Privacy-preserving biometrics authentication systems using fully homomorphic encryption

Wilson Abel Alberto Torres, Nandita Bhattacharjee, Balasubramaniam Srinivasan

    Research output: Contribution to journalArticleResearchpeer-review

    Abstract

    Purpose - The purpose of this paper is to determine the effectiveness of using fully homomorphic encryption (FHE) to preserve the privacy of biometric data in an authentication system. Biometrics offers higher accuracy for personal recognition than traditional methods because of its properties. Biometric data are permanently linked with anindividual and cannot be revokedor cancelled, especially when biometric data are compromised, leading to privacy issues. Design/methodology/approach ? By reviewing current approaches, FHE is considered as a promising solution for the privacy issue because of its ability to perform computations in the encrypted domain. The authors studied the effectiveness of FHE in biometric authentication systems. In doing so, the authors undertake the study by implementing a protocol for biometric authentication system using iris. Findings ? The security analysis of the implementation scheme demonstrates the effectiveness of FHE to protect the privacy of biometric data, as unlimited operations can be performed in the encrypted domain, and the FHE secret key is not shared with any other party during the authentication protocol. Research limitations/implications ? The use of malicious model in the design of the authentication protocol to improve the privacy, packing methods and use of low-level programming language to enhance performance of the system needs to be further investigated. Originality/value - The main contributions of this paper are the implementation of a privacy-preserving iris biometric authentication protocol adapted to lattice-based FHE and a sound security analysis of authentication and privacy.
    Original languageEnglish
    Pages (from-to)151 - 168
    Number of pages18
    JournalInternational Journal of Pervasive Computing and Communications
    Volume11
    Issue number2
    DOIs
    Publication statusPublished - 2015

    Cite this

    Alberto Torres, Wilson Abel ; Bhattacharjee, Nandita ; Srinivasan, Balasubramaniam. / Privacy-preserving biometrics authentication systems using fully homomorphic encryption. In: International Journal of Pervasive Computing and Communications. 2015 ; Vol. 11, No. 2. pp. 151 - 168.
    @article{2deda3abb54d4f6595c2c365472ae186,
    title = "Privacy-preserving biometrics authentication systems using fully homomorphic encryption",
    abstract = "Purpose - The purpose of this paper is to determine the effectiveness of using fully homomorphic encryption (FHE) to preserve the privacy of biometric data in an authentication system. Biometrics offers higher accuracy for personal recognition than traditional methods because of its properties. Biometric data are permanently linked with anindividual and cannot be revokedor cancelled, especially when biometric data are compromised, leading to privacy issues. Design/methodology/approach ? By reviewing current approaches, FHE is considered as a promising solution for the privacy issue because of its ability to perform computations in the encrypted domain. The authors studied the effectiveness of FHE in biometric authentication systems. In doing so, the authors undertake the study by implementing a protocol for biometric authentication system using iris. Findings ? The security analysis of the implementation scheme demonstrates the effectiveness of FHE to protect the privacy of biometric data, as unlimited operations can be performed in the encrypted domain, and the FHE secret key is not shared with any other party during the authentication protocol. Research limitations/implications ? The use of malicious model in the design of the authentication protocol to improve the privacy, packing methods and use of low-level programming language to enhance performance of the system needs to be further investigated. Originality/value - The main contributions of this paper are the implementation of a privacy-preserving iris biometric authentication protocol adapted to lattice-based FHE and a sound security analysis of authentication and privacy.",
    author = "{Alberto Torres}, {Wilson Abel} and Nandita Bhattacharjee and Balasubramaniam Srinivasan",
    year = "2015",
    doi = "10.1108/IJPCC-02-2015-0012",
    language = "English",
    volume = "11",
    pages = "151 -- 168",
    journal = "International Journal of Pervasive Computing and Communications",
    issn = "1742-7371",
    publisher = "Emerald",
    number = "2",

    }

    Privacy-preserving biometrics authentication systems using fully homomorphic encryption. / Alberto Torres, Wilson Abel; Bhattacharjee, Nandita; Srinivasan, Balasubramaniam.

    In: International Journal of Pervasive Computing and Communications, Vol. 11, No. 2, 2015, p. 151 - 168.

    Research output: Contribution to journalArticleResearchpeer-review

    TY - JOUR

    T1 - Privacy-preserving biometrics authentication systems using fully homomorphic encryption

    AU - Alberto Torres, Wilson Abel

    AU - Bhattacharjee, Nandita

    AU - Srinivasan, Balasubramaniam

    PY - 2015

    Y1 - 2015

    N2 - Purpose - The purpose of this paper is to determine the effectiveness of using fully homomorphic encryption (FHE) to preserve the privacy of biometric data in an authentication system. Biometrics offers higher accuracy for personal recognition than traditional methods because of its properties. Biometric data are permanently linked with anindividual and cannot be revokedor cancelled, especially when biometric data are compromised, leading to privacy issues. Design/methodology/approach ? By reviewing current approaches, FHE is considered as a promising solution for the privacy issue because of its ability to perform computations in the encrypted domain. The authors studied the effectiveness of FHE in biometric authentication systems. In doing so, the authors undertake the study by implementing a protocol for biometric authentication system using iris. Findings ? The security analysis of the implementation scheme demonstrates the effectiveness of FHE to protect the privacy of biometric data, as unlimited operations can be performed in the encrypted domain, and the FHE secret key is not shared with any other party during the authentication protocol. Research limitations/implications ? The use of malicious model in the design of the authentication protocol to improve the privacy, packing methods and use of low-level programming language to enhance performance of the system needs to be further investigated. Originality/value - The main contributions of this paper are the implementation of a privacy-preserving iris biometric authentication protocol adapted to lattice-based FHE and a sound security analysis of authentication and privacy.

    AB - Purpose - The purpose of this paper is to determine the effectiveness of using fully homomorphic encryption (FHE) to preserve the privacy of biometric data in an authentication system. Biometrics offers higher accuracy for personal recognition than traditional methods because of its properties. Biometric data are permanently linked with anindividual and cannot be revokedor cancelled, especially when biometric data are compromised, leading to privacy issues. Design/methodology/approach ? By reviewing current approaches, FHE is considered as a promising solution for the privacy issue because of its ability to perform computations in the encrypted domain. The authors studied the effectiveness of FHE in biometric authentication systems. In doing so, the authors undertake the study by implementing a protocol for biometric authentication system using iris. Findings ? The security analysis of the implementation scheme demonstrates the effectiveness of FHE to protect the privacy of biometric data, as unlimited operations can be performed in the encrypted domain, and the FHE secret key is not shared with any other party during the authentication protocol. Research limitations/implications ? The use of malicious model in the design of the authentication protocol to improve the privacy, packing methods and use of low-level programming language to enhance performance of the system needs to be further investigated. Originality/value - The main contributions of this paper are the implementation of a privacy-preserving iris biometric authentication protocol adapted to lattice-based FHE and a sound security analysis of authentication and privacy.

    UR - http://www.emeraldinsight.com/doi/pdfplus/10.1108/IJPCC-02-2015-0012

    U2 - 10.1108/IJPCC-02-2015-0012

    DO - 10.1108/IJPCC-02-2015-0012

    M3 - Article

    VL - 11

    SP - 151

    EP - 168

    JO - International Journal of Pervasive Computing and Communications

    JF - International Journal of Pervasive Computing and Communications

    SN - 1742-7371

    IS - 2

    ER -