Paper 2022/460

A Novel NIZK-based Privacy Preserving Biometric Identification Scheme for Internet of Things

Lin You, Qiang Zhu, and Gengran Hu

Abstract

With the popularity of biometric-based identity authentication in the field of the Internet of Things, more and more attention has been paid to the privacy protection of biometric data. Gunasinghe et al. presented the PrivBioMTAuth which is the first authentication solution from mobile phones to protect user’s privacy by performing interactive zero-knowledge proof. However, PrivBioMTAuth still requires considerable storage overhead and communication overhead during the registration phase. Meanwhile, the user’s biometric images and password need to be revealed to the identity provider. In this paper, we present an authentication solution for Internet of Things with fully succinct verification, significantly lower storage overhead and communication overhead. Different from PrivBioMTAuth, we rely on the non-interactive zero knowledge arguments given in Groth’s work to reduce the proof size and simplify the verification complexity. In addition, we focus on multi-exponentiation arguments based on Bayer et al.’s work to ensure the truth of the operation results provided by the identity provider.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint. Minor revision.
Keywords
BiometricsPrivacy ProtectionNIZKIdentificationIoT
Contact author(s)
mryoulin @ gmail com
History
2022-04-22: received
Short URL
https://ia.cr/2022/460
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2022/460,
      author = {Lin You and Qiang Zhu and Gengran Hu},
      title = {A Novel NIZK-based Privacy Preserving Biometric Identification Scheme for Internet of Things},
      howpublished = {Cryptology ePrint Archive, Paper 2022/460},
      year = {2022},
      note = {\url{https://eprint.iacr.org/2022/460}},
      url = {https://eprint.iacr.org/2022/460}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.