Credential wrapping: From anonymous password authentication to anonymous biometric authentication

Yanjiang Yang, Jian Weng, Haibing Lu, Youcheng Zhang, Joseph K. Liu, Jianying Zhou

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

    Abstract

    The anonymous password authentication scheme proposed in ACSAC'10 under an unorthodox approach of password wrapped credentials advanced anonymous password authentication to be a practically ready primitive, and it is being standardized. In this paper, we improve on that scheme by proposing a new method of "public key suppression" for achieving server-designated credential verifiability, a core technicality in materializing the concept of password wrapped credential. Besides better performance, our new method simplifies the configuration of the authentication server, rendering the resulting scheme even more practical. Further, we extend the idea of password wrapped credential to biometric wrapped credential, to achieve anonymous biometric authentication. As expected, biometric wrapped credentials help break the linear server-side computation barrier intrinsic in the standard setting of biometric authentication. Experimental results validate the feasibility of realizing efficient anonymous biometric authentication.

    Original languageEnglish
    Title of host publicationASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security
    Subtitle of host publicationMay 30 – June 3, 2016, Xi’an, China
    EditorsXiaoFeng Wang, Xinyi Huang
    Place of PublicationNew York, NY
    PublisherAssociation for Computing Machinery (ACM)
    Pages141-151
    Number of pages11
    ISBN (Electronic)9781450342339
    DOIs
    Publication statusPublished - 30 May 2016
    EventACM Symposium on Information, Computer and Communications Security 2016 - Xi'an, China
    Duration: 30 May 20163 Jun 2016
    Conference number: 11
    http://meeting.xidian.edu.cn/conference/AsiaCCS2016/

    Conference

    ConferenceACM Symposium on Information, Computer and Communications Security 2016
    Abbreviated titleAsiaCCS 2016
    CountryChina
    CityXi'an
    Period30/05/163/06/16
    Internet address

    Keywords

    • Anonymous biometric authentication
    • Anonymous password authentication
    • Biometric authentication/identification
    • Public key suppression
    • Standardization

    Cite this

    Yang, Y., Weng, J., Lu, H., Zhang, Y., Liu, J. K., & Zhou, J. (2016). Credential wrapping: From anonymous password authentication to anonymous biometric authentication. In X. Wang, & X. Huang (Eds.), ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security: May 30 – June 3, 2016, Xi’an, China (pp. 141-151). New York, NY: Association for Computing Machinery (ACM). https://doi.org/10.1145/2897845.2897854
    Yang, Yanjiang ; Weng, Jian ; Lu, Haibing ; Zhang, Youcheng ; Liu, Joseph K. ; Zhou, Jianying. / Credential wrapping : From anonymous password authentication to anonymous biometric authentication. ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security: May 30 – June 3, 2016, Xi’an, China. editor / XiaoFeng Wang ; Xinyi Huang. New York, NY : Association for Computing Machinery (ACM), 2016. pp. 141-151
    @inproceedings{6edc5283636a4b678bbaf5f5d0429bfe,
    title = "Credential wrapping: From anonymous password authentication to anonymous biometric authentication",
    abstract = "The anonymous password authentication scheme proposed in ACSAC'10 under an unorthodox approach of password wrapped credentials advanced anonymous password authentication to be a practically ready primitive, and it is being standardized. In this paper, we improve on that scheme by proposing a new method of {"}public key suppression{"} for achieving server-designated credential verifiability, a core technicality in materializing the concept of password wrapped credential. Besides better performance, our new method simplifies the configuration of the authentication server, rendering the resulting scheme even more practical. Further, we extend the idea of password wrapped credential to biometric wrapped credential, to achieve anonymous biometric authentication. As expected, biometric wrapped credentials help break the linear server-side computation barrier intrinsic in the standard setting of biometric authentication. Experimental results validate the feasibility of realizing efficient anonymous biometric authentication.",
    keywords = "Anonymous biometric authentication, Anonymous password authentication, Biometric authentication/identification, Public key suppression, Standardization",
    author = "Yanjiang Yang and Jian Weng and Haibing Lu and Youcheng Zhang and Liu, {Joseph K.} and Jianying Zhou",
    year = "2016",
    month = "5",
    day = "30",
    doi = "10.1145/2897845.2897854",
    language = "English",
    pages = "141--151",
    editor = "Wang, {XiaoFeng } and Huang, {Xinyi }",
    booktitle = "ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security",
    publisher = "Association for Computing Machinery (ACM)",
    address = "United States of America",

    }

    Yang, Y, Weng, J, Lu, H, Zhang, Y, Liu, JK & Zhou, J 2016, Credential wrapping: From anonymous password authentication to anonymous biometric authentication. in X Wang & X Huang (eds), ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security: May 30 – June 3, 2016, Xi’an, China. Association for Computing Machinery (ACM), New York, NY, pp. 141-151, ACM Symposium on Information, Computer and Communications Security 2016, Xi'an, China, 30/05/16. https://doi.org/10.1145/2897845.2897854

    Credential wrapping : From anonymous password authentication to anonymous biometric authentication. / Yang, Yanjiang; Weng, Jian; Lu, Haibing; Zhang, Youcheng; Liu, Joseph K.; Zhou, Jianying.

    ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security: May 30 – June 3, 2016, Xi’an, China. ed. / XiaoFeng Wang; Xinyi Huang. New York, NY : Association for Computing Machinery (ACM), 2016. p. 141-151.

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

    TY - GEN

    T1 - Credential wrapping

    T2 - From anonymous password authentication to anonymous biometric authentication

    AU - Yang, Yanjiang

    AU - Weng, Jian

    AU - Lu, Haibing

    AU - Zhang, Youcheng

    AU - Liu, Joseph K.

    AU - Zhou, Jianying

    PY - 2016/5/30

    Y1 - 2016/5/30

    N2 - The anonymous password authentication scheme proposed in ACSAC'10 under an unorthodox approach of password wrapped credentials advanced anonymous password authentication to be a practically ready primitive, and it is being standardized. In this paper, we improve on that scheme by proposing a new method of "public key suppression" for achieving server-designated credential verifiability, a core technicality in materializing the concept of password wrapped credential. Besides better performance, our new method simplifies the configuration of the authentication server, rendering the resulting scheme even more practical. Further, we extend the idea of password wrapped credential to biometric wrapped credential, to achieve anonymous biometric authentication. As expected, biometric wrapped credentials help break the linear server-side computation barrier intrinsic in the standard setting of biometric authentication. Experimental results validate the feasibility of realizing efficient anonymous biometric authentication.

    AB - The anonymous password authentication scheme proposed in ACSAC'10 under an unorthodox approach of password wrapped credentials advanced anonymous password authentication to be a practically ready primitive, and it is being standardized. In this paper, we improve on that scheme by proposing a new method of "public key suppression" for achieving server-designated credential verifiability, a core technicality in materializing the concept of password wrapped credential. Besides better performance, our new method simplifies the configuration of the authentication server, rendering the resulting scheme even more practical. Further, we extend the idea of password wrapped credential to biometric wrapped credential, to achieve anonymous biometric authentication. As expected, biometric wrapped credentials help break the linear server-side computation barrier intrinsic in the standard setting of biometric authentication. Experimental results validate the feasibility of realizing efficient anonymous biometric authentication.

    KW - Anonymous biometric authentication

    KW - Anonymous password authentication

    KW - Biometric authentication/identification

    KW - Public key suppression

    KW - Standardization

    UR - http://www.scopus.com/inward/record.url?scp=84979713858&partnerID=8YFLogxK

    U2 - 10.1145/2897845.2897854

    DO - 10.1145/2897845.2897854

    M3 - Conference Paper

    SP - 141

    EP - 151

    BT - ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security

    A2 - Wang, XiaoFeng

    A2 - Huang, Xinyi

    PB - Association for Computing Machinery (ACM)

    CY - New York, NY

    ER -

    Yang Y, Weng J, Lu H, Zhang Y, Liu JK, Zhou J. Credential wrapping: From anonymous password authentication to anonymous biometric authentication. In Wang X, Huang X, editors, ASIA CCS 2016 - Proceedings of the 11th ACM Asia Conference on Computer and Communications Security: May 30 – June 3, 2016, Xi’an, China. New York, NY: Association for Computing Machinery (ACM). 2016. p. 141-151 https://doi.org/10.1145/2897845.2897854