Towards More Secure Biometric Readers for Effective Digital Forensic Investigation
This paper investigates the effect of common network attacks on the performance, and security of several biometric readers. Experiments are conducted using Denial of Service attacks (DoSs) and the ARP cache poisoning attack. The experiments show that the tested biometric readers are vulnerable to DoS attacks, and their recognition performance is significantly affected after launching the attacks. However, the experiments show that the tested biometric readers are secure from the ARP cache poisoning attack. This work demonstrates that biometric readers are easy targets for malicious network users, lack basic security mechanisms, and are vulnerable to common attacks. The confidentiality, and integrity of the log files in the biometric readers, could be compromised with such attacks. It then becomes important to study these attacks in order to find flags that could aid in a network forensic investigation of a biometric device.
KeywordsFingerprint reader Iris reader Biometrics scanners Denial of Service attack (DoS) forensic investigation Firewall Intrusion Detection/Prevention Systems (IDS/IPS)
Unable to display preview. Download preview PDF.
- 1.Vacca, J.: Biometric Technologies and Verification Systems. Butterworth-Heinemann Publisher, Butterworths (2007) ISBN-10: 0750679670Google Scholar
- 2.Wayman, J., Jain, A., Maltoni, D., Maio, D.: Biometric Systems: Technology Design and Performance Evaluation. Springer Publisher, Heidelberg (2004) ISBN-10: 1852335963Google Scholar
- 3.Chirillo, J., Blaul, S.: Implementing Biometric Security. Wiley Publisher, Chichester (2003) ISBN-10: 0764525026Google Scholar
- 4.Panasonic Iris reader BM-ET330, Specification Sheet, ftp://ftp.panasonic.com/pub/Panasonic/cctv/SpecSheets/BM-ET330.pdf
- 5.Nitgen Fingerprint reader NAC 3000, Specification Sheet, http://www.nitgen.com
- 7.The MIT Technology Review in the Emerging Technologies That Will Change the World, Ten emerging technologies that will change the world (January/February 2001), http://www.techreview.com
- 9.Tony, M.: Biometric authentication in the real world, Centre for Mathematics and Scientific Computing, National Physical Laboratory, UK (Online) (2001), http://www.npl.co.uk/upload/pdf/biometrics_psrevho.pdf
- 11.Trabelsi, Z., Shuaib, K.: A Novel Man-in-the-Middle Intrusion Detection Scheme for Switched LANs. The International Journal of Computers and Applications 3(3) (2008)Google Scholar
- 12.FrameIP Packet Generator, http://www.FrameIP.com
- 13.SYN flood, http://www.FrameIP.com
- 14.Al-Hemairy, M., Trabelsi, Z., Amin, S.: Sniffing Attacks Prevention/Detection Techniques in LAN networks & the effect on Biometric Technology. A thesis submitted to The British University in Dubai, School of Informatics (May 2010)Google Scholar