TY - JOUR
T1 - Pistis
T2 - Replay Attack and Liveness Detection for Gait-Based User Authentication System on Wearable Devices Using Vibration
AU - Song, Wei
AU - Jia, Hong
AU - Wang, Min
AU - Wu, Yuezhong
AU - Xue, Wanli
AU - Chou, Chun Tung
AU - Hu, Jiankun
AU - Hu, Wen
N1 - Funding Information:
This work was supported by the Australian Research Council under Linkage Grant LP180100663.
Publisher Copyright:
© 2023 IEEE.
PY - 2022/12
Y1 - 2022/12
N2 - Wearable devices-based biometrics has become mainstream in the biometric domain, especially in mobile computing, due to its convenience, flexibility, and potentially high user acceptance. Among various modalities, wearable devices-based gait recognition has been recognized as an effective user authentication method and employed in various applications, such as automated entry systems for home, school, work, vehicles, and automated ticket payment/validation for public transport. However, how secure wearable gait remains an open research question. In this study, we conduct a comprehensive security analysis of the wearable gait. Then, we demonstrate that gait itself is not robust against some attacking methods, such as spoofing or forgery. Therefore, we argue that an anti-spoofing mechanism is important for enhancing the security of wearable gait biometric systems. To this end, we proposed a novel authentication protocol called Pistis that embedded gait biometrics and a liveness detection mechanism that is aiming to detect various attacks of gait authentication systems. Our extensive experiments based on 50 subjects demonstrate that Pistis is effective in liveness detection and authentication performance enhancement, providing 100% accuracy for human and nonhuman detection, and 99.53% accuracy for user authentication. Pistis can be used as a liveness detection method for wearable devices-based biometrics, significantly for wearable gait.
AB - Wearable devices-based biometrics has become mainstream in the biometric domain, especially in mobile computing, due to its convenience, flexibility, and potentially high user acceptance. Among various modalities, wearable devices-based gait recognition has been recognized as an effective user authentication method and employed in various applications, such as automated entry systems for home, school, work, vehicles, and automated ticket payment/validation for public transport. However, how secure wearable gait remains an open research question. In this study, we conduct a comprehensive security analysis of the wearable gait. Then, we demonstrate that gait itself is not robust against some attacking methods, such as spoofing or forgery. Therefore, we argue that an anti-spoofing mechanism is important for enhancing the security of wearable gait biometric systems. To this end, we proposed a novel authentication protocol called Pistis that embedded gait biometrics and a liveness detection mechanism that is aiming to detect various attacks of gait authentication systems. Our extensive experiments based on 50 subjects demonstrate that Pistis is effective in liveness detection and authentication performance enhancement, providing 100% accuracy for human and nonhuman detection, and 99.53% accuracy for user authentication. Pistis can be used as a liveness detection method for wearable devices-based biometrics, significantly for wearable gait.
KW - Biometric authentication
KW - gait
KW - liveness detection
KW - wearable device security
UR - http://www.scopus.com/inward/record.url?scp=85146255754&partnerID=8YFLogxK
U2 - 10.1109/JIOT.2022.3231381
DO - 10.1109/JIOT.2022.3231381
M3 - Article
AN - SCOPUS:85146255754
SN - 2327-4662
VL - 10
SP - 8155
EP - 8171
JO - IEEE Internet of Things Journal
JF - IEEE Internet of Things Journal
IS - 9
ER -