how to generate keys from
play

How to Generate Keys from Margarita Osadchy University of Haifa - PowerPoint PPT Presentation

Nov 21, 2023 •663 likes •1.25k views

How to Generate Keys from Margarita Osadchy University of Haifa Facial Images and Keep your Joint work with Mahmood Privacy at the Same Time Sharif and Orr Dunkelman Motivation Key-Derivation: generating a secret key, from information

  1. How to Generate Keys from Margarita Osadchy University of Haifa Facial Images and Keep your Joint work with Mahmood Privacy at the Same Time Sharif and Orr Dunkelman

  2. Motivation ❖ Key-Derivation: generating a secret key, from information possessed by the user ❖ Passwords are the most widely used means for key derivation, ❖ but…

  3. Motivation ❖ Passwords are : 1. Forgettable ??

  4. Motivation ❖ Passwords are : 1. Forgettable 2. Easily observable (shoulder-surfing) What’s up doc?

  5. Motivation ❖ Passwords are : 1. Forgettable 2. Easily observable (shoulder-surfing) 3. Low entropy pwd

  6. Motivation ❖ Passwords are : 1. Forgettable 2. Easily observable (shoulder-surfing) 3. Low entropy 4. Carried over between systems pwd pwd

  7. Motivation ❖ Suggestion: use biometric data for key generation ❖ Problems : 1. It is hard/impossible to replace the biometric template in case it gets compromised 2. Privacy of the users

  8. Privacy of Biometric Data K x

  9. The Fuzziness Problem Two images of the same face are rarely identical (due to lighting, pose, expression changes ( • Taken one after the other • 81689 pixels are different • only 3061 pixels have identical values !

  10. The Fuzziness Problem ❖ Two images of the same face are rarely identical (due to lighting, pose, expression changes ( ❖ Yet we want to consistently create the same key for the user every time ❖ The fuzziness in the samples is handled by : 1. Feature extraction 2. Use of error-correction codes and helper data

  11. 3-Step Noise Reduction Process Binarization Error correction Feature extraction 0 1 ECC 1 0 0 1 reduces changes converts to binary removes the due to viewing representation and remaining conditions and removes most of noise small distortions the noise

  12. Feature Extraction User-specific features : Generic Features Eigenfaces (PCA) Histograms of low-level features, e.g.: LBPs, SIFT Fisherfaces (FLD ( Filters : Gabor features, etc training step produces user specific No training, no user parameters, stored for feature extraction specific information is required

  13. Feature Extraction Previous Work ❖ ] FYJ10] used Fisherfaces - public data looks like the users : ❖ Very discriminative (better recognition) ❖ But compromises privacy. Can’t be used!

  14. Use Generic Features? ❖ Yes, but require caution. ❖ In [KSVAZ05] high-order dependencies between different channels of the Gabor transform ❖ ➜ correlations between the bits of the suggested representation

  15. Binarization ❖ Essential for using the cryptographic constructions Biometric features can be ❖ Some claim: non-invertibility [TGN06] approximated ❖ By : - Sign of projection - Quantization Quantization is more accurate, but requires storing additional private information.

  16. Cryptographic Noise Tolerant Constructions ❖ Fuzzy Commitment [JW 99 ]: Enrollment Key Generation Binary Binary Representation of s Representation of Decode k the biometrics the biometrics Encode s 𝑙 ← {0,1} ∗ ❖ Other constructions: Fuzzy Vault [JS06], Fuzzy Extractors [DORS 08 ]

  17. Previous Work Problems 1. Short keys 2. Non-uniformly distributed binary strings as an input for the fuzzy commitment scheme 3. Dependency between bits of the biometric samples 4. Auxiliary data leaks personal information 5. No protection when the adversary gets hold of the cryptographic key

  18. Security Requirements 1. Consistency: identify a person as himself (low FRR) 2. Discrimination: impostor cannot impersonate an enrolled user (low FAR) ] BKR 08 ]: 3. Weak Biometric Privacy (REQ-WBP): computationally infeasible to learn the biometric information given the helper data 4. Strong Biometric Privacy (REQ-SBP): computationally infeasible to learn the biometric information given the helper data and the key 5. Key Randomness (REQ-KR): given access to the helper data, the key should be computationally indistinguishable from random

  19. Feature Extraction 1. Landmark Localization and Alignment ❖ Face landmark localization [ZR12] and affine transformation to a canonical pose : ❖ An essential step, due to the inability to perform alignment between enrolled and newly presented template

  20. Feature Extraction 2. Feature Extraction ❖ Local Binary Patterns (LBPs) descriptors are computed from 21 regions defined on the face : ❖ The same is done with Scale Invariant Feature Transform (SIFT) descriptors ❖ Histograms of Oriented Gradients (HoGs) are computed on the whole face

  21. Binarization by Projection     1   T h ( x ) sign W x 1 2 x

  22. Binarization by Projection     1   T h ( x ) sign W x 1 2 x +1  h i ( x ) 1 Wi -1

  23. Binarization by Projection     1   T h ( x ) sign W x 1 2 x +1  h i ( x ) 0 Wi -1

  24. Binarization by Projection     1   T h ( x ) sign W x 1 2 x +1 h(x’) ?  h i ( x ) 0 Wi -1

  25. Binarization by Projection     1   T h ( x ) sign W x 1 2 x +1  h ( x ) 0 i Wi  h ( x ' ) 0 i -1

  26. Binarization by Projection     1   T h ( x ) sign W x 1 2 x +1  h ( x ) 1 i Wi  h ( x ' ) 1 i -1

  27. Embedding in d-dimensional space -1 +1 W i

  28. Embedding in d-dimensional space -1 +1 W j

  29. Binarization Alg. ❖ Requirements from the binary representation : 1. Consistency and discrimination 2. No correlations between the bits 3. High min-entropy ❖ We find a discriminative projection space W by generalizing an algorithm from [WKC10] (for solving ANN problem) if the pair belongs to the same user ❖ For : otherwise ❖ The aim is to find hyperplanes , s.t. for : if otherwise

  30. Removing Dependencies between Bits Dimension Reduction and Concatenation of Feature Vectors X

  31. Removing Dependencies between Bits Dimension Reduction and Concatenation of Feature Vectors Z=A t X X Removing Correlations A w Between the Features Rescaling for the [0,1] Interval

  32. Removing Dependencies between Bits Dimension Reduction and Concatenation of Feature Vectors Z=A t X X Removing Correlations A w Between the Features 32     1   T h ( z ) sign W z 1 Rescaling for the [0,1] 2 Interval mutually independent bits Projection onto orthogonal hypeplanes W

  33. Full System ❖ Enrollment : Feature Binarization s Extraction Encode ❖ Key-Generation : 𝑙 ← {0,1} ∗ s Decode and Hash Feature Binarization Extraction

  34. Transfer Learning of the Embedding Learning W is done only once using subjects different from the users • of the key derivation system. • How is it done? We learn Instead of learning Is this Alice? … Same? … Is this Bob? Different? A more generic question that can be learnt for population.

  35. Experiments Constructing the Embedding Performed only once • Subjects are different than those in testing • Number of Images Per Number of View Subjects Subject Hyperplanes Frontal 949 3-4 800 Profile 1117 1-8 800

  36. Experiments Evaluation ❖ Data : • 2 frontal images and 2 profile images of 100 different subjects (not in the training set) were used ❖ Recognition tests : • 5 round cross validation framework was followed to measure TPR-vs-FPR while increasing the threshold (ROC-curves) ❖ Key generation tests : • 100 genuine authentication attempts, and 99*100 impostor authentication attempts

  37. Results Recognition ROC curves

  38. Results Key Generation ❖ There is a trade-off between the amount of errors that the error- correction code can handle and the length of the produced key ❖ The Hamming-bound gives the following relation : n : the code length ( =1600 in our case) - t : the maximal number of corrected errors - k : the length of the encoded message (produced key, in our case) -

  39. Results Key Generation : For FAR= 0 FRR our FRR Random k ≤ t method Projection 595 80 0.30 0.32 609 70 0.16 0.23 624 60 0.12 0.19

  40. Error Correction Code … X 5 bits 5 bits 5 bits RS,GF(2 5 ): 15,GF(2 5 ) 31,GF(2 5 ) Probability of error in symbol 1-0.7 5 ≈ 0.83 Probability of error in bit 0.3

  41. Possible Solution X X 5 bits X X X RS,GF(2 5 ): 15,GF(2 5 ) 31,GF(2 5 ) Probability of error in symbol 0.3 Probability of error in bit 0.3

  42. Possible Solution Encoding: 31 31 X s1 5 5 X s2 ECC(K) ECC(K) … X s3 X s4 X s5 q times

  43. Possible Solution Decoding: the value of the bit = majority over q values 31 31 X’ s1 X’ s2 decode(C) 5 5 X’ … K C s3 X’ s4 X’ s5

  44. Problem in Security guessing 31 X 15 bits X 5 ECC(K) X X X RS,GF(2 5 ): 15,GF(2 5 ) 31,GF(2 5 )

  45. Problem in Security guessing 31 X 15 bits X 15 bits 5 ECC(K) X 15 bits X 15 bits X 15 bits RS,GF(2 5 ): 15,GF(2 5 ) 31,GF(2 5 ) Probability of error in symbol 0.3 Probability of error in bit 0.3

  46. Problem in Security guessing reveals X 15 bits X 15 bits ECC(K) X 15 bits X 15 bits X 15 bits 15 bit security RS,GF(2 5 ): 15,GF(2 5 ) 31,GF(2 5 )

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Password Human beings : Short keys; possibly used to generate longer keys Dictionary

Password Human beings : Short keys; possibly used to generate longer keys Dictionary

Password Human beings : Short keys; possibly used to generate longer keys Dictionary attack: adversary tries more common keys (easy with a large set of users) Trojan horse Countermeasures: slow login, close after several

563 views • 14 slides
19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

Is 2 255 19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a strong elliptic curve 128-bit crypto: Okay. over the field Z (2 255 19). 256-bit crypto: High security! Is that safe? 512-bit

121 views • 11 slides
A Data Remanence based Approach to Generate 100% Stable Keys from an SRAM Physical Unclonable

A Data Remanence based Approach to Generate 100% Stable Keys from an SRAM Physical Unclonable

A Data Remanence based Approach to Generate 100% Stable Keys from an SRAM Physical Unclonable Function Muqing Liu, Chen Zhou, Qianying Tang, Keshab K. Parhi and Chris H. Kim University of Minnesota, Twin Cities liux3300@umn.edu International

494 views • 28 slides
Getting started with SSH Keys with a free SYN Shop VM Host mrjones SYN Shop Wednesday May 16,

Getting started with SSH Keys with a free SYN Shop VM Host mrjones SYN Shop Wednesday May 16,

Getting started with SSH Keys with a free SYN Shop VM Host mrjones SYN Shop Wednesday May 16, 2018 mrjones@plip.com plip.com/sshkeys v5.0 Agenda Tech Review (Tech Review) How to Generate (Keys) Keys: Installing and using on free

618 views • 43 slides
2010 2500 keys > 100 uses 1250 keys > 1000 uses 2018 11000 keys >

2010 2500 keys > 100 uses 1250 keys > 1000 uses 2018 11000 keys >

2010 2500 keys > 100 uses 1250 keys > 1000 uses 2018 11000 keys > 100 uses 4450 keys > 1000 uses An excursion in to the world of OSM tagging presets Simon Poole, SOtM 2018 In the beginning Bus

686 views • 50 slides
A New Class Of Weak Keys for Blowfish Orhun KARA and Cevat MANAP T UB ITAK - UEKAE

A New Class Of Weak Keys for Blowfish Orhun KARA and Cevat MANAP T UB ITAK - UEKAE

A New Class Of Weak Keys for Blowfish Orhun KARA and Cevat MANAP T UB ITAK - UEKAE (National Research Institute of Electronics and Cryptology) 1 Redefining Blowfish Key XORs in Blowfish can be moved around to generate two building blocks

286 views • 12 slides
Everglades excerpts of a talk by Fritz Davis 2004 John Kunkel Small The Keys Lower

Everglades excerpts of a talk by Fritz Davis 2004 John Kunkel Small The Keys Lower

The Keys Everglades excerpts of a talk by Fritz Davis 2004 John Kunkel Small The Keys Lower keys Upper keys Miami Rocklands (Everglades Keys) Sea of saw grass. Sea of pine trees sea of tropical

201 views • 9 slides
Driving the 5 Keys Smiths 5 Keys 1- Aim High in Steering 2- Get the Big Picture 3-

Driving the 5 Keys Smiths 5 Keys 1- Aim High in Steering 2- Get the Big Picture 3-

Smith System Driving the 5 Keys Smiths 5 Keys 1- Aim High in Steering 2- Get the Big Picture 3- Keep Your Eyes Moving 4- Leave Yourself an Out 5- Make Sure They See You Aim im Hig igh The first rule for this method is

682 views • 10 slides
(CAN,Tapestry, Pastry) Freenet: search towards keys, but no guarantees Chord: Map keys

(CAN,Tapestry, Pastry) Freenet: search towards keys, but no guarantees Chord: Map keys

Napster: central search engine (CAN,Tapestry, Pastry) Freenet: search towards keys, but no guarantees Chord: Map keys to linear search space Stoica, R. Morris, D. Karger, F. Kaashoek, and Keep pointers (fingers) into

281 views • 12 slides
AVL Trees All keys in left subtree smaller than nodes key 2 6 10 12 All keys in

AVL Trees All keys in left subtree smaller than nodes key 2 6 10 12 All keys in

1/21/2016 Review: Binary Search Tree (BST) Structure property (binary tree) Each node has 2 children 8 Result: keeps operations simple CSE373: Data Structures and Algorithms Order property 5 11 AVL Trees All keys in

414 views • 5 slides
Ordered Dictionaries Ordered Dictionaries Keys are ordered Perform usual dictionary

Ordered Dictionaries Ordered Dictionaries Keys are ordered Perform usual dictionary

Ordered Dictionaries Ordered Dictionaries Keys are ordered Perform usual dictionary operations (insertItem, removeItem, findElement) and maintain an order relation for the keys we use an external comparator for keys New

452 views • 31 slides
Compressing RSA/Rabin keys Public keys D. J. Bernstein Each user publishes a key 2 2047 + 1

Compressing RSA/Rabin keys Public keys D. J. Bernstein Each user publishes a key 2 2047 + 1

Compressing RSA/Rabin keys Public keys D. J. Bernstein Each user publishes a key 2 2047 + 1 2 2047 2 2048 1 . Thanks to: University of Illinois at Chicago User knows prime factors of . NSF CCR9983950

768 views • 53 slides
Renewable Energy http://www.alternative-energy-news.info But a specifjcally focused upon aspect

Renewable Energy http://www.alternative-energy-news.info But a specifjcally focused upon aspect

things to generate electricity. Kinetic Harvesting electricity. Geothermal Energy o Using heat from the earth and resulting steam to generate electricity. o Burning plant and wast material to generate o Harvesting movement of people,

240 views • 13 slides
Reaping and breaking keys at scale: when crypto meets big data Nils Amiet Yolan Romailler

Reaping and breaking keys at scale: when crypto meets big data Nils Amiet Yolan Romailler

Reaping and breaking keys at scale: when crypto meets big data Nils Amiet Yolan Romailler August 2018 DEF CON 26 Public keys what for? Break them! Retrieve the private keys Show how easy it is If we can do it

684 views • 31 slides
Language to Image Generation Generate a bird with Generate a bird with Generate a bird

Language to Image Generation Generate a bird with Generate a bird with Generate a bird

Language to Image Generation Generate a bird with Generate a bird with Generate a bird with wings that are blue and wings that are black wings that are red and and a white a yellow a red be red belly lly white belly belly

667 views • 32 slides
Keys to Develop and Secure Potential Prospects Keys to Develop and Secure Potential Prospects

Keys to Develop and Secure Potential Prospects Keys to Develop and Secure Potential Prospects

Keys to Develop and Secure Potential Prospects Keys to Develop and Secure Potential Prospects Presenters Joe Butler, Vice President Justin Brown, Vice President The Keys Ask Connect Develop Secure Conclusion

604 views • 18 slides
Volumetric instance-aware semantic mapping and 3D object discovery Margarita Grinvald, Fadri

Volumetric instance-aware semantic mapping and 3D object discovery Margarita Grinvald, Fadri

Volumetric instance-aware semantic mapping and 3D object discovery Margarita Grinvald, Fadri Furrer, Tonci Novkovic, Jen Jen Chung, Cesar Cadena, Roland Siegwart, Juan Nieto IROS, 5 Nov 2019 Instance-aware semantic mapping solves detection

911 views • 42 slides
Working Toward a Precision Neutrino Beam Tyler Rehak In partnership with: New Perspectives 2018

Working Toward a Precision Neutrino Beam Tyler Rehak In partnership with: New Perspectives 2018

This document was prepared by [DUNE Collaboration] using FERMILAB-SLIDES-18-084-LBNF-ND the resources of the Fermi National Accelerator Laboratory (Fermilab), a U.S. Department of Energy, Office of Science, HEP User Facility. Fermilab is managed

521 views • 13 slides
The Open Metropolis, a FabCity to catalize substainable transition TR@NSENER Summer School,

The Open Metropolis, a FabCity to catalize substainable transition TR@NSENER Summer School,

The Open Metropolis, a FabCity to catalize substainable transition TR@NSENER Summer School, Barcelone 8th june 2017 A climate change taken into acount 3 x 20 % until 2020 - Gaz emissions - Energy optimization - Renewable solutions

493 views • 27 slides
Exemplars of Human Impact Brook Milligan Department of Biology New Mexico State University Las

Exemplars of Human Impact Brook Milligan Department of Biology New Mexico State University Las

Exemplars of Human Impact Brook Milligan Department of Biology New Mexico State University Las Cruces, New Mexico 88003 brook@nmsu.edu Fall 2009 Brook Milligan Exemplars of Human Impact Biodiversity and Human Impacts Understanding global

541 views • 24 slides
ALON ROSEN (IDC) MARGARITA VALD (TAU) EUROCRYPT 2018 TEL AVIV, ISRAEL

ALON ROSEN (IDC) MARGARITA VALD (TAU) EUROCRYPT 2018 TEL AVIV, ISRAEL

An Efficiency-Preserving Transformation from Honest-Verifier Statistical Zero-Knowledge to Statistical Zero-Knowledge PAVEL HUBEK (CUNI) ALON ROSEN (IDC) MARGARITA VALD (TAU) EUROCRYPT 2018 TEL AVIV, ISRAEL

843 views • 56 slides
FIRM HETEROGENEITY AND EXPORTS: EVIDENCE FROM GREEK FIRMS Kyriakos Drivas University of Piraeus

FIRM HETEROGENEITY AND EXPORTS: EVIDENCE FROM GREEK FIRMS Kyriakos Drivas University of Piraeus

FIRM HETEROGENEITY AND EXPORTS: EVIDENCE FROM GREEK FIRMS Kyriakos Drivas University of Piraeus Margarita Katsimi Athens University of Economics and Business International Atlantic Economic Conference on "Greece: Economic Adjustment,

861 views • 36 slides
August 14, 2020 BILINGUAL COORDINATORS NETWORK (BCN) UPDATES DESIGNATED ELD Requirements &

August 14, 2020 BILINGUAL COORDINATORS NETWORK (BCN) UPDATES DESIGNATED ELD Requirements &

LANGUAGE EDUCATION NETWORK August 14, 2020 BILINGUAL COORDINATORS NETWORK (BCN) UPDATES DESIGNATED ELD Requirements & Effective Practices Effective D-ELD Practices: 30 (15) minutes daily At the students performance (1, 2L, 2H,

535 views • 18 slides
FRBR Group 1 Entities and the TEI Guidelines Kevin S. Hawkins 1 2 3 4 5 bibliographic

FRBR Group 1 Entities and the TEI Guidelines Kevin S. Hawkins 1 2 3 4 5 bibliographic

FRBR Group 1 Entities and the TEI Guidelines Kevin S. Hawkins 1 2 3 4 5 bibliographic family Klemens Bobenhausen & Hans Walter Gabler Markup as Theory of Text TEI@20: 20 Years of Supporting the Digital Humanities: the 20 th

770 views • 21 slides

More recommend