Secure Access Control over Wide Area Network

Crimes involving illegal access to accounts is simpler than ever based on the widespread password-based approach, which is proven to be vulnerable and no longer user-friendly. Identity theft and impersonation to steal money from personal accounts is one of the most critical threat that directly concern economic development. The SWAN project will research and develop countermeasures and innovative technologies which lead to a usable, economic, and privacy-preserving access control platform based on biometrics. Our research will allow the authentication of banking transactions and secure access to services over broad-band and mobile networks, using biometric identifiers. This can be extended to other eServices (e.g eHealth). Biometric references will be stored, controlled and verified locally based on pre-shared secret, which can be used to seal and authenticate transaction data. This overcomes the need of centralized storage of biometric data. Furthermore smartphones will act as a hardware tokens to which the additional functionalities will be integrated to capture the biometric modalities like (2D face, fingerprint, voice and eye). Processes are designed to serve scalable security needs. The biometric authentication will be optimised in the transaction protocol design with guaranteed privacy compliant. Furthermore, attention will be given to existing and emerging standards and technologies.

Application Area - Security and risk management, Biometric Person Recognition
Bankenverband, Idiap Research Institute, MORPHO, UNIVERSITETET I OSLO, Zwipe AS
The research Council of Norway
Jan 01, 2016
Dec 31, 2019