TY - JOUR
T1 - Symmetric keyring encryption scheme for biometric cryptosystem
AU - Lai, Yen Lung
AU - Hwang, Jung Yeon
AU - Jin, Zhe
AU - Kim, Soohyong
AU - Cho, Sangrae
AU - Teoh, Andrew Beng Jin
N1 - Funding Information:
Funding: This work was supported by the Institute for Information &communications Technology Promotion (IITP) grant funded by the Korean Government ( MSIT ) (No. 2016-0-00097, Development of a Biometrics-based Key Infrastructure Technology for Online Identification and No. 2018-0-01369, Developing Blockchain Identity Management System with Implicit Augmented Authentication and Privacy Protection for O2O Services).
Publisher Copyright:
© 2019
Copyright:
Copyright 2019 Elsevier B.V., All rights reserved.
PY - 2019/10
Y1 - 2019/10
N2 - In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.
AB - In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.
KW - Biometrics
KW - Face
KW - Fingerprint
KW - Keyring model
KW - Locality-sensitive hashing
KW - Symmetric encryption
UR - http://www.scopus.com/inward/record.url?scp=85067883640&partnerID=8YFLogxK
U2 - 10.1016/j.ins.2019.05.064
DO - 10.1016/j.ins.2019.05.064
M3 - Article
AN - SCOPUS:85067883640
SN - 0020-0255
VL - 502
SP - 492
EP - 509
JO - Information Sciences
JF - Information Sciences
ER -