Electronics

Biometric credit card remembers its user's signature

Biometric credit card remembers its user's signature
The biometric “on-card comparison” system compares a signature against one stored on the card (Photo: Fraunhofer IGD)
The biometric “on-card comparison” system compares a signature against one stored on the card (Photo: Fraunhofer IGD)
View 1 Image
The biometric “on-card comparison” system compares a signature against one stored on the card (Photo: Fraunhofer IGD)
1/1
The biometric “on-card comparison” system compares a signature against one stored on the card (Photo: Fraunhofer IGD)

If you watch a handwriting expert authenticate a signature, they will talk about echoes of the process of signing one's name – darker or lighter lines reveal pressure variations, the shape of the loops reveals the shaking of the hand, and the flow of the ink shows if the signature was laid down without hesitation. These echoes of the act of writing make a signature far more revealing than a simple squiggle on paper. Now researchers from the Fraunhofer Institute for Computer Graphics Research (IGD) have created a credit card that contains a thorough description of these signature traits, which can be used for instant authentication.

Every signature tells its own story, but tells it so much better if the signature is written on a pressure-sensitive touch screen or touch pad. The dynamic patterns of position (and hence velocity) and of pressure being available for each part of the signature provides a wealth of data which is specific to the signer. Simply put, you can't successfully imitate the dynamic aspects of a person's signature.

The new Fraunhofer credit card recognizes a customer by comparing their newly signed signature with an earlier signature stored on a chip within the card. This biometric “on-card comparison” adds security and adds convenience. Many store clerks are hardly overly conscientious when comparing signatures, and PIN codes can be lost or compromised, either through surreptitious observation or simply by carrying the codes in a different part of the same wallet.

In practice, the use of the system is quite simple. The customer signs on a touchpad when registering for a credit card, and the biometric features of this signature are stored directly onto the chip in the card.

Then, when making a purchase, the cardholder runs the card through a scanner as usual. The customer then signs for the purchase on a writing pad using an electronic pen. The stored and signed signatures are then compared and if this comparison reveals a satisfactory level of similarity, the transaction is authorized. A PIN could then be used as an extra layer of security for large transactions.

Of course, no security procedure is without flaws – the goal is to make it difficult to take advantage of the flaws. The on-card comparison system is most likely to have a problem with false negatives – a feature shared by most biometric-based security systems. While the hardware side of the system is simple, the challenge lies in the algorithms used to make authentication decisions. Historically, it has been difficult to get beyond about five percent false positives and 10 percent false negatives. Signatures do vary, so a resilient comparison system is required that won't simply reject any variations.

Another difficulty is that signature pads often feel extremely unnatural to write on – I can assure you that some of my electronic signatures would not pass comparison with my signature of record!

The researchers introduce a prototype of the system at CeBIT 2013 in Hannover, Germany, this week.

Source: Fraunhofer

3 comments
3 comments
Walt Stawicki
what is the level of the pass / nopass "similarity?" how does the process deal with those many signature tablets that are miscallibrated? you too have probably signed one and looked and exclaimed : " is That Really MY signature!!!" these machines are the graphic equivalent of speaking into a mic and listening to a speaker with a delay. precission is near impossible. so, have they worked out this bug? do they think about itas noted.the problem is mostly false rejection of legit trsnsactions. that is to say i will be inconvenienced more than protected. in a world where banksters seem undisturbed enough to eat frauds and not seek prosecution but i am held harmless for those frauds....where is the market?
Joel Detrow
I almost can't write at all when my fingers are cold. This kind of system would make it impossible for me to use my card in a cold environment, because a signature under such conditions would have completely different dynamics.
Shawn Woolard
This article is so informative! Biometrics is really amazing! Thanks for sharing!