Cryptographically-Secure and Efficient Remote Cancelable Biometrics Based on Public-Key Homomorphic Encryption
Cancelable biometrics is known as a template protection approach, and concrete protocols with high accuracy and efficiency have been proposed. Nevertheless, most known protocols, including the Hattori et al. protocol (Journal of Information Processing, 2012), pay little attention to security against the replay attack, which leads to severe authenticity violation in the remote authentication setting. In this paper, we revisit the Hattori et al. protocol based on the Boneh-Goh-Nissim encryption scheme, and propose a secure variant while keeping user-friendliness of the original protocol. Our protocol uses the revocation method of the original protocol in a proactive manner, i.e., in our protocol, the public key assigned to a user is randomly re-generated in every authentication process. We define a general and formal security game that covers the replay attack and considers fuzziness of biometric feature extraction, and show that our protocol is secure in that model. The computation and communication costs of our protocol are more efficient than those of similar protocols.
KeywordsCancelable biometrics remote authentication replay security game for biometrics homomorphic encryption
Unable to display preview. Download preview PDF.
- 5.Dierks, T., Rescorla, E.: The transport layer security (TLS) protocol version 1.2. RFC 5246 (2008)Google Scholar
- 8.Hirano, T., Hattori, M., Ito, T., Matsuda, N., Mori, T.: Homomorphic encryption based cancelable biometrics secure against replay and its related attack. In: ISITA 2012, pp. 421–425 (2012)Google Scholar
- 11.Juels, A., Wattenberg, M.: A fuzzy commitment scheme. In: ACM CCS 1999, pp. 28–36 (1999)Google Scholar
- 13.Nishigaki, M., Watanabe, Y., Oda, M., Yoneyama, Y., Yamamoto, T., Takahashi, K., Ogata, W., Kikuchi, H.: Template-protecting biometrics authentication using oblivious evaluation of feature value function with fuzzy polynomial. IPSJ Journal 53(9), 2254–2266 (2012) (in Japanese)Google Scholar