Designing ECG-based physical unclonable function for security of wearable devices

• Published in: Conference proceedings (IEEE Engineering in Medicine and Biology Society. Conf.) Vol. 2017; pp. 3509 - 3512
• Main Authors: Shihui Yin, Chisung Bae, Sang Joon Kim, Jae-sun Seo
• Format: Conference Proceeding Journal Article
• Language: English
• Published: United States IEEE 01.07.2017
• Subjects: Artificial neural networks; Authentication; Band-pass filters; Cost function; Electrocardiography; Feature extraction; Finite impulse response filters
• ISSN: 1557-170X
• DOI: 10.1109/EMBC.2017.8037613

As a plethora of wearable devices are being introduced, significant concerns exist on the privacy and security of personal data stored on these devices. Expanding on recent works of using electrocardiogram (ECG) as a modality for biometric authentication, in this work, we investigate the possibility of using personal ECG signals as the individually unique source for physical unclonable function (PUF), which eventually can be used as the key for encryption and decryption engines. We present new signal processing and machine learning algorithms that learn and extract maximally different ECG features for different individuals and minimally different ECG features for the same individual over time. Experimental results with a large 741-subject in-house ECG database show that the distributions of the intra-subject (same person) Hamming distance of extracted ECG features and the inter-subject Hamming distance have minimal overlap. 256-b random numbers generated from the ECG features of 648 (out of 741) subjects pass the NIST randomness tests.