| Presentation | 2014-07-04 Vulnerability in a Privacy-preserving Biometric Authentication by using Homomorphic Encryption Yumi SAKEMI, Masahiko TAKENAKA, Naoya TORII, Masaya YASUDA, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Biometric authentication attracts much attention because of the reuse problem of IDs and passwords. Recently, privacy-preserving biometric authentication in which authentication is executed on encrypted biometric information by homomorphic-encryption have been proposed. In our previous work, we have shown a spoofing attack to arbitrary user against a cancelable biometric authentication scheme by using homomorphic encryption proposed by Hattori et al. when binary coding is used. In addition, a recovery attack for encrypted template have been proposed by using our spoofing attack. These attack use a problem in process that calculates a squared euclidean distance between template and biometric information to compare. Therefore, our attack is not applicable to scheme that does not use a squared euclidean distance. This paper shows that an adversary can spoof to an arbitrary users with high probability against a privacy-preserving biometric authentication scheme by Yasuda et al. that uses hamming distance. Furthermore, by extending our proposed spoofing attack, we show that an adversary is able to recover the original biometric information by using the decryption server as a authentication oracle. These proposed attack are applicable if the feature vector is represented by a binary coding. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | privacy-preserving biometric authentication / homomorphic encryption / attack / spoofing / feature vector / recovery / oracle |
| Paper # | ISEC2014-41,SITE2014-36,ICSS2014-45,EMM2014-41 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2014/6/26(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Vulnerability in a Privacy-preserving Biometric Authentication by using Homomorphic Encryption |
| Sub Title (in English) | |
| Keyword(1) | privacy-preserving biometric authentication |
| Keyword(2) | homomorphic encryption |
| Keyword(3) | attack |
| Keyword(4) | spoofing |
| Keyword(5) | feature vector |
| Keyword(6) | recovery |
| Keyword(7) | oracle |
| 1st Author's Name | Yumi SAKEMI |
| 1st Author's Affiliation | FUJITSU Laboratories Ltd.() |
| 2nd Author's Name | Masahiko TAKENAKA |
| 2nd Author's Affiliation | FUJITSU Laboratories Ltd. |
| 3rd Author's Name | Naoya TORII |
| 3rd Author's Affiliation | FUJITSU Laboratories Ltd. |
| 4th Author's Name | Masaya YASUDA |
| 4th Author's Affiliation | FUJITSU Laboratories Ltd. |
| Date | 2014-07-04 |
| Paper # | ISEC2014-41,SITE2014-36,ICSS2014-45,EMM2014-41 |
| Volume (vol) | vol.114 |
| Number (no) | 117 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |