Privacy-preserving biometric-based remote user authentication with leakage resilience
Biometric-based remote user authentication is a useful primitive that allows an authorized user to authenticate to a remote server using his biometrics. Leakage attacks, such as side-channel attacks, allow an attacker to learn partial knowledge of secrets (e.g., biometrics) stored on any physical me...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2018
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/4391 https://ink.library.smu.edu.sg/context/sis_research/article/5394/viewcontent/Privacy_PreservingBiometric_2018_afv.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-5394 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-53942020-04-08T08:07:08Z Privacy-preserving biometric-based remote user authentication with leakage resilience TIAN, Yangguang LI, Yingjiu CHEN, Rongmao LIU, Ximeng CHANG, Bing YU, Xingjie Biometric-based remote user authentication is a useful primitive that allows an authorized user to authenticate to a remote server using his biometrics. Leakage attacks, such as side-channel attacks, allow an attacker to learn partial knowledge of secrets (e.g., biometrics) stored on any physical medium. Leakage attacks can be potentially launched to any existing biometric-based remote user authentication systems. Furthermore, applying plain biometrics is an efficient and straightforward approach when designing remote user authentication schemes. However, this approach jeopardises user’s biometrics privacy. To address these issues, we propose a novel leakage-resilient and privacy-preserving biometric-based remote user authentication framework, such that registered users securely and privately authenticate to an honest-but-curious remote server in the cloud. In particular, the proposed generic framework provides optimal efficiency using lightweight symmetric-key cryptography, and it remains secure under leakage attacks. We formalize several new security models, including leakage-resilient user authenticity and leakage-resilient biometrics privacy, for biometric-based remote user authentication, and prove the security of proposed framework under standard assumptions. 2018-08-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/4391 info:doi/10.1007/978-3-030-01701-9_7 https://ink.library.smu.edu.sg/context/sis_research/article/5394/viewcontent/Privacy_PreservingBiometric_2018_afv.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Biometrics privacy Generic framework Leakage-resilient Remote user authentication Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Biometrics privacy Generic framework Leakage-resilient Remote user authentication Information Security |
| spellingShingle |
Biometrics privacy Generic framework Leakage-resilient Remote user authentication Information Security TIAN, Yangguang LI, Yingjiu CHEN, Rongmao LIU, Ximeng CHANG, Bing YU, Xingjie Privacy-preserving biometric-based remote user authentication with leakage resilience |
| description |
Biometric-based remote user authentication is a useful primitive that allows an authorized user to authenticate to a remote server using his biometrics. Leakage attacks, such as side-channel attacks, allow an attacker to learn partial knowledge of secrets (e.g., biometrics) stored on any physical medium. Leakage attacks can be potentially launched to any existing biometric-based remote user authentication systems. Furthermore, applying plain biometrics is an efficient and straightforward approach when designing remote user authentication schemes. However, this approach jeopardises user’s biometrics privacy. To address these issues, we propose a novel leakage-resilient and privacy-preserving biometric-based remote user authentication framework, such that registered users securely and privately authenticate to an honest-but-curious remote server in the cloud. In particular, the proposed generic framework provides optimal efficiency using lightweight symmetric-key cryptography, and it remains secure under leakage attacks. We formalize several new security models, including leakage-resilient user authenticity and leakage-resilient biometrics privacy, for biometric-based remote user authentication, and prove the security of proposed framework under standard assumptions. |
| format |
text |
| author |
TIAN, Yangguang LI, Yingjiu CHEN, Rongmao LIU, Ximeng CHANG, Bing YU, Xingjie |
| author_facet |
TIAN, Yangguang LI, Yingjiu CHEN, Rongmao LIU, Ximeng CHANG, Bing YU, Xingjie |
| author_sort |
TIAN, Yangguang |
| title |
Privacy-preserving biometric-based remote user authentication with leakage resilience |
| title_short |
Privacy-preserving biometric-based remote user authentication with leakage resilience |
| title_full |
Privacy-preserving biometric-based remote user authentication with leakage resilience |
| title_fullStr |
Privacy-preserving biometric-based remote user authentication with leakage resilience |
| title_full_unstemmed |
Privacy-preserving biometric-based remote user authentication with leakage resilience |
| title_sort |
privacy-preserving biometric-based remote user authentication with leakage resilience |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2018 |
| url |
https://ink.library.smu.edu.sg/sis_research/4391 https://ink.library.smu.edu.sg/context/sis_research/article/5394/viewcontent/Privacy_PreservingBiometric_2018_afv.pdf |
| _version_ |
1770574695504019456 |