sebastian pape templateless biometric enforced non
play

Sebastian Pape Templateless Biometric-Enforced Non-Transferability - PowerPoint PPT Presentation

Oct 16, 2022 •102 likes •268 views

Kryptowochenende 2008 Sebastian Pape Templateless Biometric-Enforced Non-Transferability of Anonymous Credentials 1 Sebastian Pape, Databases and Interactive Systems Research Group Overview Motivation Anonymous Credentials

  1. Kryptowochenende 2008 Sebastian Pape Templateless Biometric-Enforced Non-Transferability of Anonymous Credentials 1 Sebastian Pape, Databases and Interactive Systems Research Group

  2. Overview ● Motivation ● Anonymous Credentials ● Problems with Biometrics ● Wallet-with-Observer Architecture ● Existing Approaches ● Idea ● Example ● Outlook 2 Sebastian Pape, Databases and Interactive Systems Research Group

  3. Motivation ● Cryptographic primitives are based on secrets ● Private keys for digital signatures ● Secrets in Zero-Knowledge-Proofs (ZKP) ● Secret is knowledge and knowledge can be ● Stolen ● Transfered to someone ● How can you be sure the secret was used by its regular owner? 3 Sebastian Pape, Databases and Interactive Systems Research Group

  4. Anonymous Credentials ● Consist of cryptographic tokens ● Allow authentication without identification ● Based on ZKP ● Non-transferablity may be wished ⇒ Make the user not wanting to share ⇒ Embed valuable secrets into the system ⇒ Share nothing-or-all strategy ✗ Can be circumvented ✗ Raise system's value ⇒ Keep tokens secret from user ● Use of Biometrics 4 Sebastian Pape, Databases and Interactive Systems Research Group

  5. Problems with Biometrics ● Finding good/usable attributes ● Fingerprints ● Universality ● Circumvention ● Cannot be changed ● False nonmatch rate vs. False match rate ● Privacy Issues 5 Sebastian Pape, Databases and Interactive Systems Research Group

  6. Hardware (outdated) Source: www.fidelica.com ● Privacy problem: Template database 6 Sebastian Pape, Databases and Interactive Systems Research Group

  7. Hardware (match-on-card) Source: www.fidelica.com ● No template database ● Privacy problem: Eavesdropper 7 Sebastian Pape, Databases and Interactive Systems Research Group

  8. Hardware (embedded) Source: www.fidelica.com ● No template database ● Protected against eavesdropper 8 Sebastian Pape, Databases and Interactive Systems Research Group

  9. Some Problems of Biometrics ● Finding good/usable attributes ● Fingerprints ● Universality ● Circumvention ● Cannot be changed ● False nonmatch rate vs. False match rate ● Privacy Issues ● Trust to system 9 Sebastian Pape, Databases and Interactive Systems Research Group

  10. Wallet-with-Observer Architecture Wallet Observer Verifier ● General Problem: Contact to "correct card"? 10 Sebastian Pape, Databases and Interactive Systems Research Group

  11. Wallet-with-Observer Architecture + Biometrics Wallet Observer Verifier ● Biometrics to Observer 11 Sebastian Pape, Databases and Interactive Systems Research Group

  12. Existing Approaches ● Current approaches compare biometrics to templates ✔ Underlying system needs no change ✗ Stored Templates ● Fuzzy extractors provide same output to "close" input ● "error correcting hash" ● Private keys can be derived from Biometrics fe( ) s ✗ Derived keys need to suit to underlying system ✔ No templates/storage needed 12 Sebastian Pape, Databases and Interactive Systems Research Group

  13. Idea ● Combine Advantages ⇒ No Templates stored ⇒ No change of underlying system fe( ) XOR, mod, ... s * s 13 Sebastian Pape, Databases and Interactive Systems Research Group

  14. Example (Setup) based on Feige-Fiat-Shamir Id.-Protocol Authority chooses two large prime integers p,q calculates n= p * q generates s 1 , ... , s k with gcd(s i ,n) = 1 computes v i ≡ s i 2 (mod n) Public (known by verifier and prover): n, v i Secret (kept inside the smartcard): s i Secret (kept by authority): p, q Card initialization: s i is overwritten by s * i ≡ s i - fe(fp u ) (mod n) 14 Sebastian Pape, Databases and Interactive Systems Research Group

  15. Example (Prove) based on Feige-Fiat-Shamir Id.-Protocol Smartcard: chooses a random integer r, a random sign   {-1,1} computes  x ≡ r 2 (mod n)  V Verifier: chooses numbers a i  {0,1}  S s Smartcard: reads fingerprint fp u computes y ≡ r(s * 1 +fe(fp u )) a 1 * ... * (s * k +fe(fp u )) a k (mod n)  V Verifier: 2 ≡  x v 1 checks if y a 1 * ... * v k a k (mod n) decides if the prover has passed authorisation. 15 Sebastian Pape, Databases and Interactive Systems Research Group

  16. Outlook Connection to proper smartcard? User interleaved Use of flexible display 2 e.g. for r Unlimited number of uses base on n-time anonym. authentification Concrete implementation Source: www.fidelica.com 16 Sebastian Pape, Databases and Interactive Systems Research Group

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive

A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive

FIDIS / IFIP Summerschool Workshop 2: Privacy Issues Sebastian Pape A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive Systems Research Group Overview Anonymous Credentials Approaches to

382 views • 23 slides
Some Observations on Reusing One-Time Pads within Dice Codings 1 Sebastian Pape, Databases and

Some Observations on Reusing One-Time Pads within Dice Codings 1 Sebastian Pape, Databases and

10. Kryptotag Sebastian Pape Some Observations on Reusing One-Time Pads within Dice Codings 1 Sebastian Pape, Databases and Interactive Systems Research Group Overview Dice Codings Invalid Keys Attacking the Key Pad

312 views • 20 slides
Why Open Data May Threaten Your Privacy Sebastian Pape, Jetzabel Serna-Olvera, Welderufael B.

Why Open Data May Threaten Your Privacy Sebastian Pape, Jetzabel Serna-Olvera, Welderufael B.

Why Open Data May Threaten Your Privacy Sebastian Pape, Jetzabel Serna-Olvera, Welderufael B. Tesfay Goethe University Frankfurt Chair of Mobile Business and Multilateral Security Workshop on Privacy and Inference September 21st, 2015 Pape,

490 views • 11 slides
Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric Data? Athletes need real-time feedback to improve ! You only improve what you measure What is Biometric Data? Cycle Monitors 20M 10M 1980 1990

458 views • 20 slides
Sample or Random Security A Security Model for Segment-Based Visual Cryptography Sebastian

Sample or Random Security A Security Model for Segment-Based Visual Cryptography Sebastian

Sample or Random Security A Security Model for Segment-Based Visual Cryptography Sebastian Pape Dortmund Technical University March 5th, 2014 Financial Cryptography and Data Security 2014 Sebastian Pape Sample or Random Security March

541 views • 25 slides
WHY IS THIS IMPORTANT? PAPE RISK COMMUNICATION MUST BE CLEAR AND SIMPLE To communicate risks

WHY IS THIS IMPORTANT? PAPE RISK COMMUNICATION MUST BE CLEAR AND SIMPLE To communicate risks

PAPE PAPE HARMONIZED RISK MESSAGES SAVE LIVES! P UBLIC A WARENESS AND P UBLIC E DUCATION FOR DISASTER RISK REDUCTION: A GUIDE + KEY MESSAGES www.if ifrc.o .org Savin ing live ves, changin ing minds. WHY IS THIS IMPORTANT? PAPE RISK

341 views • 19 slides
BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on SIV Biometric services Whats missing? Biometric Applications Biometric Resources ? ANSI/NIST-ITL 1-2000/6 ? BioAPI/BIP ? Other ?

257 views • 13 slides
1 Biometric Encryption Aims www.ipc.on.ca Aims Protect the biometric data and

1 Biometric Encryption Aims www.ipc.on.ca Aims Protect the biometric data and

Content Motivation Biometric Encryption in 3D Face Biometric encryption in 3D Face Outlook Michiel van der Veen 3D Face end-user meeting March 22, Darmstadt, Germany 2 3D Face end-user meeting (March 22, 2007,

585 views • 5 slides
Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS

Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS

Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS Integration TC VP, Standards & Emerging Tech, Daon www.oasis-open.org Biometric Identity Assurance Services (BIAS) Biometric Applications

723 views • 34 slides
COMPLICITY BETWEEN BROTHER AND SISTER WINEGROWERS: A SINGLE AND MODERN CHTEAUNEUF-DU-PAPE

COMPLICITY BETWEEN BROTHER AND SISTER WINEGROWERS: A SINGLE AND MODERN CHTEAUNEUF-DU-PAPE

COMPLICITY BETWEEN BROTHER AND SISTER WINEGROWERS: A SINGLE AND MODERN CHTEAUNEUF-DU-PAPE SIGNATURE ! CHTEAUNEUF DU PAPE In the 14th century, the Poes chose Chteauneuf as the location for their summer residence. They decided to plant

535 views • 17 slides
Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication System? How does a Biometric System work? Biometric Comparisons Types of Biometrics Fingerprint-Scan Iris-Scan 2 BIOMETRICS

568 views • 36 slides
Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost

Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost

J u n e 1 1 , 2 0 1 5 Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost Estimating Background + Approach + Case Study + Final Words + Q & A + 1 Booz Allen Internal Background:

679 views • 22 slides
How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and C. Rosenberger GREYC Research Lab, ENSICAEN - CNRS University of Caen, FRANCE NIST International Biometric Performance Testing Conference 2012

682 views • 31 slides
CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats

CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats

CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats Framework 6 March 2009 Catherine Tilton W3C Workshop on SIV What is a CBEFF? CBEFF describes a structure and set of metadata elements necessary to

173 views • 13 slides
Fluid Wate rco lo r Pape r C o lle ctio n T h e S to ry B e h in d F lu id

Fluid Wate rco lo r Pape r C o lle ctio n T h e S to ry B e h in d F lu id

Fluid Fluid Wate rco lo r Pape r C o lle ctio n T h e S to ry B e h in d F lu id - T he idea for this series of w atercolor blocks and sheets w as brought to G lobal A rt by R ick R ousseau of A rtist H ardw

681 views • 17 slides
On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao ,

On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao ,

On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao , Hassan Asghar, Dali Kaafar Biometric Authentication: Overview Metrics Face Feature Extraction FRR, Engineered FPR, Embeddings EER,

547 views • 25 slides
Penguins Prosper with E-Paper Jaya Kumar, Aug 2009 Quick Disclaimer Not promoting any

Penguins Prosper with E-Paper Jaya Kumar, Aug 2009 Quick Disclaimer Not promoting any

Penguins Prosper with E-Paper Jaya Kumar, Aug 2009 Quick Disclaimer Not promoting any specific E-paper product or technology, although I will use some corporate pictures because sometimes they're cool. Just an excited embedded Linux

501 views • 32 slides
Chemical and biological analysis: Lets go fishing molecules Ajeet Singh and Venkat Panchagnula

Chemical and biological analysis: Lets go fishing molecules Ajeet Singh and Venkat Panchagnula

Chemical and biological analysis: Lets go fishing molecules Ajeet Singh and Venkat Panchagnula Bioseparations Group Chemical Engineering Division, National Chemical Laboratory Pune 411008 A simple test to distinguish between similar looking liquids

203 views • 19 slides
Collective motion of reciprocating self-propelled colloidal particles Airi KATO (Sano lab. U.

Collective motion of reciprocating self-propelled colloidal particles Airi KATO (Sano lab. U.

Collective motion of reciprocating self-propelled colloidal particles Airi KATO (Sano lab. U. Tokyo) 8th July, 2016@RIKEN-Osaka-OIST Joint Workshop 2016 H. Wioland et al, Phys. Rev. Lett. 110 268102 (2013). 1/15 Deseigne, et al. Phys. Rev.

397 views • 6 slides
Overview Technologies for the Remediation of Heavy Metals in Soil and Water Dr. R. Mark

Overview Technologies for the Remediation of Heavy Metals in Soil and Water Dr. R. Mark

Overview Technologies for the Remediation of Heavy Metals in Soil and Water Dr. R. Mark Bricka What is Environmental Remediation The removal of Contaminants form Environmental Media Soil - Groundwater Sediment

722 views • 29 slides
THE CMP INTEGRATES LIFELONG LEARNING WITH ASSESSMENT THE CMP INTEGRATES LIFELONG LEARNING WITH

THE CMP INTEGRATES LIFELONG LEARNING WITH ASSESSMENT THE CMP INTEGRATES LIFELONG LEARNING WITH

THE CMP INTEGRATES LIFELONG LEARNING WITH ASSESSMENT THE CMP INTEGRATES LIFELONG LEARNING WITH ASSESSMENT Coming June 2020! 6 STEPS TO PARTICIPATING IN THE CMP in 2020 Be currently CERTIFIED PURCHASE the Relevant SAP by the ABIM & Includes 5

519 views • 14 slides
Psychiatric Disease Eric Burguire (ICM Institute, Paris)

Psychiatric Disease Eric Burguire (ICM Institute, Paris)

2018 UE Neural Network Master2 BIP Optogenetic and the Circuit Dynamics of Psychiatric Disease Eric Burguire (ICM Institute, Paris) http://bebgteam.net/team/eric-burguiere/ Psychiatric Diseases Symptoms Quantitative Behaviors Animal

741 views • 71 slides
Learning step sizes for unfolded sparse coding Thomas Moreau INRIA Saclay Joint work with Pierre

Learning step sizes for unfolded sparse coding Thomas Moreau INRIA Saclay Joint work with Pierre

Learning step sizes for unfolded sparse coding Thomas Moreau INRIA Saclay Joint work with Pierre Ablin; Mathurin Massias; Alexandre Gramfort 1/32 Electrophysiology Magnetoencephalography Electroencephalography 2/32 Inverse problems

1.35k views • 47 slides
Distributed Data Sharing with Petashare for Collaborative Research Sreekanth Pothanis Dr.

Distributed Data Sharing with Petashare for Collaborative Research Sreekanth Pothanis Dr.

Distributed Data Sharing with Petashare for Collaborative Research Sreekanth Pothanis Dr. Tevfik Kosar Center for Computation & Technology Louisiana State University March 25, 2010 iRODS User Meeting AT LOUISIANA STATE UNIVERSITY CCT:

288 views • 7 slides

More recommend