Abstract
Existing biometric authentication systems may face limitations in securely managing critical data and establishing robust communication between diverse hardware components. Implementations disclosed herein include a shared-key-based authentication protocol and a fingerprint, secure operating system (OS) application. In some implementations, the system establishes a static shared key, potentially via a cryptographic handshake, followed by the derivation of a per-boot shared session key. This enables secure, authenticated data exchange, such as the loading of an encrypted encryption key seed. Subsequent interactions, including enrollment and authentication sessions, may utilize origin verification, tampering protection, and encryption, e.g., using keyed hash functions and/or authenticated encryption. This architecture aims to enhance the overall security and reliability of biometric authentication by providing robust protection against various threats, including man-in-the-middle attacks and data tampering.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Recommended Citation
Lin, Zi and Pronin, Andrey Vadimovich, "Shared-Key Biometrics Authentication Protocol", Technical Disclosure Commons, (June 12, 2025)
https://www.tdcommons.org/dpubs_series/8229