Secure Bio-Cryptographic Authentication System for Cardless Automated Teller Machines
Subject Areas : Computer Networks and Distributed SystemsOlayemi Olaniyi 1 * , Ameh Ameh 2 , Lukman Ajao 3 , Omolara Lawal 4
1 - Department of Computer Engineering, Federal
University of Technology, Minna, Niger State, Nigeria
2 - Electrical Electronics Engineering Department Federal University of Technology,Minna,Nigeria
3 - Department of Computer Engineering,Federal University of Technology,Minna.Nigeria
4 - Department of Computer Engineering,Federal University of Technology,Minna,Nigeria
Keywords: Security, Attack, Authentication, Confidentiality, Fingerprint,
Abstract :
Security is a vital issue in the usage of Automated Teller Machine (ATM) for cash, cashless and many off the counter banking transactions. Weaknesses in the use of ATM machine could not only lead to loss of customer’s data confidentiality and integrity but also breach in the verification of user’s authentication. Several challenges are associated with the use of ATM smart card such as: card cloning, card skimming, cost of issuance and maintenance. In this paper, we present secure bio-cryptographic authentication system for cardless ATM using enhanced fingerprint biometrics trait and encrypted Personal Identification Number (PIN). Fingerprint biometrics is used to provide automatic identification/verification of a legitimate customer based on unique feature possessed by the customer. Log-Gabor filtering algorithm was used for enhancing low image quality and effect of noise on feature extracted from customer’s fingerprint minutiae. Truncated SHA 512/256 hash algorithm was used to secure the integrity and confidentiality of the PIN from sniffers and possible adversary within the channel of remote ATM banking transactions. Performance evaluation was carried out using False Acceptance Rate (FAR), False Rejection Rate (FRR) metrics and Collision Attack was performed on the Truncated SHA-512/256 hashed data (PIN). Results of the system performance shows Genuine Acceptance Rate (1-FRR) of 97.5% to 100%, Equal Error Rate of 0.0015% and Collision Attack carried out on the encrypted PIN message digest gave an unsuccessful attack. Therefore, the results of performance evaluation show the applicability of the developed system for secure cardless ATM transaction
[1] Rajendran, K. A., Jacob, E. and Narvekar, C., 2015. ATM security using fingerprint authentication and OTP, International Journal of Current Engineering and Technology, 5(2), pp. 1157–1159.
[2] Ameh, A. I., Olaniyi, O. M. and Adewale, O. S., 2016. Securing cardless automated teller machine transactions using bimodal authentication system, Journal of Applied Security Research, 11(4), pp. 469-488.
[3] Alebiosu, M. I., Yekini, N. N., Adebari, F. A. and Oloyede, A. O., 2015. Card-less electronic automated teller machine (EATM) with biometric authentication, International Journal of Engineering Trends and Technology, 30(1), pp. 99–105.
[4] Kanagalakshmi, K. and Chandra, E., 2014. Log-gabor orientation with run-length code-based fingerprint feature extraction approach. Global Journal of Computer Science and Technology Graphics & Vision, 14(4), pp. 975-4172.
[5] Jain, A., Prabhakar, S. and Hong, L., 1999. A multichannel approach to fingerprint classification, IEEE Transactions on Patt. Anal. Mach. Intel, 21(4), pp. 348-359.
[6] Ravikumar, S., Vaidyanathan, S., Thamotharan, S. and Ramakrishan, S., 2013. A new business model for ATM transaction security using fingerprint recognition, International Journal of Engineering and Technology (IJET), 5(3), pp. 2041-2047.
[7] Padmapriya, V. and Prakasam, S., 2013. Enhancing ATM security using fingerprint and GSM technology, International Journal of Computer Applications, 80(16), pp. 43-46.
[8] Oruh, J. N., 2014. Three-factor authentication for automated teller machine system, International Journal of Computer Science and Information Technology & Security (IJCSITS), 4(6), pp. 160–166.
[9] Awotunde, J. B., Jimoh, R. G. and Matiluko, O. E., 2015. Secure automated teller machine using fingerprint authentication and short-code message in a cashless society. Proceedings of the 12th International Conference of Nigeria Computer Society, pp. 99–110.
[10] Nischarkumar, H. and Sharath, K. R., 2016. Card less ATM cash withdrawal: a simple and alternate approach, International Journal of Computer Science and Information Technologies (IJCSIT), 7(1), pp. 126–128.
[11] Ganesh, K. S. and Bulamurugan, C. R., 2018. Enhancement of smartness and security in atm by global system for mobile communications, Journal of Engineering Science and Technology, 13(7), pp. 2065-2083.
[12] Dobraunig. C., Eichlseder M., and Mendel, F., Analysis of SHA-512/224 and SHA-512/256, 2015. In Iwata T., Cheon J. (eds) Advances in Cryptology – ASIACRYPT 2015, Lecture Notes in Computer Science, 9453. Springer, Berlin, Heidelberg.
[13] Feng, Z. and Xiaoou, T. Preprocessing and postprocessing for skeleton-based fingerprint minutiae extraction, Pattern Recognition Letters, 40, pp. 1270-1281.
[14] Haralick, R. M. and Linda, S.G., 1992, Computer and robot vision, Addison- Wesley, pp. 28-48.1
[15] More, M., Kankal, S.,Kharat, A. &Adhau R (2018). Cardless Automatic Teller Machines (ATM) Biometric System Design with Human Fingerprints. International Journal Advance Engineering and Research Development 5(5) pp. 392-399.