Privacy-preserving comparison of variable-length data with application to biometric template protection

The establishment of cloud computing and big data in a wide variety of daily applications has raised some privacy concerns due to the sensitive nature of some of the processed data. This has promoted the need to develop data protection techniques, where the storage and all operations are carried out...

Descripción completa

Detalles Bibliográficos
Autores: Gomez-Barrero, Marta, Galbally Herrero, Javier, Morales Moreno, Aythami, Fiérrez Aguilar, Julián
Tipo de recurso: artículo
Fecha de publicación:2017
País:España
Institución:Universidad Autónoma de Madrid
Repositorio:Biblos-e Archivo. Repositorio Institucional de la UAM
Idioma:inglés
OAI Identifier:oai:repositorio.uam.es:10486/680541
Acceso en línea:http://hdl.handle.net/10486/680541
https://dx.doi.org/10.1109/ACCESS.2017.2691578
Access Level:acceso abierto
Palabra clave:biometrics
homomorphic encryption
privacy
security
signature
template protection
Informática
Descripción
Sumario:The establishment of cloud computing and big data in a wide variety of daily applications has raised some privacy concerns due to the sensitive nature of some of the processed data. This has promoted the need to develop data protection techniques, where the storage and all operations are carried out without disclosing any information. Following this trend, this paper presents a new approach to efficiently compare variable-length data in the encrypted domain using homomorphic encryption where only encrypted data is stored or exchanged. The new variable-length-based algorithm is fused with existing fixed-length techniques in order to obtain increased comparison accuracy. To assess the soundness of the proposed approach, we evaluate its performance on a particular application: a multi-algorithm biometric template protection system based on dynamic signatures that complies with the requirements described in the ISO/IEC 24745 standard on biometric information protection. Experiments have been carried out on a publicly available database and a free implementation of the Paillier cryptosystem to ensure reproducibility and comparability to other schemes.