<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE article  PUBLIC "-//NLM//DTD Journal Publishing DTD v3.0 20080202//EN" "http://dtd.nlm.nih.gov/publishing/3.0/journalpublishing3.dtd"><article xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" dtd-version="3.0" xml:lang="en" article-type="research article"><front><journal-meta><journal-id journal-id-type="publisher-id">JIS</journal-id><journal-title-group><journal-title>Journal of Information Security</journal-title></journal-title-group><issn pub-type="epub">2153-1234</issn><publisher><publisher-name>Scientific Research Publishing</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.4236/jis.2017.83016</article-id><article-id pub-id-type="publisher-id">JIS-77757</article-id><article-categories><subj-group subj-group-type="heading"><subject>Articles</subject></subj-group><subj-group subj-group-type="Discipline-v2"><subject>Computer Science&amp;Communications</subject></subj-group></article-categories><title-group><article-title>
 
 
  On the Use of Benford’s Law to Detect JPEG Biometric Data Tampering
 
</article-title></title-group><contrib-group><contrib contrib-type="author" xlink:type="simple"><name name-style="western"><surname>Iorliam</surname><given-names>Aamo</given-names></name><xref ref-type="aff" rid="aff1"><sup>1</sup></xref><xref ref-type="corresp" rid="cor1"><sup>*</sup></xref></contrib><contrib contrib-type="author" xlink:type="simple"><name name-style="western"><surname>Shangbum</surname><given-names>F. Caleb</given-names></name><xref ref-type="aff" rid="aff2"><sup>2</sup></xref></contrib></contrib-group><aff id="aff2"><addr-line>Department of Computer Science, Nigerian Army Institute of Technology &amp;amp; Environmental Studies, Makurdi, Nigeria</addr-line></aff><aff id="aff1"><addr-line>Department of Mathematics/Computer Science, Benue State University, Makurdi, Nigeria</addr-line></aff><author-notes><corresp id="cor1">* E-mail:<email>aamoiorliam@gmail.com(IA)</email>;</corresp></author-notes><pub-date pub-type="epub"><day>06</day><month>07</month><year>2017</year></pub-date><volume>08</volume><issue>03</issue><fpage>240</fpage><lpage>256</lpage><history><date date-type="received"><day>June</day>	<month>20,</month>	<year>2017</year></date><date date-type="rev-recd"><day>Accepted:</day>	<month>July</month>	<year>17,</year>	</date><date date-type="accepted"><day>July</day>	<month>20,</month>	<year>2017</year></date></history><permissions><copyright-statement>&#169; Copyright  2014 by authors and Scientific Research Publishing Inc. </copyright-statement><copyright-year>2014</copyright-year><license><license-p>This work is licensed under the Creative Commons Attribution International License (CC BY). http://creativecommons.org/licenses/by/4.0/</license-p></license></permissions><abstract><p>
 
 
  Tampering of biometric data has attracted a great deal of attention recently. Furthermore, there could be an intentional or accidental use of a particular biometric sample instead of another for a particular application. Therefore, there exists a need to propose a method to detect data tampering, as well as differentiate biometric samples in cases of intentional or accidental use for a different application. In this paper, fingerprint image tampering is studied. Furthermore, optically acquired fingerprints, synthetically generated fingerprints and contact-less acquired fingerprints are studied for separation purposes using the Benford’s law divergence metric. Benford’s law has shown in literature to be very effective in detecting tampering of natural images. In this paper, the Benford’s law features with support vector machine are proposed for the detection of malicious tampering of JPEG fingerprint images. This method is aimed at protecting against insider attackers and hackers. This proposed method detected tampering effectively, with Equal Error Rate (EER) of 2.08%. Again, the experimental results illustrate that, optically acquired fingerprints, synthetically generated fingerprints and contact-less acquired fingerprints can be separated by the proposed method effectively.
 
</p></abstract><kwd-group><kwd>Benford’s Law</kwd><kwd> Fingerprints</kwd><kwd> JPEG Coefficients</kwd><kwd> Tampering</kwd></kwd-group></article-meta></front><body><sec id="s1"><title>1. Introduction</title><sec id="s1_1"><title>1.1. Motivation for Tampered Biometric Modalities</title><p>Digital image manipulation is very common recently for different reasons such as digital image frauds, which include fingerprints replacement to doctor a fingerprint image [<xref ref-type="bibr" rid="scirp.77757-ref1">1</xref>] . Digital image tampering can be carried out easily with the help of digital processing tools such as Photoshop which are rampantly available [<xref ref-type="bibr" rid="scirp.77757-ref2">2</xref>] .</p><p>Manipulation of digital images include: 1) copy-paste manipulation which has an inserted region that is uncompressed, but the composite image is saved in a Joint Photographic Expert Group (JPEG) format; 2) copy-paste manipulation which has an inserted region that is compressed and the composite image is saved in JPEG format; and 3) inpainting manipulation of JPEG images [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] . Biometric databases contain biometric modalities such as face images, fingerprint images, and iris images amongst others [<xref ref-type="bibr" rid="scirp.77757-ref4">4</xref>] . Most of these modalities are digitally captured and saved in JPEG format [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] . These databases are often stored for backup purposes whereas a database of the derived features is used for operational purposes. However, it is not inconceivable that insider attackers have access to the backup copy of the database and carryout their manipulation. The field of biometrics has two major concerns which are sensor tampering [<xref ref-type="bibr" rid="scirp.77757-ref6">6</xref>] and database tampering [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] . Sensor tampering, which is also referred to as presentation attack [<xref ref-type="bibr" rid="scirp.77757-ref7">7</xref>] includes replay-attack and print-attack, which are all spoofing approaches to fool biometric sensors [<xref ref-type="bibr" rid="scirp.77757-ref6">6</xref>] . Database tampering includes splicing, copy/paste, inpainting and some pre-processing effects carried out maliciously on an authentic image [<xref ref-type="bibr" rid="scirp.77757-ref8">8</xref>] . Biometric systems are exposed to several attacks, but considering digital tampering, Ratha et al. [<xref ref-type="bibr" rid="scirp.77757-ref9">9</xref>] noted that, templates stored in the database maybe modified or removed, or new templates may be introduced in the database. This could cause authorization of a fraudulent individual, or denial of service for the legitimate person whose template sample is modified [<xref ref-type="bibr" rid="scirp.77757-ref9">9</xref>] . There are possibilities of digital tampering of JPEG biometric data posing several threats, such as introducing a False Rejection Rate (FRR) (where a biometric sample features in the database is digitally manipulated and an input biometric sample fails to be matched) or False Acceptance Rate (FAR) (where different features from a different biometric sample are introduce on another sample and the input biometric sample is incorrectly matched). Biometric data such as fingerprints and photographs are used by most countries to prevent identity fraud and help in tracing criminals. Even though, this biometric data tends to be very useful, a legitimate worker that has access to the data may handle such sensitive data wrongly or an insider attacker may illegally have access to this sensitive data. A case of nine million stolen and exposed Israelis’ biometric information shocked the world in 2006, which contained Israels primary national biometric database [<xref ref-type="bibr" rid="scirp.77757-ref10">10</xref>] . Therefore, there exist some real cases of digital tampering with biometric data in real world applications. It is therefore important to protect raw biometric samples against insider attacks and external hackers. By insider attack, we mean someone that maybe working with confidential biometric data, but may digitally manipulate such data.</p><p>Fingerprint and face modalities are very useful for identification and verification of individuals at the airports and secured places [<xref ref-type="bibr" rid="scirp.77757-ref4">4</xref>] . However, there are different fingerprints which maybe contact-less acquired latent fingerprints, optically acquired fingerprints and synthetic generated fingerprints, amongst others. These fingerprints are supposed to be used for different applications, but maybe intentionally or accidentally used in a different application which may pose a serious threat. For example, contact-less acquired latent fingerprints used in this study is meant to be used for research purposes in investigating crime scene forensics [<xref ref-type="bibr" rid="scirp.77757-ref11">11</xref>] , synthetic fingerprints is meant for research purposes for performance evaluation, training and testing fingerprint-based systems [<xref ref-type="bibr" rid="scirp.77757-ref12">12</xref>] and optically acquired fingerprints maybe used for a country’s biometric database.</p><p>Most research is carried out using face and fingerprints biometric modalities for verification, identification and as evidence in the court. People sometimes might tend to maliciously tamper with such biometric modalities either in the database or before presenting them as evidence to the court. Several but separate research efforts have been carried out on image tampering detection, face recognition in forensic scenarios amongst others, but to the best of our knowledge, research has not been carried out in verifying the integrity, authenticity and reliability of biometric modalities with the help of Benford’s law. Also, research has not been carried out on the use of Benford’s law divergence metric to differentiate between contact-less acquired latent fingerprints, optically acquired fingerprints and synthetically generated fingerprints.</p><p>Inspired by digital tampering of stored biometric fingerprints in databases and a possibility of intentional or accidental use of particular fingerprints instead of another fingerprint, we propose the use of Benford’s law to assist in detection of tampered biometric fingerprint images in biometric databases. Also, we propose the use of Benford’s law divergence to differentiate between artificially printed contact-less acquired latent fingerprints, optically acquired fingerprints and synthetically generated fingerprints.</p></sec><sec id="s1_2"><title>1.2. Effectiveness of the Benford’s Law</title><p>In [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] we showed that biometric images followed the Benford’s law. The Benford’s law was coined by Frank Benford in 1938 [<xref ref-type="bibr" rid="scirp.77757-ref13">13</xref>] . It is also referred to as the first digit law or the law of “anomalous digits” which considers only the most significant digit (MSD) [<xref ref-type="bibr" rid="scirp.77757-ref13">13</xref>] . By MSD we mean 0.412 is 4 and 400 is also 4. This law states that the probability distribution of the first digit, <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x3.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x2.png" xlink:type="simple"/></inline-formula>in a set of natural numbers is logarithmic [<xref ref-type="bibr" rid="scirp.77757-ref14">14</xref>] . Hill [<xref ref-type="bibr" rid="scirp.77757-ref15">15</xref>] described this law in the form of a logarithmic distribution, when considering the probability distribution of the first digit from 1 to 9 for a range of natural data [<xref ref-type="bibr" rid="scirp.77757-ref15">15</xref>] . It is observed that naturally generated data are supposed to obey this law whereas tampered or randomly guessed data are supposed to disobey this law [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . Forensics literature has shown many applications of the Benford’s law such as in financial data [<xref ref-type="bibr" rid="scirp.77757-ref17">17</xref>] . This law works on the magnitude of the gradient of an image and also for the Laplacian pyramid code [<xref ref-type="bibr" rid="scirp.77757-ref18">18</xref>] . A great breakthrough of the use of Benford’s law on images can be seen where Gonzalez et al. [<xref ref-type="bibr" rid="scirp.77757-ref19">19</xref>] showed that images in the pixel domain did not follow the Benford’s law, but did observe that images when transformed to Discrete Cosine Transform (DCT) followed this law. Detection of hidden data in a natural image using the generalized Benford’s law was also carried out by them [<xref ref-type="bibr" rid="scirp.77757-ref19">19</xref>] . This law was used by Fu et al. [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] on DCT coefficients with the aim of detecting unknown JPEG compression. Qadir et al. [<xref ref-type="bibr" rid="scirp.77757-ref20">20</xref>] used the Benford’s law to identify unbalanced lighting in an image with the help of DWT [<xref ref-type="bibr" rid="scirp.77757-ref20">20</xref>] . The statistical features of the first digits of individual alternate current (AC) coefficients and SVM were used by Li et al. [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] to detect and locate the tampered regions in natural images. Farid [<xref ref-type="bibr" rid="scirp.77757-ref2">2</xref>] carried out a survey on image forgery detection techniques and explained how Benford’s law has been used to detect tampering in natural images. Iorliam et al. [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] showed that biometric data (face images and fingerprints images) follow the Benford’s law and a deviation from this could assist in detecting malicious tampering [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] . However, realistic tampering was not carried in [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] . Iorliam [<xref ref-type="bibr" rid="scirp.77757-ref21">21</xref>] recently applied the power laws (Benford’s law and Zipf’s law) to biometrics, forensics and network traffic analysis.</p><p>The key contributions in this paper include:</p><p>・ Use of Benford’s law features with SVM to protect the authenticity and integrity of biometric data in the DCT domain of JPEG compressed images.</p><p>・ Use of Benford’s law divergence to separate optically acquired fingerprints, artificially printed contact-less acquired latent fingerprints, and synthetically generated fingerprints.</p></sec></sec><sec id="s2"><title>2. Overview of Benford’s Law and Block-DCT Coefficients</title><sec id="s2_1"><title>2.1. Benford’s Law</title><p>A typical distribution of the Benford’s law can be seen in <xref ref-type="fig" rid="fig1">Figure 1</xref>. Therefore any data that closely follows this pattern follow the standard Benford’s law.</p><p>When considering the Most Significant Digit (MSD) where 0 is excluded, and the datasets satisfy the Benford’s law, then the law can be expressed as Equation (1) [<xref ref-type="bibr" rid="scirp.77757-ref15">15</xref>] .</p><fig id="fig1"  position="float"><label><xref ref-type="fig" rid="fig1">Figure 1</xref></label><caption><title> Probability distribution of Benford’s law</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x4.png"/></fig><disp-formula id="scirp.77757-formula21"><label>(1)</label><graphic position="anchor" xlink:href="http://html.scirp.org/file/7-7800458x5.png"  xlink:type="simple"/></disp-formula><p>where x is the first digit of the number and <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x6.png" xlink:type="simple"/></inline-formula> refers to the probability distribution of x.</p><p>The generalised Benford’s law which was described by Fu et al. [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] to closely follow a logarithmic law is defined in Equation (2).</p><disp-formula id="scirp.77757-formula22"><label>(2)</label><graphic position="anchor" xlink:href="http://html.scirp.org/file/7-7800458x7.png"  xlink:type="simple"/></disp-formula><p>where N is a normalisation factor which makes <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x8.png" xlink:type="simple"/></inline-formula> a probability distribution. The model parameters in this case are represented by s and q which describe the distributions for different images and different compression QF’s as defined in [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . The s and q are data-dependent and they are determined by the Matlab curve fitting tool box as used in [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . As the QF reduces, the values of N, q, and s are numerically adjusted to fit to the generalized Benford’s law. It could be observed that when<inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x9.png" xlink:type="simple"/></inline-formula>, and<inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x10.png" xlink:type="simple"/></inline-formula>, the generalized Benford’s law reduces to the standard Benford’s law [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] .</p></sec><sec id="s2_2"><title>2.2. Block-DCT Coefficients</title><p>The Benford’s law has been studied closely for the JPEG image compression [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . The DCT is used to transform a signal or image from the spatial domain to the frequency domain. It is however noted that, the direct conversion of a 2D spatial function <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x11.png" xlink:type="simple"/></inline-formula> into the 2D spectrum <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x12.png" xlink:type="simple"/></inline-formula> of spatial frequencies and vice-versa does not lose any information from the signal or image [<xref ref-type="bibr" rid="scirp.77757-ref22">22</xref>] . When considering images, the 2D DCT is used because of the 2D signals of images. According to Fu et al. [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] , JPEG image compression is block-DCT based and has the 8 &#215; 8 Block-DCT, Quantization and Entropy Coding. To achieve the first digits’ probability distribution based on the DCT, the partitioning of an original uncompressed image into a non-overlapped 8 &#215; 8 pixel blocks is first performed. This process brings about the block-DCT coefficients. A 2D DCT is applied to each block in order to convert it to a frequency space. These results into 64 values, the value at the upper-left corner is referred to as the DC Coefficient and the other 63 values are referred to as the AC coefficients. The quantization table is therefore applied to each block of the DCT coefficients [<xref ref-type="bibr" rid="scirp.77757-ref22">22</xref>] . After this process, the JPEG coefficients are produced. We are therefore interested in studying the probability distribution of the first digits of AC component for the JPEG coefficients excluding the DC coefficient.</p></sec></sec><sec id="s3"><title>3. Experiments</title><p>The goal of the first experiment is to investigate the JPEG coefficients for the optical sensor acquired fingerprints images, artificially printed contact-less acquired latent fingerprint images and synthetic generated fingerprints to determine whether they follow the generalised Benford’s law. The second set of the experiment is to use the divergence metrics to show how the data samples used</p><fig id="fig2"  position="float"><label><xref ref-type="fig" rid="fig2">Figure 2</xref></label><caption><title> Experimental Setup</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x13.png"/></fig><p>for this experiments departs from the generalised Benford’s law. The third set of experiment is to detect and localize tampered fingerprint regions.</p><p>Equation (3) shows the divergence metrics [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] used in our experiment.</p><disp-formula id="scirp.77757-formula23"><label>(3)</label><graphic position="anchor" xlink:href="http://html.scirp.org/file/7-7800458x14.png"  xlink:type="simple"/></disp-formula><p>where <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x15.png" xlink:type="simple"/></inline-formula> is the actual first digit probability of the JPEG coefficients of fingerprint images used in this experiments and <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x16.png" xlink:type="simple"/></inline-formula> is the logarithmic law (generalized Benford’s law) as given in Equation (2). <xref ref-type="fig" rid="fig2">Figure 2</xref>, shows the experimental setup.</p><sec id="s3_1"><title>3.1. Data Sets</title><p>Three data sets were used for this experiment. The FVC2000 has four different data sets (DB1, DB2, DB3 and DB4) [<xref ref-type="bibr" rid="scirp.77757-ref23">23</xref>] . DB1 data set contains 80 gray-scale fingerprint images that are captured by low-cost optical sensor, while DB4 contains 80 gray-scale synthetic fingerprint images. DB1 and DB4 were used for our experiments. The third data set used was from contactless acquired computer generated and printed latent fingerprints [<xref ref-type="bibr" rid="scirp.77757-ref11">11</xref>] for our artificially printed contact-less acquired latent fingerprint images which are stored as gray-scale images with 32 bit colour depth.</p></sec><sec id="s3_2"><title>3.2. Need to Separate Different Types of Fingerprints</title><p>Generally biometrics is used either for verification (1-to-1 matching) where we seek to answer the question “Is this person who they say they are?” or for identification (1-to-many (n) matching) where we seek to answer the question “Who is this person?” or “Who generated this biometric?” [<xref ref-type="bibr" rid="scirp.77757-ref24">24</xref>] . Fingerprints are used for identification or verification for over a century.</p><p>Even though, fingerprints are used for verification or identification, they are sometimes used for different applications. For instance, fingerprints captured using optical sensors maybe used for collecting a country’s biometric fingerprint database, where as synthetic generated fingerprints are used for testing fingerprint recognition algorithms which require large databases and collecting real fingerprints for such large databases is very expensive, boring and problematic [<xref ref-type="bibr" rid="scirp.77757-ref12">12</xref>] . The contact-less acquired latent fingerprints were generated for evaluation and research purposes with the aim of avoiding privacy implications [<xref ref-type="bibr" rid="scirp.77757-ref11">11</xref>] . The fingerprints generated by Hildebrandt et al. [<xref ref-type="bibr" rid="scirp.77757-ref11">11</xref>] are different from synthetically generated fingerprints in that, the synthetically generated datasets by SFinGe [<xref ref-type="bibr" rid="scirp.77757-ref12">12</xref>] are printed using a Canon Pixma iP4950 ink-jet printer with artificial sweat [<xref ref-type="bibr" rid="scirp.77757-ref11">11</xref>] .</p><p>We are therefore interested in applying the Benford’s law on these three data sets and to investigate:</p><p>1) If they all follow the generalised Benford’s law.</p><p>2) If the Benford’s law divergence can assist in separating them.</p></sec><sec id="s3_3"><title>3.3. Results for Generalised Benford’s Law</title><p>The first digit distribution of JPEG coefficients for optically acquired fingerprints, artificially printed contact-less acquired latent fingerprints and synthetically generated fingerprints are investigated. These three databases were JPEG compressed at a QF of 50 to 100 in a step of 10 to achieve the JPEG coefficients. The mean distribution of the first digits of the JPEG coefficients on the three databases was performed.</p><p>We observe that the JPEG coefficients of the optically acquired fingerprints and synthetically generated fingerprints closely followed the generalized Benford’s law based on a Quality Factor (QF) of 100, N = 1.456, q = 1.47, and s = 0.0372 as shown in <xref ref-type="fig" rid="fig3">Figure 3</xref>(a), and in <xref ref-type="fig" rid="fig3">Figure 3</xref>(c), respectively. However, artificially printed contact-less acquired latent fingerprints follow generalized Benford’s law at QF = 100 except at digit 1 as seen in <xref ref-type="fig" rid="fig3">Figure 3</xref>(b). This might be caused due to the conversations on the data sets. In our future work, an investigation will be carried out in this direction. A QF = 100 was used because this QF produces the best image quality when compared with other QFs. The plots also showed the standard Benford’s law (in blue) for comparison. The divergence of 0.0014, 0.04 and 0.002 were obtained for QF = 100 for the optically acquired fingerprints, artificially printed contact-less acquired latent fingerprints, and synthetically generated fingerprints respectively. It was however noted that, optically acquired fingerprints and synthetically generated fingerprints showed a better fitting as compared to artificially printed contact-less acquired latent fingerprints when using the model parameters as used in [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . Other QFs were also found to give a fitting that follows this pattern. This process requires tuning of distribution parameters such as N, s, and q. These can be done using an external, unrelated data set [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] . We used the UCID [<xref ref-type="bibr" rid="scirp.77757-ref25">25</xref>] data sets for this purpose.</p><p>In order to separate these three databases, the divergence metric is studied in more details in the next section.</p></sec><sec id="s3_4"><title>3.4. Divergence Metric and Separability of the Three Databases</title><p>The divergence metrics is used to show how close or far a particular data set is, either with the standard or generalised Benford’s law. In all cases, a smaller divergence gives a better fitting. In our experiment, the three databases were singly compressed at a QF of 50 to 100 in a step of 10. The divergence was calculated as an average on all the data sets as can be seen in <xref ref-type="fig" rid="fig4">Figure 4</xref>.</p><fig id="fig3"  position="float"><label><xref ref-type="fig" rid="fig3">Figure 3</xref></label><caption><title> JPEG coefficients of: (a) optically acquired fingerprints closely follow generalized Benford’s law at QF = 100; (b) artificially printed contact-less acquired latent fingerprints follow generalized Benford’s law at QF = 100 except at digit 1; (c) JPEG converted, synthetically generated fingerprints closely follow generalized Benford’s law at QF = 100</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x17.png"/></fig><fig id="fig4"  position="float"><label><xref ref-type="fig" rid="fig4">Figure 4</xref></label><caption><title> Box plot of the divergence for singly compressed optically captured fingerprints (left), synthetically generated fingerprints (center) and contact-less acquired latent fingerprints (right) for a QF = 50 to 100 in step of 10</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x18.png"/></fig><table-wrap id="table1" ><label><xref ref-type="table" rid="table1">Table 1</xref></label><caption><title> Median Values of the individual databases at QF from 50 to 100 in a step of 10</title></caption><table><tbody><thead><tr><th align="center" valign="middle" >QF</th><th align="center" valign="middle" >OPTICAL FINGERPRINTS</th><th align="center" valign="middle" >SYNTHETIC FINGERPRINTS</th><th align="center" valign="middle" >CONTACT-LESS FINGERPRINTS</th></tr></thead><tr><td align="center" valign="middle" >50</td><td align="center" valign="middle" >9.12</td><td align="center" valign="middle" >11.67</td><td align="center" valign="middle" >8.88</td></tr><tr><td align="center" valign="middle" >60</td><td align="center" valign="middle" >9.49</td><td align="center" valign="middle" >10.69</td><td align="center" valign="middle" >8.60</td></tr><tr><td align="center" valign="middle" >70</td><td align="center" valign="middle" >9.40</td><td align="center" valign="middle" >9.95</td><td align="center" valign="middle" >9.07</td></tr><tr><td align="center" valign="middle" >90</td><td align="center" valign="middle" >7.60</td><td align="center" valign="middle" >9.97</td><td align="center" valign="middle" >10.77</td></tr><tr><td align="center" valign="middle" >100</td><td align="center" valign="middle" >7.03</td><td align="center" valign="middle" >7.96</td><td align="center" valign="middle" >11.12</td></tr></tbody></table></table-wrap><p>The box plot in <xref ref-type="fig" rid="fig4">Figure 4</xref> clearly shows that optically captured fingerprints, synthetically generated fingerprints and contact-less acquired fingerprints divergence at different QF’s from 50 to 100 in step of 10 are not the same. We therefore investigate the median values at the individual QF’s as can be seen in <xref ref-type="table" rid="table1">Table 1</xref>.</p><p>Considering <xref ref-type="fig" rid="fig4">Figure 4</xref> and <xref ref-type="table" rid="table1">Table 1</xref>, it was observed that even though the optically acquired fingerprints and synthetically generated fingerprints divergence box plot at different compressions almost followed the same pattern, the corresponding median values were different. It was however observed that, the contact-less acquired fingerprints divergence values at the different compressions differed both in the pattern and median values as compared to the other two databases.</p></sec></sec><sec id="s4"><title>4. Tamper Detection Using the Benford’s Law Features</title><p>In [<xref ref-type="bibr" rid="scirp.77757-ref5">5</xref>] , we showed that biometric images (face images and fingerprint images) closely followed the Benford’s law. However, in Section 3.4 we showed that different types of fingerprints behave differently when analysed using the Benford’s law. Doubly compressed images at different QF’s violates a logarithmic pattern where as singly compressed images follows a logarithmic pattern [<xref ref-type="bibr" rid="scirp.77757-ref26">26</xref>] . This property is used when detecting tampering in natural images. The technique works under the hypothesis that a tampered region has undergone a single JPEG compression and an un-tampered region has undergone a double JPEG compression [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] . An example of this property can be seen in <xref ref-type="fig" rid="fig5">Figure 5</xref> where the first digits distribution of singly compressed fingerprints at <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x19.png" xlink:type="simple"/></inline-formula> follows the logarithmic law whereas the doubly compressed fingerprints at <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x19.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x20.png" xlink:type="simple"/></inline-formula> and <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x19.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x20.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x21.png" xlink:type="simple"/></inline-formula> violates the logarithmic law.</p><p>The most-based first digit features (MBFDF) are used to detect tampered regions in natural images [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] . However, it has not been performed on biometric data. Hence, we conduct experiments on tampered fingerprints which are one of the biometric modalities. The tampering was performed mainly using a copy/paste approach and some little modification to make sure the tampered regions are not visible to the eyes. Eighty fingerprint images from DB1 were digitally tampered by copying the center part of a different fingerprint and pasting on the center part of another fingerprint. At the end of the manipulation, com-</p><fig id="fig5"  position="float"><label><xref ref-type="fig" rid="fig5">Figure 5</xref></label><caption><title> First digits distribution of singly compressed fingerprints at <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x23.png" xlink:type="simple"/></inline-formula> follows the logarithmic law and doubly compressed fingerprints at <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x23.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x24.png" xlink:type="simple"/></inline-formula> and <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x23.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x24.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x25.png" xlink:type="simple"/></inline-formula> violates the logarithmic law</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x22.png"/></fig><fig id="fig6"  position="float"><label><xref ref-type="fig" rid="fig6">Figure 6</xref></label><caption><title> Fingerprint image: (a) JPEG compressed at QF = 80, (b) JPEG compressed at QF = 50, (c) center portion of (b) replaced with center portion from (a)</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x26.png"/></fig><p>posite JPEG fingerprint images were produced. <xref ref-type="fig" rid="fig6">Figure 6</xref> shows some sample images for our experiment. In this work, we extend this approach to the use of Benford’s law features with the help of two class support vector machine (SVM) as proposed by Li et al. [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] to detect tampering of biometric fingerprint images.</p><p>One thousand randomly selected natural images were singly JPEG compressed (which are usually uncompressed images from UCID [<xref ref-type="bibr" rid="scirp.77757-ref25">25</xref>] ) and double JPEG compression of the same images was performed. Single JPEG compression was carried out using <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula> to 90 in a step of 10 and double JPEG compression was carried out using <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x28.png" xlink:type="simple"/></inline-formula> to 75 in a step of 10 and <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x28.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x29.png" xlink:type="simple"/></inline-formula> to 90 in a step of 10. The first digits’ probability distribution of the top 20 AC modes for the singly JPEG compressed data and doubly JPEG compressed data was performed as proposed by Li et al. [<xref ref-type="bibr" rid="scirp.77757-ref26">26</xref>] . The MBFDF features are used to train a two-class SVM. We however, used tampered fingerprint images for testing, which were divided into continuous non-overlapping <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x28.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x29.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x30.png" xlink:type="simple"/></inline-formula> pixel blocks. For each block of the biometric fingerprint image, a sub-image of size <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x28.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x29.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x30.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x31.png" xlink:type="simple"/></inline-formula> blocks was taken, where n = 0, 1, 2 and the first digits probability distribution of JPEG coefficients of the first i AC modes for each of the sub-image are used as feature vector which has a dimension of <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x27.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x28.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x29.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x30.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x31.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x32.png" xlink:type="simple"/></inline-formula> to determine if such sub-image has been manipulated or not with the help of SVM. In this experiment n was set to 2 and i was set to 20 to detect the tampered regions on the tampered fingerprints as learnt from experiments performed by Li et al. [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] . The detection results can be seen in Figures 7(a)-(f), where the tampered regions are identified as white regions and the untampered regions are identified as black regions. <xref ref-type="fig" rid="fig7">Figure 7</xref>(g) &amp; <xref ref-type="fig" rid="fig7">Figure 7</xref>(h) shows the detection results for un- tampered JPEG fingerprints.</p></sec><sec id="s5"><title>5. Estimation of Block-Level Tampering and Densities</title><p>When a biometric fingerprint is tampered, some blocks are tampered, while</p><fig id="fig7"  position="float"><label><xref ref-type="fig" rid="fig7">Figure 7</xref></label><caption><title> Detection of: (a) uncompressed fingerprint (.tif) inserted into a compressed fingerprint (QF = 50) and the composite fingerprint saved at a QF = 70; (b) uncompressed fingerprint (.tif) inserted into a compressed fingerprint (QF = 60) and the composite fingerprint saved at a QF = 75; (c) compressed fingerprint (QF = 80) inserted into a compressed fingerprint (QF = 50) and the composite fingerprint saved at a QF = 70; (d) compressed fingerprint (QF = 50) inserted into a compressed fingerprint (QF = 70) and the composite fingerprint saved at a QF = 70; (e) compressed fingerprint (QF = 60) inserted into a compressed fingerprint (QF = 75) and the composite fingerprint saved at a QF = 75; (f) uncompressed fingerprint (.tif) inserted into a compressed fingerprint (QF = 80) and the composite fingerprint saved at a QF = 70. ((g), (h)) un-tampered JPEG fingerprints. Each square represents a <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x34.png" xlink:type="simple"/></inline-formula> block</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x33.png"/></fig><disp-formula id="scirp.77757-formula24"><graphic  xlink:href="http://html.scirp.org/file/7-7800458x35.png"  xlink:type="simple"/></disp-formula><disp-formula id="scirp.77757-formula25"><graphic  xlink:href="http://html.scirp.org/file/7-7800458x36.png"  xlink:type="simple"/></disp-formula><p>other blocks are not. We therefore propose a method to detect the number of tampered blocks and also estimate the densities of tampered and un-tampered blocks. This is to illustrate exactly where a biometric sample is tampered, taking into consideration a corresponding un-tampered biometric sample.</p><p>The main steps are as follows:</p><p>1) Load an un-tampered and a corresponding tampered image which are both in JPEG format.</p><p>2) Pad the matrices using Algorithm 1, to avoid un-equal blocks in order to achieve rows and columns that are divisible by 8.</p><p>3) Divide the individual biometric fingerprint images into non-overlapping <inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x37.png" xlink:type="simple"/></inline-formula> blocks.</p><p>4) To avoid cropping effects at the edges of the biometric fingerprint images, mask each of the biometric fingerprint images at edges using Algorithm 2.</p><p>5) With the help of thresholding on the tampered image, get the number of tampered and un-tampered regions.</p><p>6) Feed the tampered and un-tampered regions into the Weighted Error Rate (WER) [<xref ref-type="bibr" rid="scirp.77757-ref27">27</xref>] software to estimate their densities based on the classifier output as observations.</p><p>To test the above algorithm, an experiment was performed on 80 tampered and un-tampered fingerprint images and the tampering was concentrated at the center.</p></sec><sec id="s6"><title>6. Results for Performance Evaluation</title><p>In order to measure the performance of how the tampered fingerprint blocks were discriminated from the un-tampered ones, the kernel density estimation technique was used to first estimate the probability density function (pdf) [<xref ref-type="bibr" rid="scirp.77757-ref28">28</xref>] . It was used because of two advantages: first, the modeled distribution is smooth (unlike histogram); and second, the method is non-parametric, thus does not engage in any assumption about the form of distribution of the data. Hence, it was used to compare two densities. <xref ref-type="fig" rid="fig8">Figure 8</xref> shows the block-level distributions of tampered and un-tampered blocks of the fingerprints, and <xref ref-type="fig" rid="fig9">Figure 9</xref> shows the DET curve of the block-level tampering detection algorithm on 80 fingerprint images. The EER point is highlighted by a red mark in the DET curve as shown in <xref ref-type="fig" rid="fig9">Figure 9</xref>.</p><p>To assess how the above algorithm is effective in discriminating tampered fingerprints from un-tampered fingerprints, the DET curve was used. Usually, the DET curve shows the False Rejection Rate (FRR) versus False Acceptance Rate (FAR) as a plot which is in the inverse of the standard normal deviates scales [<xref ref-type="bibr" rid="scirp.77757-ref29">29</xref>] . Using the tampered regions as the reference, which is the target class to be detected, their respective definitions are:</p><p><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x38.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x38.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x39.png" xlink:type="simple"/></inline-formula>The DET curve is usually a plot of FRR in the y-axis versus FAR in the x-axis by varying the decision threshold such that:<inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x38.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x39.png" xlink:type="simple"/></inline-formula><inline-formula><inline-graphic xlink:href="http://html.scirp.org/file/7-7800458x40.png" xlink:type="simple"/></inline-formula></p><fig id="fig8"  position="float"><label><xref ref-type="fig" rid="fig8">Figure 8</xref></label><caption><title> Block-level distributions of tampered and un-tampered blocks of the fingerprints</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x41.png"/></fig><fig id="fig9"  position="float"><label><xref ref-type="fig" rid="fig9">Figure 9</xref></label><caption><title> DET curve of the block-level tampering detection algorithm on 80 fingerprint images</title></caption><graphic mimetype="image"   position="float"  xlink:type="simple"  xlink:href="http://html.scirp.org/file/7-7800458x42.png"/></fig><p>It is an established fact that a smaller FAR and FRR values are desirable. Therefore, it is expected that a DET curve for a good detection system should usually be aligned closer to the origin (lower left corner) of a DET curve. Furthermore, an EER is a unique operating point where FAR=FRR. This summa- rises the entire DET curve and is considered as a useful metric for biometric evaluation. An EER of 2.08% was achieved using the block-level tampering algorithm. It is an established fact that a lower EER is better and as such an EER of 2.08% is considered low.</p></sec><sec id="s7"><title>7. Discussion</title><p>We have investigated two different methods: Benford’s law divergence without training and Benford’s law features with training via SVM.</p><p>Benford’s law divergence without training is a passive (blind) detection method [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] which does not require prior knowledge about the image under investigation. This is really advantageous to our research because, in most cases, we may not have prior knowledge about the biometric fingerprint we wish to separate. Therefore the use of active detection method [<xref ref-type="bibr" rid="scirp.77757-ref3">3</xref>] which requires prior information to be embedded into an original image will not be helpful. Even without training, the Benford’s law divergence for singly compressed optically acquired fingerprints, synthetically generated fingerprints and contact-less acquired latent fingerprints for a QF = 50 to 100 in step of 10 with corresponding values of N, s and q used during our experiments as learnt from [<xref ref-type="bibr" rid="scirp.77757-ref16">16</xref>] can distinguish the three classes of fingerprints under investigation, namely, optically acquired fingerprints, artificially printed contact-less acquired latent fingerprints and synthetically generated fingerprints.</p><p>The Benford’s law features when used in conjunction with an SVM classifier, can effectively detect and localize tampering. We find that, the Benford’s law features and SVM classifier can detect tampering effectively, with Equal Error Rate (EER) of 2.08 %. The EER was found to be low, therefore indicating a higher degree of separability.</p><p>The advantage of being able to detect tampering means that one can deploy Benford’s law in protecting against insider attacks and hackers on manipulating raw images stored in biometric databases.</p></sec><sec id="s8"><title>8. Conclusion and Future Work</title><p>The authenticity of biometric databases is exposed to a great threat due to digital tampering of JPEG biometric data. In this paper, digital tampering of biometric fingerprint images was performed using Photoshop to demonstrate how simple an attacker can digitally manipulate such data. We proposed the use of Benford’s law divergence metric to assist in separating three databases. We showed that the Benford’s law features with SVM can greatly assist in protecting the authenticity and integrity of biometric fingerprint databases. In our future work, we will investigate detection of tampered biometric face image and iris images regions. Also, we will investigate if digital tampering negatively affects the recognition performance on digitally tampered face and fingerprint images. Furthermore, the applicability of Benford’s law will be investigated for 16/32-bit images. Moreover, for forensic applications, a lossless compression should be investigated in details. This will also be covered in our future work. Lastly, we will investigate raw data manipulations in the full colour-depth and their impact on the DCT coefficients after the JPEG transformation.</p></sec><sec id="s9"><title>Acknowledgements</title><p>Sincere thanks to Prof. Anthony T.S. Ho, Dr. Norman Poh, Dr. Santosh Tirunagari, Mrs Nik Suki, Prof. Jana Dittmann and Dr. Mario Hildebrandt for their useful inputs into this work. This paper is part of Iorliam’s PhD research [<xref ref-type="bibr" rid="scirp.77757-ref21">21</xref>] at the University of Surrey, UK.</p></sec><sec id="s10"><title>Cite this paper</title><p>Aamo, I. and Ca- leb, S.F. (2017) On the Use of Benford’s Law to Detect JPEG Biometric Data Tampering. Journal of Information Security, 8, 240-256. https://doi.org/10.4236/jis.2017.83016</p></sec></body><back><ref-list><title>References</title><ref id="scirp.77757-ref1"><label>1</label><mixed-citation publication-type="other" xlink:type="simple">Hsiao, D.-Y. and Pei, S.-C. (2005) Detecting Digital Tampering by Blur Estimation. Proceedings of the IEEE First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE05), 264-278.  
https://doi.org/10.1109/SADFE.2005.8</mixed-citation></ref><ref id="scirp.77757-ref2"><label>2</label><mixed-citation publication-type="other" xlink:type="simple">Farid, H. (2009) A Survey of Image Forgery Detection. IEEE Signal Processing Magazine, 26, 16-25. https://doi.org/10.1109/MSP.2008.931079</mixed-citation></ref><ref id="scirp.77757-ref3"><label>3</label><mixed-citation publication-type="other" xlink:type="simple">Li, X.H., Zhao, Y., Liao, M., Shih, F.Y. and Shi, Y.Q. (2012) Detection of Tampered Region for JPEG Images by Using Mode-Based First Digit Features. EURASIP Journal on Advances in Signal Processing, 190, 1-6.  
https://doi.org/10.1186/1687-6180-2012-190</mixed-citation></ref><ref id="scirp.77757-ref4"><label>4</label><mixed-citation publication-type="other" xlink:type="simple">Meuwly, D. and Veldhuis, R. (2012) Forensic Biometrics: From Two Communities to One Discipline, 2012 BIOSIG-Proceedings of the International Conference of Biometrics Special Interest Group (BIOSIG), 13029856.</mixed-citation></ref><ref id="scirp.77757-ref5"><label>5</label><mixed-citation publication-type="other" xlink:type="simple">Iorliam, A., Ho, A.T.S., Poh, N. and Shi, Y.Q. (2014) Do Biometric Images Follow the Benford’s Law? 2nd International Workshop on Biometrics and Forensics, 1-6.  
https://doi.org/10.1109/IWBF.2014.6914261</mixed-citation></ref><ref id="scirp.77757-ref6"><label>6</label><mixed-citation publication-type="other" xlink:type="simple">Roberts, C.M. (2007) Biometric Attack Vectors and Defences. Computers and Security, 26, 14-25. https://doi.org/10.1016/j.cose.2006.12.008</mixed-citation></ref><ref id="scirp.77757-ref7"><label>7</label><mixed-citation publication-type="other" xlink:type="simple">Lazarick, R. (2012) Presentation Attack Detection. Department of Biometrics, Com-put. Sci. Corp., Tech. Rep.</mixed-citation></ref><ref id="scirp.77757-ref8"><label>8</label><mixed-citation publication-type="other" xlink:type="simple">Dong, J., Wang, W. and Tan, T. (2013) Casia Image Tampering Detection Evaluation Database. IEEE ChinaSIP, 422-426.</mixed-citation></ref><ref id="scirp.77757-ref9"><label>9</label><mixed-citation publication-type="other" xlink:type="simple">Ratha, N., Connell, J.H. and Bolle, R.M. (2001) An Analysis of Minutiae Matching Strength. Proc. Audio and Video-Based Biometric Person Authentication (AVBPA), 223-228. https://doi.org/10.1007/3-540-45344-X_32</mixed-citation></ref><ref id="scirp.77757-ref10"><label>10</label><mixed-citation publication-type="other" xlink:type="simple">FastCompany (2011) The Dark Side of Biometrics: 9 Million Israelis Hacked Info Hits the Web.  
http://www.fastcompany.com/1790444/dark-side-biometrics-9-million-israelis-hacked-info-hits-web</mixed-citation></ref><ref id="scirp.77757-ref11"><label>11</label><mixed-citation publication-type="other" xlink:type="simple">Hildebrandt, M., Sturm, J., Dittmann, J. and Vielhauer, C. (2013) Creation of a Public Corpus of Contact-Less Acquired Latent Fingerprints without Privacy Implications. In: IFIP International Conference on Communications and Multimedia Security, Springer, Berlin Heidelberg, 204-206.  
https://doi.org/10.1007/978-3-642-40779-6_19</mixed-citation></ref><ref id="scirp.77757-ref12"><label>12</label><mixed-citation publication-type="other" xlink:type="simple">Maltoni, D., Maio, D., Jain, A.K. and Prabhakar, S. (2003) Synthetic Fingerprint Generation. Handbook of Fingerprint Recognition, 271-302.</mixed-citation></ref><ref id="scirp.77757-ref13"><label>13</label><mixed-citation publication-type="journal" xlink:type="simple"><name name-style="western"><surname>Benford</surname><given-names> F. </given-names></name>,<etal>et al</etal>. (<year>1938</year>)<article-title>The Law of Anomalous Numbers</article-title><source> Proceedings of the American Philosophical Society</source><volume> 78</volume>,<fpage> 551</fpage>-<lpage>572</lpage>.<pub-id pub-id-type="doi"></pub-id></mixed-citation></ref><ref id="scirp.77757-ref14"><label>14</label><mixed-citation publication-type="other" xlink:type="simple">Shi, Y.Q. (2013) Image Statistical Modeling and Its Applications to Information Forensics. New Jersey Institute of Technology.</mixed-citation></ref><ref id="scirp.77757-ref15"><label>15</label><mixed-citation publication-type="other" xlink:type="simple">Hill, T.P. (1996) A Statistical Derivation of the Significant-Digit Law. Statistical Science, 10, 354-363. https://doi.org/10.1214/ss/1177009869</mixed-citation></ref><ref id="scirp.77757-ref16"><label>16</label><mixed-citation publication-type="other" xlink:type="simple">Fu, D., Shi, Y.Q. and Su, W. (2007) A Generalized Benford’s Law for JPEG Coefficients and Its Applications in Image Forensics. Proceedings of SPIE, 6506, 1L1-1L11.</mixed-citation></ref><ref id="scirp.77757-ref17"><label>17</label><mixed-citation publication-type="journal" xlink:type="simple"><name name-style="western"><surname>Nigrini</surname><given-names> M. </given-names></name>,<etal>et al</etal>. (<year>1996</year>)<article-title>A Taxpayer Compliance Application of Benford’s Law</article-title><source> The Journal of the American Taxation Association</source><volume> 18</volume>,<fpage> 72</fpage>-<lpage>91</lpage>.<pub-id pub-id-type="doi"></pub-id></mixed-citation></ref><ref id="scirp.77757-ref18"><label>18</label><mixed-citation publication-type="other" xlink:type="simple">Jolion, J.M. (2001) Images and Benford’s Law. Journal of Mathematical Imaging and Vision, 14, 73-81.  https://doi.org/10.1023/A:1008363415314</mixed-citation></ref><ref id="scirp.77757-ref19"><label>19</label><mixed-citation publication-type="other" xlink:type="simple">Gonzalez, F.P., Heileman, G.L. and Abdallah, C.T. (2007) Benford’s Law in Image Processing. IEEE International Conference on Image Processing, San Antonio, 16-19 September 2007, 405-408.</mixed-citation></ref><ref id="scirp.77757-ref20"><label>20</label><mixed-citation publication-type="other" xlink:type="simple">Qadir, G., Zhao, X., Ho, A.T.S. and Casey, M. (2011) Image Forensic of Glare Feature for Improving Image Retrieval Using Benford’s Law. IEEE International Symposium on Circuits and Systems, 2661-2664.</mixed-citation></ref><ref id="scirp.77757-ref21"><label>21</label><mixed-citation publication-type="other" xlink:type="simple">Iorliam, A. (2016) Application of Power Laws to Biometrics, Forensics and Network Traffic Analysis. Doctoral Dissertation, University of Surrey.</mixed-citation></ref><ref id="scirp.77757-ref22"><label>22</label><mixed-citation publication-type="other" xlink:type="simple">Efford, N. (2000) Digital Image Processing. A Practical Introduction Using Java TM. Pearson Education, Upper Saddle River.</mixed-citation></ref><ref id="scirp.77757-ref23"><label>23</label><mixed-citation publication-type="other" xlink:type="simple">FVC2000 (2000) Fingerprint Verification Competition Databases.  
http://bias.csr.unibo.it/fvc2000/databases.asp</mixed-citation></ref><ref id="scirp.77757-ref24"><label>24</label><mixed-citation publication-type="other" xlink:type="simple">Yan, Y. and Osadciw, L.A. (2008) Bridging Biometrics and Forensics. EECS, Proceedings SPIE 6819, Security, Forensics, Steganography, and Watermaking of Multimedia Context X, 68190 Q, 2661-2664.</mixed-citation></ref><ref id="scirp.77757-ref25"><label>25</label><mixed-citation publication-type="other" xlink:type="simple">Schaefer, G. and Stich, M. (2003) UCID—An Uncompressed Color Image Database. School of Computing and Mathematics, Nottingham Trent University.</mixed-citation></ref><ref id="scirp.77757-ref26"><label>26</label><mixed-citation publication-type="other" xlink:type="simple">Li, B., Shi, Y.Q. and Huang, J. (2008) Detecting Doubly Compressed JPEG Images by Using Mode Based First Digit Features. IEEE Multimedia Signal Processing, Cairns, 8-10 October 2008, 730-735.</mixed-citation></ref><ref id="scirp.77757-ref27"><label>27</label><mixed-citation publication-type="other" xlink:type="simple">Poh, N., Chan, C.-H., Kittler, J., Fierrez, J. and Galbally, J. (2012) Description of Metrics for the Evaluation of Biometrics Performance, Biometrics Evaluation and Testing.</mixed-citation></ref><ref id="scirp.77757-ref28"><label>28</label><mixed-citation publication-type="other" xlink:type="simple">Parzen, E. (1962) On Estimation of a Probability Density Function and Mode. The Annals of Mathematical Statistics, 33, 1065.  
https://doi.org/10.1214/aoms/1177704472</mixed-citation></ref><ref id="scirp.77757-ref29"><label>29</label><mixed-citation publication-type="other" xlink:type="simple">Martin, A., Doddington, G., Kamm, T., Ordowski, M. and Przybocki, M. (1997) The DET Curve in Assessment of Detection Task Performance. Eurospeech, 97, 1899-1903.</mixed-citation></ref></ref-list></back></article>