On the performance of helper data template protection schemes

E.J.C. Kelkboom; Emile Josephus Carlos Kelkboom

doi:10.3990/1.9789036530743

On the performance of helper data template protection schemes

E.J.C. Kelkboom
, Emile Josephus Carlos Kelkboom

Databases (Former)

Research output: Thesis › PhD Thesis - Research UT, graduation UT

872 Downloads (Pure)

Abstract

The use of biometrics looks promising as it is already being applied in elec- tronic passports, ePassports, on a global scale. Because the biometric data has to be stored as a reference template on either a central or personal storage de- vice, its wide-spread use introduces new security and privacy risks such as (i) identity fraud, (ii) cross-matching, (iii) irrevocability and (iv) leaking sensitive medical information. Mitigating these risks is essential to obtain the accep- tance from the subjects of the biometric systems and therefore facilitating the successful implementation on a large-scale basis. A solution to mitigate these risks is to use template protection techniques. The required protection properties of the stored reference template according to ISO guidelines are (i) irreversibility, (ii) renewability and (iii) unlinkability. A known template protection scheme is the helper data system (HDS). The fun- damental principle of the HDS is to bind a key with the biometric sample with use of helper data and cryptography, as such that the key can be reproduced or released given another biometric sample of the same subject. The identity check is then performed in a secure way by comparing the hash of the key. Hence, the size of the key determines the amount of protection. This thesis extensively investigates the HDS system, namely (i) the the- oretical classication performance, (ii) the maximum key size, (iii) the irre- versibility and unlinkability properties, and (iv) the optimal multi-sample and multi-algorithm fusion method. The theoretical classication performance of the biometric system is deter- mined by assuming that the features extracted from the biometric sample are Gaussian distributed. With this assumption we investigate the in uence of the bit extraction scheme on the classication performance. With use of the the- oretical framework, the maximum size of the key is determined by assuming the error-correcting code to operate on Shannon's bound. We also show three vulnerabilities of HDS that aect the irreversibility and unlinkability property and propose solutions. Finally, we study the optimal level of applying multi- sample and multi-algorithm fusion with the HDS at either feature-, score-, or decision-level.

Original language	English
Qualification	Doctor of Philosophy
Awarding Institution	University of Twente
Supervisors/Advisors	Jonker, Willem, Supervisor Veldhuis, Raymond N.J., Advisor
Thesis sponsors	Koninklijke Philips Electronics N.V.
Award date	1 Oct 2010
Place of Publication	Enschede
Publisher	University of Twente
Print ISBNs	978-90-365-3074-3
DOIs	https://doi.org/10.3990/1.9789036530743
Publication status	Published - 1 Oct 2010

Keywords

IR-73272
METIS-271061
helper data systems (HDS)
privacy enhancing technologies (PET)
EWI-18568
EC Grant Agreement nr.: FP6/026845
bit extraction
Template Protection
Biometrics

Access to Document

10.3990/1.9789036530743

thesis_E_KelkboomFinal published version, 4.14 MB
Thesis_KelkboomFinal published version, 6.39 MB

Cite this

@phdthesis{fec39188dab84242be9a0e3bfa448000,

title = "On the performance of helper data template protection schemes",

abstract = "The use of biometrics looks promising as it is already being applied in elec- tronic passports, ePassports, on a global scale. Because the biometric data has to be stored as a reference template on either a central or personal storage de- vice, its wide-spread use introduces new security and privacy risks such as (i) identity fraud, (ii) cross-matching, (iii) irrevocability and (iv) leaking sensitive medical information. Mitigating these risks is essential to obtain the accep- tance from the subjects of the biometric systems and therefore facilitating the successful implementation on a large-scale basis. A solution to mitigate these risks is to use template protection techniques. The required protection properties of the stored reference template according to ISO guidelines are (i) irreversibility, (ii) renewability and (iii) unlinkability. A known template protection scheme is the helper data system (HDS). The fun- damental principle of the HDS is to bind a key with the biometric sample with use of helper data and cryptography, as such that the key can be reproduced or released given another biometric sample of the same subject. The identity check is then performed in a secure way by comparing the hash of the key. Hence, the size of the key determines the amount of protection. This thesis extensively investigates the HDS system, namely (i) the the- oretical classication performance, (ii) the maximum key size, (iii) the irre- versibility and unlinkability properties, and (iv) the optimal multi-sample and multi-algorithm fusion method. The theoretical classication performance of the biometric system is deter- mined by assuming that the features extracted from the biometric sample are Gaussian distributed. With this assumption we investigate the in uence of the bit extraction scheme on the classication performance. With use of the the- oretical framework, the maximum size of the key is determined by assuming the error-correcting code to operate on Shannon's bound. We also show three vulnerabilities of HDS that aect the irreversibility and unlinkability property and propose solutions. Finally, we study the optimal level of applying multi- sample and multi-algorithm fusion with the HDS at either feature-, score-, or decision-level.",

keywords = "IR-73272, METIS-271061, helper data systems (HDS), privacy enhancing technologies (PET), EWI-18568, EC Grant Agreement nr.: FP6/026845, bit extraction, Template Protection, Biometrics",

author = "E.J.C. Kelkboom and Kelkboom, \{Emile Josephus Carlos\}",

note = "10.3990/1.9789036530743 ",

year = "2010",

month = oct,

day = "1",

doi = "10.3990/1.9789036530743",

language = "English",

isbn = "978-90-365-3074-3",

publisher = "University of Twente",

address = "Netherlands",

type = "PhD Thesis - Research UT, graduation UT",

school = "University of Twente",

}

TY - THES

T1 - On the performance of helper data template protection schemes

AU - Kelkboom, E.J.C.

AU - Kelkboom, Emile Josephus Carlos

N1 - 10.3990/1.9789036530743

PY - 2010/10/1

Y1 - 2010/10/1

N2 - The use of biometrics looks promising as it is already being applied in elec- tronic passports, ePassports, on a global scale. Because the biometric data has to be stored as a reference template on either a central or personal storage de- vice, its wide-spread use introduces new security and privacy risks such as (i) identity fraud, (ii) cross-matching, (iii) irrevocability and (iv) leaking sensitive medical information. Mitigating these risks is essential to obtain the accep- tance from the subjects of the biometric systems and therefore facilitating the successful implementation on a large-scale basis. A solution to mitigate these risks is to use template protection techniques. The required protection properties of the stored reference template according to ISO guidelines are (i) irreversibility, (ii) renewability and (iii) unlinkability. A known template protection scheme is the helper data system (HDS). The fun- damental principle of the HDS is to bind a key with the biometric sample with use of helper data and cryptography, as such that the key can be reproduced or released given another biometric sample of the same subject. The identity check is then performed in a secure way by comparing the hash of the key. Hence, the size of the key determines the amount of protection. This thesis extensively investigates the HDS system, namely (i) the the- oretical classication performance, (ii) the maximum key size, (iii) the irre- versibility and unlinkability properties, and (iv) the optimal multi-sample and multi-algorithm fusion method. The theoretical classication performance of the biometric system is deter- mined by assuming that the features extracted from the biometric sample are Gaussian distributed. With this assumption we investigate the in uence of the bit extraction scheme on the classication performance. With use of the the- oretical framework, the maximum size of the key is determined by assuming the error-correcting code to operate on Shannon's bound. We also show three vulnerabilities of HDS that aect the irreversibility and unlinkability property and propose solutions. Finally, we study the optimal level of applying multi- sample and multi-algorithm fusion with the HDS at either feature-, score-, or decision-level.

AB - The use of biometrics looks promising as it is already being applied in elec- tronic passports, ePassports, on a global scale. Because the biometric data has to be stored as a reference template on either a central or personal storage de- vice, its wide-spread use introduces new security and privacy risks such as (i) identity fraud, (ii) cross-matching, (iii) irrevocability and (iv) leaking sensitive medical information. Mitigating these risks is essential to obtain the accep- tance from the subjects of the biometric systems and therefore facilitating the successful implementation on a large-scale basis. A solution to mitigate these risks is to use template protection techniques. The required protection properties of the stored reference template according to ISO guidelines are (i) irreversibility, (ii) renewability and (iii) unlinkability. A known template protection scheme is the helper data system (HDS). The fun- damental principle of the HDS is to bind a key with the biometric sample with use of helper data and cryptography, as such that the key can be reproduced or released given another biometric sample of the same subject. The identity check is then performed in a secure way by comparing the hash of the key. Hence, the size of the key determines the amount of protection. This thesis extensively investigates the HDS system, namely (i) the the- oretical classication performance, (ii) the maximum key size, (iii) the irre- versibility and unlinkability properties, and (iv) the optimal multi-sample and multi-algorithm fusion method. The theoretical classication performance of the biometric system is deter- mined by assuming that the features extracted from the biometric sample are Gaussian distributed. With this assumption we investigate the in uence of the bit extraction scheme on the classication performance. With use of the the- oretical framework, the maximum size of the key is determined by assuming the error-correcting code to operate on Shannon's bound. We also show three vulnerabilities of HDS that aect the irreversibility and unlinkability property and propose solutions. Finally, we study the optimal level of applying multi- sample and multi-algorithm fusion with the HDS at either feature-, score-, or decision-level.

KW - IR-73272

KW - METIS-271061

KW - helper data systems (HDS)

KW - privacy enhancing technologies (PET)

KW - EWI-18568

KW - EC Grant Agreement nr.: FP6/026845

KW - bit extraction

KW - Template Protection

KW - Biometrics

U2 - 10.3990/1.9789036530743

DO - 10.3990/1.9789036530743

M3 - PhD Thesis - Research UT, graduation UT

SN - 978-90-365-3074-3

PB - University of Twente

CY - Enschede

ER -

On the performance of helper data template protection schemes

Abstract

Keywords

Access to Document

Fingerprint

Cite this