当前位置:首页 > 报告详情

Jason Prince(澳大利亚内政部):攻击检测的运营经验.pdf

上传人: 芦苇 编号:651654 2025-05-01 17页 6.31MB

1、Operational Experiences with Biometric Attack DetectionJason PrinceActing Director,Digital Capability Branch,Immigration Operations Australian Department of Home Affairs.UNOFFICIALDepartment of Home Affairs|2The Australian ETA App is used to submit Electronic Travel Authority(ETA)applications using

2、an applicants own mobile device.It is supported on both iOS or Android platforms for this specific visa category.Image Quality and Liveness Detection using the ETA appAll imagery is recorded as stills,even if liveness uses video on device:Biometrics-live capture(up to 3 frames)+chip image(if availab

3、le)+biographical page including passport photograph ETA application liveness detection mechanism and human review of riskier applicants are part of our normal workflow,as well as dip sample quality assurance analysis of data not normally reviewed above and below thresholdsIn most cases we suspect th

4、e breach of the policy for live capture was done by travel/immigration agents assisting and profiting off facilitating electronic visas.Operational experiences with mobile devices and remote identity verificationOperational Experiences with Biometric Attack Detection-Jason PrinceDepartment of Home A

5、ffairs|3ISO/IEC 20059 Methodologies to evaluate the resistance of biometric recognition systems to morphing attacks(currently being drafted)Morph merging two or more facial images to match with all donorsISO/IEC 30107:Presentation Attack Detection(PAD)series of standards for testing and reporting 30

6、107-3 Annexure A Classification of Attack TypesArtificial Printed photos,images,videos,or mask of a face Partial Artificial partial prosthetics,make-upLifeless/Altered/Coerced/ConformantStatic/DynamicFIDO(Fast Identity Online)Alliance,Biometric Requirements/Appendix A”Triage of Presentation Attacks

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文是澳大利亚内政部数字能力分支首席官员Jason Prince关于生物特征攻击检测的演讲。主要内容包括:1) 电子旅行授权(ETA)应用程序通过申请人自己的移动设备提交ETA申请,支持iOS和Android平台;2) 图像质量和生活检测使用ETA应用程序,包括生物特征活捕(最多3帧) +芯片图像(如有) +包括护照照片的生物信息页;3) ETA应用程序中的生活检测机制和风险较高申请人的人工审查是我们正常工作流程的一部分;4) 怀疑政策违规的活捕通常是由协助并从电子签证中获利的旅行/移民代理人完成的;5) 讨论了ISO/IEC正在制定的评估生物特征识别系统对变形攻击抵抗力的方法论以及FIDO联盟的生物特征要求等标准;6) 描述了几种攻击类型和攻击手段,包括人工合成图像、部分人工合成图像、无生命的/改变的/被迫的/顺从的图像、静态/动态图像等;7) 分析了使用软件模拟器(Android)和旅行者面部被合成为单个捐赠者头部的更复杂攻击。
"ETA app如何确保生物识别安全?" "如何应对生物识别攻击和伪造技术?" "澳大利亚内政部如何防范数字身份欺诈?"
客服
商务合作
小程序
服务号
折叠