Security of a Privacy-Preserving Biometric Authentication Protocol Revisited
Paper i proceeding, 2014

Biometric authentication establishes the identity of an individual based on biometric templates (e.g. fingerprints, retina scans etc.). Although biometric authentication has important advantages and many applications, it also raises serious security and privacy concerns. Here, we investigate a biometric authentication protocol that has been proposed by Bringer et al. and adopts a distributed architecture (i.e. multiple entities are involved in the authentication process). This protocol was proven to be secure and privacy-preserving in the honest-but-curious (or passive) attack model. We present an attack algorithm that can be employed to mount a number of attacks on the protocol under investigation. We then propose an improved version of the Bringer et al. protocol that is secure in the malicious (or active) insider attack model and has forward security.

forward security


active attack

privacy-preserving biometric authentication

homomorphic encryption


Aysajan Abidin

Chalmers, Data- och informationsteknik, Nätverk och system

Kanta Matsuura

Aikaterini Mitrokotsa

Chalmers, Data- och informationsteknik, Nätverk och system

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

03029743 (ISSN) 16113349 (eISSN)

Vol. 8813 290-304
978-3-319-12280-9 (ISBN)


Informations- och kommunikationsteknik


Datavetenskap (datalogi)





Mer information