Personalised cryptographic key generation based on FaceHashing

Andrew B.J. Teoh, David C.L. Ngo, Alwyn Goh

Research output: Contribution to journalArticle

90 Citations (Scopus)


Among the various computer security techniques practice today, cryptography has been identified as one of the most important solutions in the integrated digital security system. Cryptographic techniques such as encryption can provide very long passwords that are not required to be remembered but are in turn protected by simple password, hence defecting their purpose. In this paper, we proposed a novel two-stage technique to generate personalized cryptographic keys from the face biometric, which offers the inextricably link to its owner. At the first stage, integral transform of biometric input is to discretise to produce a set of bit representation with a set of tokenised pseudo random number, coined as FaceHash. In the second stage, FaceHash is then securely reduced to a single cryptographic key via Shamir secret-sharing. Tokenised FaceHashing is rigorously protective of the face data, with security comparable to cryptographic hashing of token and knowledge key-factor. The key is constructed to resist cryptanalysis even against an adversary who captures the user device or the feature descriptor.

Original languageEnglish
Pages (from-to)606-614
Number of pages9
JournalComputers and Security
Issue number7
Publication statusPublished - 2004 Oct 1


All Science Journal Classification (ASJC) codes

  • Computer Science(all)
  • Law

Cite this