Biometric verification has been widely deployed in current authentication solutions as it proves the physical presence of individuals. To protect the sensitive biometric data in such systems, several solutions have been developed that provide security against honest-but-curious (semi-honest) attackers. However, in practice attackers typically do not act honestly and multiple studies have shown drastic biometric information leakage in such honest-but-curious solutions when considering dishonest, malicious attackers. In this paper, we propose a provably secure biometric verification protocol to withstand malicious attackers and prevent biometric data from any sort of leakage. The proposed protocol is based on a homomorphically encrypted log likelihood-ratio-based (HELR) classifier that supports any biometric modality (e.g. face, fingerprint, dynamic signature, etc.) encoded as a fixed-length real-valued feature vector and performs an accurate and fast biometric recognition. Our protocol, that is secure against malicious adversaries, is designed from a protocol secure against semi-honest adversaries enhanced by zero-knowledge proofs. We evaluate both protocols for various security levels and record a sub-second speed (between $0.37$s and $0.88$s) for the protocol against semi-honest adversaries and between $0.95$s and $2.50$s for the protocol secure against malicious adversaries.
翻译:在目前的认证解决方案中,生物测定核查被广泛应用到当前的认证解决方案中,因为它证明了个人的实际存在。为了保护这类系统中的敏感生物鉴别数据,已经开发了几种解决方案,这些解决方案为防范诚实但诚实(半诚实)攻击者提供了安全保障。然而,在实践中,袭击者通常不诚实行事,而多项研究表明,在考虑不诚实、恶意攻击者时,这类诚实但错误的解决方案中,生物测定信息大量渗漏。在本文件中,我们提议一项可靠的生物测定核查协议,以抵御恶意攻击者,防止生物测定数据从任何种类的泄漏中渗漏。拟议协议的基础是一个同质加密的日志概率(HELR)分类,该分类支持任何生物测定模式(如脸部、指纹、动态签名等)的编码为固定长度真实价值的功能矢量,并进行准确和快速的生物测定。我们的协议是防止恶意对手的,其设计来自一项防止半诚实对手通过零认知证据强化的保证书。我们评估了各种安全级别和记录次速度(0.37美元和0.88美元之间),用以记录用于防止恶意-10当心制武器协议之间的次速度。
相关内容
微信扫码咨询专知VIP会员