A Research on On-line Biometric Authentication System with Privacy Protection on the Internet

• Project/Area Number: 18500016
• Research Category: Grant-in-Aid for Scientific Research (C)
• Allocation Type: Single-year Grants
• Section: 一般
• Research Field: Fundamental theory of informatics
• Research Institution: Nagasaki University (2007); Institute of Systems & Information Technologies KYUSHU (2006)
• Principal Investigator: UESHIGE Yoshifumi Nagasaki University, Information Media Center, Associate Professor (00300666)
• Co-Investigator(Kenkyū-buntansha): SAKURAI Kouichi Kyushu University, Graduate School of Information Science and Electrical Engineering, Professor (60264066) ; KAMATA Sei-ichiro Waseda University, Graduate School of Information, Production and Systems, Professor (00204602)
• Project Period (FY): 2006 – 2007
• Project Status: Completed (Fiscal Year 2007)
• Budget Amount: ¥3,630,000 (Direct Cost: ¥3,300,000、Indirect Cost: ¥330,000); Fiscal Year 2007: ¥1,430,000 (Direct Cost: ¥1,100,000、Indirect Cost: ¥330,000); Fiscal Year 2006: ¥2,200,000 (Direct Cost: ¥2,200,000)
• Keywords: Algorithms / Cryptography and Authentication / Secure Network / Advanced Network / バイオメトリクス / 認証 / テンプレート / データベース / セキュリティ

Research Abstract

The biometrics rapidly prevails in society like this. In these examples, the biometric systems are applied in closed environments, however, there are fervent social demands about the biometric systems applied to the authentication on internet services such as internet banking, electrical government, approval in company, etc.
On the other hands, the biometric system causes some privacy issues. That is, in some cases, significant privacy information like a medical history is compromised from the biometric information which is including biometric raw data acquired from biometric sensor devices, the feature information extracted from the corresponding biometric raw data, and enrolled templates.
Therefore, we investigate novel biometric authentication framework and template database in the viewpoint of privacy protection.
1. One-Time Biometric Authentication
We proposed a novel protection technique for the information of biometric authentication, especially the feature information and the templ ates. The point of our proposal is that the extracted features and the enrolled templates are transformed by one-time transformation that is generated in each authentication. The transformed features and templates travel through insecure communication line like the internet, and they are used in matching process. This technique causes security against eavesdropping and replay attacks on the internet, because the transmitted feature information and the templates are different every time.
2. Secure Distributed Storage Scheme in Biometric Template Database
We mentioned the each biometric template consists of multiple elements like a fingerprint minutiae. We proposed a distributed storage scheme of the elements of the templates by scrambling indices of storage address with hash table for each enrolled person. The indices are determined from the hash value of combination of binary data of the elements of the enrolled template, and pseudo random number with a seed value based on the owner's individual data. In this solution, the adjacent data in the storage device are not from a unique person's template. Therefore, no adversary reconstructs each enrolled person's template, unless the map of the storage address is stolen. In addition, this procedure has an effect on disturbance of the forgery.
3. Biometric Template Database by using Mutual Correlation of Enrolled Templates
We supposed the biometric templates have mutual correlation between the registrants on the database. We proposed the storage scheme for the biometric database which separates the templates to average data of the all enrolled templates. The average data and the difference data are stored separably. The average data are denoted by average images of all enrolled images, or indices of vector quantization for vector form data. Because reconstruction of the templates requires both the average data and the difference data, if attacker obtains no information of the average data this scheme is able to prevents malicious manipulation against the enrolled templates.

Research Products

• [Journal Article] A Proposal of Secure Storage Scheme in Biometric Template Database (2006)
  • Author(s): Yoshifumi Ueshige, Kouichi Sakurai
  • Journal Title: International Workshop on Universal Framework for Identity Documents Pages: 25-31
• [Journal Article] A Proposal of One-Time Biometric Authentication (2006)
  • Author(s): Yoshifumi Ueshige, Kouichi Sakurai
  • Journal Title: The 2006 International Conference on Security ＆ Management Pages: 78-83
• [Presentation] 登録テンプレート間の相関性を利用したバイオメトリックテンプレート格納に関する-検討 (2007)
  • Author(s): 上繁 義史, 桜井 幸一
  • Organizer: 2007年暗号と情報セキュリティシンポジウム
  • Place of Presentation: 長崎県佐世保市
  • Description: 「研究成果報告書概要(和文)」より
• [Presentation] A Proposal on Biometric Template Database by using Mutual Correlation of Enrolled Templates (2007)
  • Author(s): Yoshifumi Ueshige, Sei-ichiro Kamata, Kouichi Sakurai
  • Organizer: 国際会議The 2nd Joint Workshop on International Security
  • Place of Presentation: 東京都
  • Description: 「研究成果報告書概要(和文)」より
• [Presentation] A Study on Biometric Template Storage Scheme by using Correlation of Enrolled Templates(in Japanese, without review) (2007)
  • Author(s): Yoshifumi, Ueshige, Kouichi, Sakurai
  • Organizer: The 2007 Symposium on Cryptography and Information Security
  • Place of Presentation: Sasebo, Japan
  • Description: 「研究成果報告書概要(欧文)」より
• [Presentation] A Proposal on Biometric Template Database by using Mutual Correlation of Enrolled Templates(with review) (2007)
  • Author(s): Yoshifumi, Ueshige, Sei-ichiro, Kamata, Kouichi, Sakurai
  • Organizer: The 2nd Joint Workshop on International Security
  • Place of Presentation: Tokyo, Japan
  • Description: 「研究成果報告書概要(欧文)」より
• [Presentation] A Proposal on Biometric Template Database by using Mutual Correlation of Enrolled Templates (2007)
  • Author(s): Ybshifumi Ueshige, Sei-ichiro Kamata, and Kouichi Sakurai
  • Organizer: The 2nd Joint Workshop on International Security
  • Place of Presentation: Waseda University
• [Presentation] A Proposal of One-Time Biometric Authentication (2006)
  • Author(s): Yoshifumi Ueshige, Kouichi Sakurai
  • Organizer: 国際会議The 2006 Intemational Conference on Security&Management
  • Place of Presentation: ラスベガス・アメリカ
  • Description: 「研究成果報告書概要(和文)」より
• [Presentation] A Proposal of Secure Storage Scheme in Biometric Template Database (2006)
  • Author(s): Yoshifumi Ueshige, Kouichi Sakurai
  • Organizer: 国際会議International Workshop on Universal Framework for Identity Documents
  • Place of Presentation: 大連・中国
  • Description: 「研究成果報告書概要(和文)」より
• [Presentation] A Proposal of One-Time Biometric Authentication(with review) (2006)
  • Author(s): Yoshifumi, Ueshige, Kouichi, Sakurai
  • Organizer: The 2006 International Conference on Security & Management
  • Place of Presentation: Las Vegas, USA
  • Description: 「研究成果報告書概要(欧文)」より
• [Presentation] A Proposal of Secure Storage Scheme in Biometric Template Database(with review) (2006)
  • Author(s): Yoshifumi, Ueshige, Kouichi, Sakurai
  • Organizer: International Workshop on Universal Framework for Identity Documents
  • Place of Presentation: Dalian, China
  • Description: 「研究成果報告書概要(欧文)」より
• [Patent(Industrial Property Rights)] 格納方法、その格納方法をコンピュータに実行させることが可能なプログラム、データ管理システム、及び管理装置 (2006)
  • Inventor(s): 上繁 義史, 桜井 幸一
  • Industrial Property Rights Holder: 財団法人九州システム情報技術研究所
  • Filing Date: 2006-10-20
  • Description: 「研究成果報告書概要(和文)」より
• [Patent(Industrial Property Rights)] 格納方法、その格納方法をコンピュータに実行させることが可能なプログラム、データ管理システム、及び管理装置 (2006)
  • Inventor(s): 上繁義史, 櫻井幸一
  • Industrial Property Rights Holder: 財団法人九州システム情報技術研究所
  • Industrial Property Number: 2006-286978
  • Filing Date: 2006-10-20