A Framework for UC Secure Privacy Preserving Biometric Authentication Using Efficient Functional Encryption

Ernst, Johannes; Mitrokotsa, Aikaterini

doi:10.1007/978-3-031-33491-7_7

Cited by 5 publications

(2 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In contrast to our work however, not session keys are exchanged as a result from the successful login. Another solution to biometric authentication based on functional encryption was recently presented by [25]. While their solution is computationally efficient, no key material is generated from the successful biometric two-factor authentication.…”

Section: B Related Workmentioning

confidence: 99%

See 1 more Smart Citation

BRAKE: Biometric Resilient Authenticated Key Exchange

Bauspieß,

Silde,

Poljuha

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Biometric data are uniquely suited for connecting individuals to their digital identities. Deriving cryptographic key exchange from successful biometric authentication therefore gives an additional layer of trust compared to password-authenticated key exchange. However, biometric data are sensitive personal data that need to be protected on a long-term basis. Furthermore, efficient feature extraction and comparison components resulting in high intra-subject tolerance and inter-subject distinguishability, documented with good biometric performance, need to be applied in order to prevent zero-effort impersonation attacks. In this work, we present a novel protocol for Biometric Resilient Authenticated Key Exchange that fulfils the above requirements of biometric information protection compliant with the international ISO/IEC 24745 standard. In our protocol, we present a novel modification of unlinkable fuzzy vault schemes that allows their connection with oblivious pseudo-random functions to achieve resilient protection against offline attacks crucial for the protection of biometric data. Our protocol is independent of the biometric modality and can be implemented based on the security of discrete logarithms as well as lattices. We provide an open-source implementation of both instantiations of our protocol which achieve real-time efficiency with transaction times of less than one second from the image capture to the completed key exchange. INDEX TERMSAuthenticated key exchange, biometric information protection, fuzzy vault, oblivious pseudo-random function.At first sight, the performance preservation requirement in

show abstract

Section: B Related Workmentioning

confidence: 99%

“…While their solution is computationally efficient, no key material is generated from the successful biometric two-factor authentication. Similarly, [26] presented post-quantum secure biometric authentication using searchable encryption, a cryptographic technique related to functional encryption as applied in [25].…”

Section: B Related Workmentioning

confidence: 99%