Subspace Fuzzy Vault
Fuzzy vault is a scheme providing secure authentication based on fuzzy matching of sets. A major application is the use of biometric features for authentication, whereby unencrypted storage of these features is not an option because of security concerns. While there is still ongoing research around the practical implementation of such schemes, we propose and analyze here an alternative construction based on subspace codes. This offers some advantages in terms of security, as an eventual discovery of the key does not provide an obvious access to the features. Crucial for an efficient implementation are the computational complexity and the choice of good code parameters. The parameters depend on the particular application, e.g. the biometric feature to be stored and the rate one wants to allow for false acceptance. The developed theory is closely linked to constructions of subspace codes studied in the area of random network coding.
KeywordsSpread Code Biometric Feature Brute Force Attack Random Network Code Irreducible Monic Polynomial
Kyle Marshall and Joachim Rosenthal were supported by Swiss National Science Foundation Grant no. 149716. Anna-Lena Trautmann was supported by Swiss National Science Foundation Fellowship no. 147304. The authors would like to thank Marco Bianchi and Natalia Silberstein for fruitful discussions regarding this work.
- 1.Baldi M, Bianchi M, Chiaraluce F, Rosenthal J, Schipani D (2011) On fuzzy syndrome hashing with LDPC coding. In: Proceeding of 4th international sympoisum applied sciences in biomedical and communication technologies (ISABEL), pp 1–5Google Scholar
- 3.Clancy C (2003) Secure smartcard-based fingerprint authentication. In: ACM Workshop on biometrics: methods and applications, pp 45–52Google Scholar
- 4.Fontein F, Marshall K, Rosenthal J, Schipani D, Trautmann AL (2012) On burst error correction and storage security of noisy data. In: Proceeding 20th international symposium mathematical theory of networks and systems (MTNS)Google Scholar
- 6.Hartloff J, Bileschi M, Tulyakov S, Dobler J, Rudra A, Govindaraju V (2013) Security analysis for fingerprint fuzzy vaults. In: SPIE defense, security and sensingGoogle Scholar
- 8.Juels A, Wattenberg M (1999) A fuzzy commitment scheme. In: Proceeding 6th ACM conference on computer and communications security, CCS ’99, pp 28–36Google Scholar
- 9.Koetter R, Kschichang F (2007) Coding for errors and erasures in random network coding. In Proceeding of IEEE international symposium, information theoryGoogle Scholar
- 12.MacWilliams FJ, Sloane N (1977) The Theory of Error-Correcting Codes. North Holland, AmsterdamGoogle Scholar
- 13.Manganiello F, Gorla E, Rosenthal J (2008) Spread codes and spread decoding in network coding. In: Proceeding of IEEE international symposium information theory, pp 881–885Google Scholar
- 15.Mihailescu P, Munk A, Tams B (2009) The fuzzy vault for fingerprints is vulnerable to brute force attack. In: Proceeding of BIOSIG, pp 43–54Google Scholar
- 16.Poon HT, Miri A (2012) On efficient decoding for the fuzzy vault scheme. In: IEEE 11th International conference information science signal processing and their application, pp 454–459Google Scholar
- 17.Schipani D, Rosenthal J (2010) Coding solutions for the secure biometric storage problem. In: Information theory workshop (ITW), 2010 IEEE, Dublin, Ireland, pp 1–4Google Scholar