Credential wrapping: From anonymous password authentication to anonymous biometric authentication

Yanjiang Yang, Jian Weng, Haibing Lu, Youcheng Zhang, Joseph K. Liu, Jianying Zhou

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

    9 Citations (Scopus)


    The anonymous password authentication scheme proposed in ACSAC'10 under an unorthodox approach of password wrapped credentials advanced anonymous password authentication to be a practically ready primitive, and it is being standardized. In this paper, we improve on that scheme by proposing a new method of "public key suppression" for achieving server-designated credential verifiability, a core technicality in materializing the concept of password wrapped credential. Besides better performance, our new method simplifies the configuration of the authentication server, rendering the resulting scheme even more practical. Further, we extend the idea of password wrapped credential to biometric wrapped credential, to achieve anonymous biometric authentication. As expected, biometric wrapped credentials help break the linear server-side computation barrier intrinsic in the standard setting of biometric authentication. Experimental results validate the feasibility of realizing efficient anonymous biometric authentication.

    Original languageEnglish
    Title of host publicationASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security
    Subtitle of host publicationMay 30 – June 3, 2016, Xi’an, China
    EditorsXiaoFeng Wang, Xinyi Huang
    Place of PublicationNew York, NY
    PublisherAssociation for Computing Machinery (ACM)
    Number of pages11
    ISBN (Electronic)9781450342339
    Publication statusPublished - 30 May 2016
    EventACM Symposium on Information, Computer and Communications Security 2016 - Xi'an, China
    Duration: 30 May 20163 Jun 2016
    Conference number: 11th


    ConferenceACM Symposium on Information, Computer and Communications Security 2016
    Abbreviated titleAsiaCCS 2016
    Internet address


    • Anonymous biometric authentication
    • Anonymous password authentication
    • Biometric authentication/identification
    • Public key suppression
    • Standardization

    Cite this