Blockchain technology, which was introduced for supporting cryptocurrencies, today provides a decentralized in- frastructure for general information storage and execution of algorithms, thus enabling the conversion of many applications and services from a centralized and intermediated model to a decentralized and disintermediated one. In this paper we focus on biometric authentication, which is classically performed using centralized systems, and could hence benefit from decentraliza- tion. For such a purpose, however, an inherent contradiction between biometric applications and blockchain technology must be overcome, as the former require keeping biometric features private, while blockchain is a public infrastructure. We propose a blockchain-based biometric authentication protocol that enables decentralization and resilience while protecting the privacy, personal data, and, in particular, biometric features of users. The protocol we propose leverages fuzzy commitment schemes to allow biometric authentication to be performed without disclosing biometric data. We also analyze the security of the protocol we propose by considering some relevant attacks.
Decentralized Biometric Authentication based on Fuzzy Commitments and Blockchain / ABO ALZAHAB, Nibras; Rafaiani, Giulia; Battaglioni, Massimo; Chiaraluce, Franco; Baldi, Marco. - ELETTRONICO. - (2024). (Intervento presentato al convegno Sixth International Conference on Blockchain Computing and Applications (BCCA 2024) tenutosi a Dubai, UAE nel 26–29 November, 2024).
Decentralized Biometric Authentication based on Fuzzy Commitments and Blockchain
Nibras Abo Alzahab;Giulia Rafaiani;Massimo Battaglioni;Franco Chiaraluce;Marco Baldi
2024-01-01
Abstract
Blockchain technology, which was introduced for supporting cryptocurrencies, today provides a decentralized in- frastructure for general information storage and execution of algorithms, thus enabling the conversion of many applications and services from a centralized and intermediated model to a decentralized and disintermediated one. In this paper we focus on biometric authentication, which is classically performed using centralized systems, and could hence benefit from decentraliza- tion. For such a purpose, however, an inherent contradiction between biometric applications and blockchain technology must be overcome, as the former require keeping biometric features private, while blockchain is a public infrastructure. We propose a blockchain-based biometric authentication protocol that enables decentralization and resilience while protecting the privacy, personal data, and, in particular, biometric features of users. The protocol we propose leverages fuzzy commitment schemes to allow biometric authentication to be performed without disclosing biometric data. We also analyze the security of the protocol we propose by considering some relevant attacks.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
