Symmetric keyring encryption scheme for biometric cryptosystem

Yen Lung Lai; Jung Yeon Hwang; Zhe Jin; Soohyong Kim; Sangrae Cho; Andrew Beng Jin Teoh

doi:10.1016/j.ins.2019.05.064

Symmetric keyring encryption scheme for biometric cryptosystem

Yen Lung Lai, Jung Yeon Hwang, Zhe Jin, Soohyong Kim, Sangrae Cho, Andrew Beng Jin Teoh

Department of Electrical and Electronic Engineering

Research output: Contribution to journal › Article › peer-review

13 Citations (Scopus)

Abstract

In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.

Original language	English
Pages (from-to)	492-509
Number of pages	18
Journal	Information sciences
Volume	502
DOIs	https://doi.org/10.1016/j.ins.2019.05.064
Publication status	Published - 2019 Oct

Bibliographical note

Funding Information:
Funding: This work was supported by the Institute for Information &communications Technology Promotion (IITP) grant funded by the Korean Government ( MSIT ) (No. 2016-0-00097, Development of a Biometrics-based Key Infrastructure Technology for Online Identification and No. 2018-0-01369, Developing Blockchain Identity Management System with Implicit Augmented Authentication and Privacy Protection for O2O Services).

Publisher Copyright:
© 2019

All Science Journal Classification (ASJC) codes

Software
Control and Systems Engineering
Theoretical Computer Science
Computer Science Applications
Information Systems and Management
Artificial Intelligence

Access to Document

10.1016/j.ins.2019.05.064

Cite this

@article{bca51039307e4fd8a10c7950a1f9f1aa,

title = "Symmetric keyring encryption scheme for biometric cryptosystem",

abstract = "In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.",

author = "Lai, {Yen Lung} and Hwang, {Jung Yeon} and Zhe Jin and Soohyong Kim and Sangrae Cho and Teoh, {Andrew Beng Jin}",

note = "Funding Information: Funding: This work was supported by the Institute for Information &communications Technology Promotion (IITP) grant funded by the Korean Government ( MSIT ) (No. 2016-0-00097, Development of a Biometrics-based Key Infrastructure Technology for Online Identification and No. 2018-0-01369, Developing Blockchain Identity Management System with Implicit Augmented Authentication and Privacy Protection for O2O Services). Publisher Copyright: {\textcopyright} 2019",

year = "2019",

month = oct,

doi = "10.1016/j.ins.2019.05.064",

language = "English",

volume = "502",

pages = "492--509",

journal = "Information Sciences",

issn = "0020-0255",

publisher = "Elsevier Inc.",

}

TY - JOUR

T1 - Symmetric keyring encryption scheme for biometric cryptosystem

AU - Lai, Yen Lung

AU - Hwang, Jung Yeon

AU - Jin, Zhe

AU - Kim, Soohyong

AU - Cho, Sangrae

AU - Teoh, Andrew Beng Jin

N1 - Funding Information: Funding: This work was supported by the Institute for Information &communications Technology Promotion (IITP) grant funded by the Korean Government ( MSIT ) (No. 2016-0-00097, Development of a Biometrics-based Key Infrastructure Technology for Online Identification and No. 2018-0-01369, Developing Blockchain Identity Management System with Implicit Augmented Authentication and Privacy Protection for O2O Services). Publisher Copyright: © 2019

PY - 2019/10

Y1 - 2019/10

N2 - In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.

AB - In this paper, we propose a novel biometric cryptosystem for vectorial biometrics called symmetric keyring encryption (SKE), inspired by Rivest's keyring model (2016). Unlike conventional biometric secret-binding primitives, such as fuzzy commitment and fuzzy vault approaches, the proposed scheme reframes the biometric secret-binding problem as a fuzzy symmetric encryption problem using a concept called a resilient vector pair. In this study, this pair resembles the encryption–decryption key pair in symmetric key cryptosystems. This scheme is realized using an index of maximum hashed vectors, a special instance of the ranking-based locality-sensitive hashing function. With a simple filtering mechanism and an [m, k] Shamir's secret-sharing scheme, we show that SKE, both in theory and in an empirical evaluation, can retrieve the exact secret with overwhelming probability for a genuine input yet negligible probability for an imposter input. Although SKE can be applied to any vectorial biometrics, we adopt fingerprint and face vectors in this work. Experiments were performed using the Fingerprint Verification Competition (FVC) and Labeled Face in the Wild (LFW) datasets. We formalize and analyze the threat model for SKE, which involves several major security attacks.

UR - http://www.scopus.com/inward/record.url?scp=85067883640&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85067883640&partnerID=8YFLogxK

U2 - 10.1016/j.ins.2019.05.064

DO - 10.1016/j.ins.2019.05.064

M3 - Article

AN - SCOPUS:85067883640

SN - 0020-0255

VL - 502

SP - 492

EP - 509

JO - Information Sciences

JF - Information Sciences

ER -

Symmetric keyring encryption scheme for biometric cryptosystem

Abstract

Bibliographical note

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this