TU Darmstadt / ULB / TUbiblio

Quantifying Privacy and Security of Biometric Fuzzy Commitment

Zhou, Xuebing ; Kuijper, Arjan ; Veldhuis, Raymond ; Busch, Christoph (2011)
Quantifying Privacy and Security of Biometric Fuzzy Commitment.
International Joint Conference on Biometrics 2011.
doi: 10.1109/IJCB.2011.6117543
Conference or Workshop Item, Bibliographie

Abstract

Fuzzy commitment is an efficient template protection algorithm that can improve security and safeguard privacy of biometrics. Existing theoretical security analysis has proved that although privacy leakage is unavoidable, perfect security from information-theoretical points of view is possible when bits extracted from biometric features are uniformly and independently distributed. Unfortunately, this strict condition is difficult to fulfill in practice. In many applications, dependency of binary features is ignored and security is thus suspected to be highly overestimated. This paper gives a comprehensive analysis on security and privacy of fuzzy commitment regarding empirical evaluation. The criteria representing requirements in practical applications are investigated and measured quantitatively in an existing protection system for 3D face recognition. The evaluation results show that a very significant reduction of security and enlargement of privacy leakage occur due to the dependency of biometric features. This work shows that in practice, one has to explicitly measure the security and privacy instead of trusting results under non-realistic assumptions.

Item Type: Conference or Workshop Item
Erschienen: 2011
Creators: Zhou, Xuebing ; Kuijper, Arjan ; Veldhuis, Raymond ; Busch, Christoph
Type of entry: Bibliographie
Title: Quantifying Privacy and Security of Biometric Fuzzy Commitment
Language: English
Date: 2011
Publisher: IEEE Computer Society Conference Publishing Services (CPS), Los Alamitos, Calif.
Event Title: International Joint Conference on Biometrics 2011
DOI: 10.1109/IJCB.2011.6117543
Abstract:

Fuzzy commitment is an efficient template protection algorithm that can improve security and safeguard privacy of biometrics. Existing theoretical security analysis has proved that although privacy leakage is unavoidable, perfect security from information-theoretical points of view is possible when bits extracted from biometric features are uniformly and independently distributed. Unfortunately, this strict condition is difficult to fulfill in practice. In many applications, dependency of binary features is ignored and security is thus suspected to be highly overestimated. This paper gives a comprehensive analysis on security and privacy of fuzzy commitment regarding empirical evaluation. The criteria representing requirements in practical applications are investigated and measured quantitatively in an existing protection system for 3D face recognition. The evaluation results show that a very significant reduction of security and enlargement of privacy leakage occur due to the dependency of biometric features. This work shows that in practice, one has to explicitly measure the security and privacy instead of trusting results under non-realistic assumptions.

Uncontrolled Keywords: Business Field: Digital society, Research Area: Generalized digital documents, Biometric template protection, Biometric encryption, Biometrics, Biometric identification systems
Divisions: 20 Department of Computer Science
20 Department of Computer Science > Interactive Graphics Systems
Date Deposited: 12 Nov 2018 11:16
Last Modified: 12 Nov 2018 11:16
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)
Show editorial Details Show editorial Details