Abstract
It is possible for malicious actors to register their fingerprints on an unlocked mobile device (e.g., left unlocked by the user, or unlocked based on location or other settings) to gain the ability to unlock the device at any future time. This disclosure describes techniques for secure fingerprint enrollment that utilize device capabilities to perform substantially simultaneous fingerprint sensing. Per the techniques, when registering a fingerprint (or any other biometric such as face) beyond the first registered fingerprint, the user is required to provide additional authentication, even when the device is unlocked. The additional authentication is provided by a previously registered fingerprint. In effect, a user attempting to register a fingerprint is required to provide two fingerprints substantially simultaneously - a pre-registered fingerprint for authentication, and a second new fingerprint that is to be enrolled for authentication.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Recommended Citation
Eltoft, Justin, "Malicious Fingerprint Enrollment Prevention Using Full-screen Fingerprint Sensing", Technical Disclosure Commons, (August 06, 2024)
https://www.tdcommons.org/dpubs_series/7262