Unsupervised Fingerphoto Presentation Attack Detection With Diffusion Models

TL;DR

This work tackles fingerphoto presentation attack detection under limited attack data by framing PAD as a one-class unsupervised problem. It trains a Denoising Diffusion Probabilistic Model (DDPM) on bona fide fingerphotos to reconstruct input ROI images and uses Learned Perceptual Image Patch Similarity (LPIPS) to detect attacks via reconstruction differences, guided by a DifFace-inspired posterior for HQ restoration. Across Clarkson, NTNU, and HDA datasets, the DDPM+LPIPS approach achieves superior detection performance compared to baselines, especially for challenging PAIs, though cross-dataset generalization remains sensitive to capture conditions. The study also analyzes the impact of ROI processing and metric choice, highlighting practical considerations for deploying diffusion-based fingerphoto PAD in real-world settings and suggesting avenues for dual use in image enhancement and de-occlusion. The proposed method offers a promising unsupervised route to robust fingerphoto PAD with potential for scalable defense against unseen PAIs.

Abstract

Smartphone-based contactless fingerphoto authentication has become a reliable alternative to traditional contact-based fingerprint biometric systems owing to rapid advances in smartphone camera technology. Despite its convenience, fingerprint authentication through fingerphotos is more vulnerable to presentation attacks, which has motivated recent research efforts towards developing fingerphoto Presentation Attack Detection (PAD) techniques. However, prior PAD approaches utilized supervised learning methods that require labeled training data for both bona fide and attack samples. This can suffer from two key issues, namely (i) generalization:the detection of novel presentation attack instruments (PAIs) unseen in the training data, and (ii) scalability:the collection of a large dataset of attack samples using different PAIs. To address these challenges, we propose a novel unsupervised approach based on a state-of-the-art deep-learning-based diffusion model, the Denoising Diffusion Probabilistic Model (DDPM), which is trained solely on bona fide samples. The proposed approach detects Presentation Attacks (PA) by calculating the reconstruction similarity between the input and output pairs of the DDPM. We present extensive experiments across three PAI datasets to test the accuracy and generalization capability of our approach. The results show that the proposed DDPM-based PAD method achieves significantly better detection error rates on several PAI classes compared to other baseline unsupervised approaches.

Figures (4)

• Figure 1: Fingerphoto reconstructions using various unsupervised models from an input image (top-to-bottom): bona fide fingerphoto, then PAI attack images using Ecoflex, photopaper, Playdoh, and woodglue; models (left-to-right): convolutional autoencoder (CAE), variational autoencoder (VAE), StyleGAN-ADA (SGA), and DDPM; the input images are not seen during model training.
• Figure 2: The pipeline of our proposed DDPM and LPIPS fingerphoto PAD method.
• Figure 3: PAIs and bona fide samples from the three datasets.
• Figure 4: Misclassification cases for DDPM input/output pairs. The first row shows two attack examples and the second row shows two bona fide examples.