We present a privacy preserving protocol for fingerprint-based authentication. We consider a scenario where a client equipped with a fingerprint reader is interested into learning if the acquired fingerprint belongs to the database of authorized entities managed by a server. For security, it is required that the client does not learn anything on the database and the server should not get any information about the requested biometry and the outcome of the matching process. The proposed protocol follows a multi-party computation approach and makes extensive use of homomorphic encryption as underlying cryptographic primitive. To keep the protocol complexity as low as possible, a particular representation of fingerprint images, named Fingercode, is adopted. Although the previous works on privacy-preserving biometric identification focus on selecting the best matching identity in the database, our main solution is a generic identification protocol and it allows to select and report all the enrolled identities whose distance to the user's fingercode is under a given threshold. Variants for simple authentication purposes are provided. Our protocols gain a notable bandwidth saving (about 25-39%) if compared with the best previous work (ICISC'09) and its computational complexity is still low and suitable for practical applications. Moreover, even if such protocols are presented in the context of a fingerprint-based system, they can be generalized to any biometric system that shares the same matching methodology, namely distance computation and thresholding.

Privacy-preserving fingercode authentication / Barni, M; Bianchi, T; Catalano, D; Di Raimondo, M; Donida Labati, R; Failla, P; Fiore, D; Lazzeretti, Riccardo; Piuri, V; Scotti, F; Piva, A.. - (2010), pp. 231-240. (Intervento presentato al convegno 12th ACM workshop on Multimedia and security tenutosi a Rome; Italy) [10.1145/1854229.1854270].

Privacy-preserving fingercode authentication

LAZZERETTI, RICCARDO
;
2010

Abstract

We present a privacy preserving protocol for fingerprint-based authentication. We consider a scenario where a client equipped with a fingerprint reader is interested into learning if the acquired fingerprint belongs to the database of authorized entities managed by a server. For security, it is required that the client does not learn anything on the database and the server should not get any information about the requested biometry and the outcome of the matching process. The proposed protocol follows a multi-party computation approach and makes extensive use of homomorphic encryption as underlying cryptographic primitive. To keep the protocol complexity as low as possible, a particular representation of fingerprint images, named Fingercode, is adopted. Although the previous works on privacy-preserving biometric identification focus on selecting the best matching identity in the database, our main solution is a generic identification protocol and it allows to select and report all the enrolled identities whose distance to the user's fingercode is under a given threshold. Variants for simple authentication purposes are provided. Our protocols gain a notable bandwidth saving (about 25-39%) if compared with the best previous work (ICISC'09) and its computational complexity is still low and suitable for practical applications. Moreover, even if such protocols are presented in the context of a fingerprint-based system, they can be generalized to any biometric system that shares the same matching methodology, namely distance computation and thresholding.
2010
12th ACM workshop on Multimedia and security
Algorithms; Securit; Homomorphic Encryption
04 Pubblicazione in atti di convegno::04b Atto di convegno in volume
Privacy-preserving fingercode authentication / Barni, M; Bianchi, T; Catalano, D; Di Raimondo, M; Donida Labati, R; Failla, P; Fiore, D; Lazzeretti, Riccardo; Piuri, V; Scotti, F; Piva, A.. - (2010), pp. 231-240. (Intervento presentato al convegno 12th ACM workshop on Multimedia and security tenutosi a Rome; Italy) [10.1145/1854229.1854270].
File allegati a questo prodotto
File Dimensione Formato  
Barni_Privacy-Preserving-Fingercode-Authentication_2010.pdf

solo gestori archivio

Tipologia: Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 2.2 MB
Formato Adobe PDF
2.2 MB Adobe PDF   Contatta l'autore
VE_2010_11573-966716.pdf

solo gestori archivio

Tipologia: Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 2.2 MB
Formato Adobe PDF
2.2 MB Adobe PDF   Contatta l'autore

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11573/966716
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 156
  • ???jsp.display-item.citation.isi??? 86
social impact