Cloud-based biometrics processing for privacy-preserving identification

Changhee Hahn, Hyungjune Shin, Junbeom Hur

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

With the increasing number of users enrolled, biometric identification requires more computing resources to scan all records of a database and locate the best match. As such, database owners are willing to delegate user biometric information (in encrypted state) to the cloud to enroll and identify users, while preserving privacy. Wang et al. proposed a cloud-based privacy-preserving biometric scheme, a.k.a. CloudBI, in ESORICS 2015, but their security assumption does not capture practical aspects of real world attacks. In this paper, we show how an attack enrolls fake biometric data and then manipulates them to recover encrypted an identification request in CloudBI. Next, we propose an effective security patch to CloudBI, which is secure against enrollment-level attackers. Experimental results show that the proposed security patch bring about little performance degradation to CloudBI.

Original languageEnglish
Title of host publicationICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks
PublisherIEEE Computer Society
Pages595-600
Number of pages6
ISBN (Electronic)9781509047499
DOIs
Publication statusPublished - 2017 Jul 26
Event9th International Conference on Ubiquitous and Future Networks, ICUFN 2017 - Milan, Italy
Duration: 2017 Jul 42017 Jul 7

Publication series

NameInternational Conference on Ubiquitous and Future Networks, ICUFN
ISSN (Print)2165-8528
ISSN (Electronic)2165-8536

Other

Other9th International Conference on Ubiquitous and Future Networks, ICUFN 2017
CountryItaly
CityMilan
Period17/7/417/7/7

Fingerprint

Biometrics
Processing
Degradation

Keywords

  • Biometrics
  • Cloud
  • Identification

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Hardware and Architecture

Cite this

Hahn, C., Shin, H., & Hur, J. (2017). Cloud-based biometrics processing for privacy-preserving identification. In ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks (pp. 595-600). [7993859] (International Conference on Ubiquitous and Future Networks, ICUFN). IEEE Computer Society. https://doi.org/10.1109/ICUFN.2017.7993859

Cloud-based biometrics processing for privacy-preserving identification. / Hahn, Changhee; Shin, Hyungjune; Hur, Junbeom.

ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks. IEEE Computer Society, 2017. p. 595-600 7993859 (International Conference on Ubiquitous and Future Networks, ICUFN).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Hahn, C, Shin, H & Hur, J 2017, Cloud-based biometrics processing for privacy-preserving identification. in ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks., 7993859, International Conference on Ubiquitous and Future Networks, ICUFN, IEEE Computer Society, pp. 595-600, 9th International Conference on Ubiquitous and Future Networks, ICUFN 2017, Milan, Italy, 17/7/4. https://doi.org/10.1109/ICUFN.2017.7993859
Hahn C, Shin H, Hur J. Cloud-based biometrics processing for privacy-preserving identification. In ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks. IEEE Computer Society. 2017. p. 595-600. 7993859. (International Conference on Ubiquitous and Future Networks, ICUFN). https://doi.org/10.1109/ICUFN.2017.7993859
Hahn, Changhee ; Shin, Hyungjune ; Hur, Junbeom. / Cloud-based biometrics processing for privacy-preserving identification. ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks. IEEE Computer Society, 2017. pp. 595-600 (International Conference on Ubiquitous and Future Networks, ICUFN).
@inproceedings{64b3ff7305094a7e8acf63237a73122a,
title = "Cloud-based biometrics processing for privacy-preserving identification",
abstract = "With the increasing number of users enrolled, biometric identification requires more computing resources to scan all records of a database and locate the best match. As such, database owners are willing to delegate user biometric information (in encrypted state) to the cloud to enroll and identify users, while preserving privacy. Wang et al. proposed a cloud-based privacy-preserving biometric scheme, a.k.a. CloudBI, in ESORICS 2015, but their security assumption does not capture practical aspects of real world attacks. In this paper, we show how an attack enrolls fake biometric data and then manipulates them to recover encrypted an identification request in CloudBI. Next, we propose an effective security patch to CloudBI, which is secure against enrollment-level attackers. Experimental results show that the proposed security patch bring about little performance degradation to CloudBI.",
keywords = "Biometrics, Cloud, Identification",
author = "Changhee Hahn and Hyungjune Shin and Junbeom Hur",
year = "2017",
month = "7",
day = "26",
doi = "10.1109/ICUFN.2017.7993859",
language = "English",
series = "International Conference on Ubiquitous and Future Networks, ICUFN",
publisher = "IEEE Computer Society",
pages = "595--600",
booktitle = "ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks",

}

TY - GEN

T1 - Cloud-based biometrics processing for privacy-preserving identification

AU - Hahn, Changhee

AU - Shin, Hyungjune

AU - Hur, Junbeom

PY - 2017/7/26

Y1 - 2017/7/26

N2 - With the increasing number of users enrolled, biometric identification requires more computing resources to scan all records of a database and locate the best match. As such, database owners are willing to delegate user biometric information (in encrypted state) to the cloud to enroll and identify users, while preserving privacy. Wang et al. proposed a cloud-based privacy-preserving biometric scheme, a.k.a. CloudBI, in ESORICS 2015, but their security assumption does not capture practical aspects of real world attacks. In this paper, we show how an attack enrolls fake biometric data and then manipulates them to recover encrypted an identification request in CloudBI. Next, we propose an effective security patch to CloudBI, which is secure against enrollment-level attackers. Experimental results show that the proposed security patch bring about little performance degradation to CloudBI.

AB - With the increasing number of users enrolled, biometric identification requires more computing resources to scan all records of a database and locate the best match. As such, database owners are willing to delegate user biometric information (in encrypted state) to the cloud to enroll and identify users, while preserving privacy. Wang et al. proposed a cloud-based privacy-preserving biometric scheme, a.k.a. CloudBI, in ESORICS 2015, but their security assumption does not capture practical aspects of real world attacks. In this paper, we show how an attack enrolls fake biometric data and then manipulates them to recover encrypted an identification request in CloudBI. Next, we propose an effective security patch to CloudBI, which is secure against enrollment-level attackers. Experimental results show that the proposed security patch bring about little performance degradation to CloudBI.

KW - Biometrics

KW - Cloud

KW - Identification

UR - http://www.scopus.com/inward/record.url?scp=85028029702&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85028029702&partnerID=8YFLogxK

U2 - 10.1109/ICUFN.2017.7993859

DO - 10.1109/ICUFN.2017.7993859

M3 - Conference contribution

AN - SCOPUS:85028029702

T3 - International Conference on Ubiquitous and Future Networks, ICUFN

SP - 595

EP - 600

BT - ICUFN 2017 - 9th International Conference on Ubiquitous and Future Networks

PB - IEEE Computer Society

ER -