dynamic signature verification with template protection using ... - ATVS

More documents

Recommendations

Info

Fig. 1. Architecture of the helper data system, adapted from [5].formation to a potential attacker. When the pattern Y emergesfrom the same source than X (e.g., a genuine biometric vericationclaim), Y can be seen as a noisy version of X. TheHDS allows the correction of a given number of errors in thetest pattern, by using a binary BCH error correcting code [8].In Fig. 1 we show the architecture of the helper data system,which is divided into three phases: training, enrollment,and verication.2.1. TrainingIn the training stage, a global model is built with statistics oftraining data from real users. Given a set of training realvaluedfeature vectors T = {t i }, i = 1,...,N T ,ofdimensionM, the mean feature vector t is computed as t =(1/N T ) ∑ N Ti=1 t i.2.2. EnrollmentThe enrollment stage consists of a series of steps that producea protected template with its associated helper data. First, theN E enrollment feature vectors in the set X = {x i } are averagedextracting the mean feature vector x. Then each componentof x is binarized using each corresponding componentof t as the threshold, reaching the binary vector x B . Then, aselection of the most reliable features for the given enrollmentis performed (details in Sect. 3.2), producing a reliable binaryfeature vector x R ,ofdimensionL ≤ M. The index of theselected features are stored as the helper feature h 1 .On the other hand, a random binary string s is generatedand encoded using an Error Correcting Code (ECC) such asthe binary BCH code [8]. The encoded string c is XOR-edwith x R , producing the helper feature h 2 .Finally, the random string s is hashed using a cryptographichashing function, such as SHA-256, and the resultis stored as the helper feature h 3 = h(s).2.3. VericationIn the verication stage, N V feature vectors from the vericationset Y = {y i } are averaged into a mean feature vectory (note that the usual case in biometric verication willbe N V =1). A binarized feature vector is produced as inthe enrollment stage, and then it is reduced using the selectionstored in h 1 , producing y R . This reliable binary featurevector is then XOR-ed with h 2 , and the result c ′ is decodedusing the ECC. The decoded string s ′ is transformed using thecryptographic one-way transform used in the enrollment. Thecomparison between this hashed value h(s ′ ) and h 3 = h(s)determines the nal accept/reject decision of the system.3. SECURE DYNAMIC SIGNATURE TEMPLATESWe present a system for template protection in dynamic signatureverication based on the helper data system presentedin Sect. 2, using global feature vectors based on statistical informationof the signature.3.1. Feature extractionWe use an on-line signature representation based on globalfeatures [7]. In particular, a 100-dimensional global featurevector is extracted from each on-line signature [9], includingfeatures based on timing information, number of strokes, geometry,pen trajectory, pressure over time, etc.3.2. Feature selectionAt the enrollment stage, the reliability measure proposed in [5]is used in order to select the most reliable features. For each1714
40MCYT DB, 330 signers, UNPROTECTED templates40MCYT DB, 330 signers, PROTECTED templatesmahal100 skilledprotected15 skilled35bin100 skilledbin63 skilled35protected31 skilledprotected63 skilled30mahal100 randombin100 random30protected15 randomprotected31 random25bin63 random25protected63 randomEER (%)20EER (%)20151510105501 2 3 4 5 6 7 8 9 10 11 12 13 14 15Number of enrollment signatures01 2 3 4 5 6 7 8 9 10 11 12 13 14 15Number of enrollment signatures(a)(b)10 0 MCYT DB, 330 signers, protected6310 0 MCYT DB, 330 signers, 7 enrollment signatures1 sigs FRRFAR, FRR10 110 23 sigs FRR7 sigs FRR1 sigs FAR skilled3 sigs FAR skilled7 sigs FAR skilled1 sigs FAR random3 sigs FAR randomFAR, FRR10 110 231protected FRR63protected FRR31protected FAR skilled63protected FAR skilled31protected FAR random63protected FAR random7 sigs FAR random10 30 0.1 0.2 0.3 0.4 0.5 0.6 0.7 0.8 0.9 1Fractional Hamming Distance(c)10 30 0.1 0.2 0.3 0.4 0.5 0.6 0.7 0.8 0.9 1Fractional Hamming Distance(d)Fig. 2. Performance results of the template protection system for dynamic signature verication.feature, the reliability is computed as:r j = |¯t j − ¯x j|σ jfor all the M available features (100 in our case), where ¯t jis the training value of the j-th feature, and ¯x j and σ j arethe mean and the standard deviation of the j-th feature of thesignatures presented at enrollment, respectively.4. EXPERIMENTS4.1. Database and experimental protocolThe MCYT on-line signature corpus is used for the experiments[10]. This database contains 330 users with 25 genuinesignatures and 25 skilled forgeries per user, captured in fouracquisition sites. Forgers were asked to imitate after observingthe static image of the signatures to imitate, tried to copythem at least 10 times, and then they wrote the forgeries naturallywithout breaks or slowdowns.For the experiments presented here, we have followed a 3-fold cross-validation strategy. The database has been dividedinto two sets: a training set, formed by one third of the users(users 1, 4, 7, ...; 2, 5, 8, ...; and 3, 6, 9, ... for the three iterationsof the cross-validation procedure, respectively), andan evaluation set, with the remaining ones. For each userin the evaluation, the enrollment has been conducted using1 ≤ N ≤ 15 genuine signatures. False Rejection (FRR)and False Acceptance Rates (FAR) for 1-signature vericationwere obtained with the last 10 genuine signatures (FRR),the 25 skilled forgeries (FAR skilled forgeries) and one genuinesignature from the rest of the users avoiding symmetricmatches (FAR random forgeries). Equal Error Rates (EER)are also reported in some experiments [7].Although the nal accept/reject decision of the system isbased on the comparison between h(s) and h(s ′ ), we generatethe matching scores for our experiments using the fractionalHamming distance (FHD) between x R and y R ,whichhighly simplies the experiments. This can been done becauseh(s) =h(s ′ ) iff s = s ′ iff FHD(c, c ′ ) ≤ n, wheren is1715
Page 1: DYNAMIC SIGNATURE VERIFICATION WITH

dynamic signature verification with template protection using ... - ATVS

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?