenience,uniqueness and other characteristics,is gradually replacing the traditional identity authentication,representing the future development direction of this field.However,biometric authentication faces many difficulties in the mobile cloud environment.In mobile cloud environment,there are dual security threats from mobile terminal and cloud,and privacy leakage of user biometric information is more likely to occur,which may bring immeasurable losses to users.Therefore,the protection of biometric privacy has become the key to biometric authentication in mobile cloud environment.To design an identity authentication scheme that supports privacy preserving in mobile cloud environment,it is necessary not only to ensure the security of biometric information in the cloud,but also to protect biometric information from the threat of malicious software in mobile terminals.Aiming at the above problems,this paper designed a fingerprint authentication scheme to support privacy preserving in the mobile cloud environment,and realized the system prototype of the scheme to protect the security of users' biometric privacy information in the cloud and mobile terminals.we summarize the contributions as follows:(1)Aiming at the binding problem between users and devices in the existing security schemes,this paper proposes a system architecture supporting privacy preserving in mobile cloud environment.The security template generated by the scheme is stored and matched in the cloud to remove the binding between users and devices,and improve the convenience of users.(2)This paper designs a privacy protection method for fingerprint authentication based on Trust Zone,and demonstrates the security of the system.A fingerprint template protection scheme based on orthogonal decomposition is proposed to protect the security of biometrics in the cloud environment.The Trust Zone security technology is used to design trusted applications and isolate sensitive operations such as orthogonal decomposition algorithm to ensure the security of users' biometrics in mobile terminals.(3)The system prototype is implemented and the feasibility of the scheme is verified.Finally,through theoretical analysis and experiments,the accuracy of authentication,the efficiency of the system and the security of privacy information are proved,which shows that the proposed scheme can provide secure,efficient and accurate fingerprint authentication service for mobile cloud environment. |
PDF Full Text Request