On the reconstruction of biometric raw data from template data
Biometric
Raw Data, Templates, and Privacy
Damn! Here I thought hashes were the answer to everything!
The experience with passwords suggests us to store only the hashed biometric template data, making a reconstruction of original template data and thus of the raw data extremely difficult. Unfortunately, this method only makes sense in those trivial cases where the matcher is a simple comparator based on mathematical subtraction. But even if this should be the case, template data normally show variations due to unavoidable variations in the raw data. As a result, the hash values of biometric data will never be the same even if the raw data are coming from multiple samples of the same biometric feature. That is, hashing cannot be used for biometric templates. It is really one-way, unfortunately not only for attackers. (If two raw data sets are really equal, it must be assumed that one template is the digital copy of the other, e.g., originating from a replay attack. In biometric systems such equalities should be used to trigger an alarm rather than to enable a successful authentication!)
0 TrackBacks
Listed below are links to blogs that reference this entry: On the reconstruction of biometric raw data from template data.
TrackBack URL for this entry: http://kennethhunt.com/mt/mt-tb.cgi/1078
Search
The Open Prosthetics Project
Open Source Ecology
Safari Online
invest in kevlar
chris harrison
Mike Erdely
Andrew W. Moore
Talking Out Loud with ASB
ducea
Andrew Baker
*scottstuff*
Ask Bjorn Hansen
Joe Topjian
John Sequeira's Weblog
Team Murder
defective yeti
postneo
Ben Hammersley
Chez Chrissie
The Frosty Mug Revolution
Jeremy Zawodny's blog
Lucas Gonze
Eric Norlin
slashdot
John Vu
Net Observer
Books Observer
Sterling
Bill Buxton
Melanie Rieback