Iris Ciphertext Authentication System Based on SEAL

doi:10.3969/j.issn.1671-1122.2018.12.003

Abstract

Abstract:

With the application and promotion of biometric technology, biometrics has become more and more important to identity authentication. In order to ensure the privacy of the user, the biometrics cannot be stored or manipulated in clear text. Aiming at this problem, this paper analyzes and summarizes the scheme and performance of the existing biometric authentication system, and proposes to construct and design an iris-like ciphertext authentication system based on full homomorphic encryption using FV scheme. SEAL (Simple Encrypted Arithmetic Library) library. The entire system can complete iris authentication without decrypting the iris feature template, and the database stores the homomorphic ciphertext of the iris feature template, so there is no need to worry about the leakage of the iris feature template. At the same time, the system does not require a trusted center for authentication, and the authentication is completed on the server side directly through the one-time MAC authentication method. Tests have shown that when the system adopts an iris algorithm with a low depth of calculation circuit such as the Hamming distance comparison algorithm, it has good performance, which basically meets the requirements of real application scenarios.

Key words: biometrics, fully homomorphic encryption, SEAL, iris authentication, one-time MAC authentication

CLC Number:

TP309

Xinxia SONG, Jiamin MA, Zhigang CHEN, Kefei CHEN. Iris Ciphertext Authentication System Based on SEAL[J]. Netinfo Security, 2018, 18(12): 15-22.

Figures/Tables 10

References 20

[1]	BELGUECHI R, CHERRIER E, ALIMI V, et al.An Overview on Privacy Preserving Biometrics[M]. Recent Application in Biometrics. Croatia: InTech, 2014.
[2]	RATHA N K,CONNELL J H, BOLLE R M.Enhancing Security and Privacy in Biometrics-based Authentication Systems[J]. Ibm Systems Journal, 2001, 40(3): 614-634.
[3]	JUELS A, SUDAN M.A Fuzzy Vault Scheme[J]. Designs Codes & Cryptography, 2006, 38(2): 237-257.
[4]	WATTENBERG M, WATTENBERG M.A Fuzzy Commitment Scheme[C] //ACM. The 6th ACM Conference on Computer and Communications Security, November 1-4,1999, Singapore. New York: ACM, 1999: 28-36.
[5]	BLANTON M, GASTI P.Secure and Efficient Protocols for Iris and Fierprint Identiﬁcation[C] // LNCS.Proc. of the 16thESORICS, September 12-14, 2011, Leuven, Belgium. Berlin: Springer, 2011: 190-209.
[6]	DAMGARD I, GEISLER M, KROIGARD M.Homomorphic Encryption and Secure Comparison[J]. Journal of Applied Cryptography, 2008, 1(1): 22-31.
[7]	KULKARNI R, NAMBOODIRI A.Secure Hamming Distance Based Biometric Authentication[C] // IEEE.International Conference on Biometrics, June 4-7, 2013, Madrid, Spain. New York: IEEE, 2013: 1-6.
[8]	GENTRY, CRAIG.Fully Homomorphic Encryption Using Ideal Lattices[J]. Stoc, 2009 , 9(4) :169-178.
[9]	KARABAT C, KIRAZ M, ERDOGAN H,et al.THRIVE: Threshold Homomorphic Encryption Based Secure and Privacy Preserving Biometric Veriﬁcation System[J]. Eurasip Journal on Advances in Signal Processing, 2015, 2015(1): 1-18.
[10]	SHA-3 Standard: Permutation-based Hash and Extendable-output Functions[S]. Gaithersburg: NIST, 2015.
[11]	FAN J， VERCAUTEREN F. Somewhat Practical Fully Homomorphic Encryption [EB/OL]. .
[12]	CHEN H， LAINE K， PLAYER R. Simple Encrypted Arithmetic Library - SEAL v2.1 [EB/OL]. , 2017-5-18.
[13]	BRAKERSKI Z, GENTRY C, HALEVI S.Packed Ciphertexts in LWE-Based Homomorphic Encryption[M]. Public-Key Cryptography - PKC 2013. Berlin: Springer Berlin Heidelberg, 2013.
[14]	SMART N P, VERCAUTEREN F.Fully Homomorphic SIMD Operations[J]. Designs, Codes and Cryptography, 2014, 71(1): 57-81.
[15]	DENG Jing, XU Chunxiang, YANG Haomiao.A Secure Computation Scheme of Inner Product Based on Fully Homomorphic Encryption[J].Journal of University of Electronic Science and Technology of China, 2016, 45(5): 808-811.
	邓江,许春香,杨浩淼. 一种全同态加密的安全内积计算方案[J]. 电子科技大学学报,2016,45(5):808-811.
[16]	THAVALENGAL S,BIGIOI P, CORCORAN P.Iris Authentication in Handheld Devices - Considerations for Constraint-free Acquisition[J]. IEEE Transactions on Consumer Electronics, 2015, 61(2): 245-253.
[17]	C. A. of Science-Institute of Automation. CASIA Iris Database [EB/OL]. .
[18]	MASEK L, KOVESI P. MATLAB Source Code for A Biometric Identiﬁcation System Based on Iris Patterns [EB/OL]. .
[19]	TIAN Qichuan, LIU Zhengguang.Survey of Iris Recognition[J]. Application Research of Computers, 2008, 25(5): 1295-1300.
	田启川,刘正光. 虹膜识别综述[J]. 计算机应用研究,2008,25(5):1295-1300.
[20]	ALBRECHT M R.On Dual Lattice Attacks Against Small-secret LWE and Parameter Choices in HElib and SEAL[C] // IACR. International Conference on the Theory and Applications of Cryptographic Techniques, April 30 - May 4, 2017, Paris, France. Berlin: Springer, 2017: 103-129.
	(2)

分段	n	log₂q最小值
16	128	64
8	256	65
4	512	65
2	1024	67
1	2048	68

安全等级/位	n	(log₂q)_max
80	1024	47.5
80	2048	95.4
80	4096	192
80	8192	392.1
80	16384	799.6

操作	测试1	测试2	测试3
虹膜模板打包	13.3	12.3	12.2
加密虹膜模板	105.5	107.2	104.5
总计	1047.2	985.4	1000.8

操作	测试1	测试2	测试3
一次平方	275.7	292.1	285.4
一次减法	2.8	3.0	2.9
ct_T = ct_d× r₀ + r₁	194.3	202.7	188.9
解密(ct_d, ct_T)	245.1	273.5	231.6
总计	2446.5	2544.8	2439.1