生物识别
计算机科学
认证(法律)
方案(数学)
计算机安全
互联网隐私
数学
数学分析
作者
Xuechun Mao,Ying Chen,Cong Deng,Xiaqing Zhou
出处
期刊:PLOS ONE
[Public Library of Science]
日期:2023-05-25
卷期号:18 (5): e0286215-e0286215
被引量:11
标识
DOI:10.1371/journal.pone.0286215
摘要
Most existing secure biometric authentication schemes are server-centric, and users must fully trust the server to store, process, and manage their biometric data. As a result, users’ biometric data could be leaked by outside attackers or the service provider itself. This paper first constructs the EDZKP protocol based on the inner product, which proves whether the secret value is the Euclidean distance of the secret vectors. Then, combined with the Cuproof protocol, we propose a novel user-centric biometric authentication scheme called BAZKP. In this scheme, all the biometric data remain encrypted during authentication phase, so the server will never see them directly. Meanwhile, the server can determine whether the Euclidean distance of two secret vectors is within a pre-defined threshold by calculation. Security analysis shows BAZKP satisfies completeness, soundness, and zero-knowledge. Based on BAZKP, we propose a privacy-preserving biometric authentication system, and its evaluation demonstrates that it provides reliable and secure authentication.
科研通智能强力驱动
Strongly Powered by AbleSci AI