Skip to main content
Cancelable biometrics vault: A secure key-binding biometric cryptosystem based on chaffing and winnowing
Proceedings - International Conference on Pattern Recognition
  • Osama Ouda, Jouf University & Mansoura University
  • Karthik Nandakumar, Mohamed Bin Zayed University of Artificial Intelligence
  • Arun Ross, Michigan State University
Document Type
Conference Proceeding

Existing key-binding biometric cryptosystems, such as the Fuzzy Vault Scheme (FVS) and Fuzzy Commitment Scheme (FCS), employ Error Correcting Codes (ECC) to handle intra-user variations in biometric data. As a result, a trade-off exists between the key length and matching accuracy. Moreover, these systems are vulnerable to privacy leakage, i.e., it is trivial to recover the original biometric template given the secure sketch and its associated cryptographic key. In this work, we propose a novel key-binding biometric cryptosystem framework, referred to as Cancelable Biometrics Vault (CBV), to address the above two limitations. The CBV framework is inspired by the cryptographic principle of chaffing and winnowing. It utilizes the concept of cancelable biometrics (CB) to generate secure biometric templates, which in turn are used to encode bits in a cryptographic key. While the CBV framework is generic and does not rely on a specific biometric representation, it does assume the availability of a suitable (satisfying the requirements of accuracy preservation, non-invertibility, and non-linkability) CB scheme for the given representation. To demonstrate the usefulness of the proposed CBV framework, we implement this approach using an extended BioEncoding scheme, which is a CB scheme appropriate for bit strings such as iris-codes. Unlike the baseline BioEncoding scheme, the extended version proposed in this work fulfills all the three requirements of a CB construct. Experiments show that the decoding accuracy of the proposed CBV framework is comparable to the recognition accuracy of the underlying CB construct, namely, the extended BioEncoding scheme, regardless of the cryptographic key size.

Publication Date
  • Privacy,
  • Data privacy,
  • Biometrics (access control),
  • Elliptic curve cryptography,
  • Error correction codes,
  • Decoding,
  • Pattern recognition

IR Deposit conditions: non-described

Citation Information
O. Ouda, K. Nandakumar and A. Ross, "Cancelable biometrics vault: a secure key-binding biometric cryptosystem based on chaffing and winnowing," in 2020 25th International Conference on Pattern Recognition, ICPR 2020, (IEEE), 2021, pp. 8735-8742, doi: 10.1109/ICPR48806.2021.9412957.