ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2020, Vol. 57 ›› Issue (5): 1003-1021.doi: 10.7544/issn1000-1239.2020.20190371

• 人工智能 • 上一篇    下一篇

生物特征识别模板保护综述

王会勇1,4,唐士杰2,丁勇3,4,王玉珏3,4,李佳慧1,4   

  1. 1( 桂林电子科技大学数学与计算科学学院 广西桂林 541004);2( 桂林电子科技大学电子工程与自动化学院 广西桂林 541004);3( 桂林电子科技大学计算机与信息安全学院 广西桂林 541004);4( 广西密码学与信息安全重点实验室(桂林电子科技大学) 广西桂林 541004) (why608@163.com)
  • 出版日期: 2020-05-01
  • 基金资助: 
    国家自然科学基金项目(61772150,61862012,61802083,61962012);广西自然科学基金项目(2018GXNSFDA281054,2018GXNSFAA281232);广西重点研发计划项目(AB17195025);广西密码学与信息安全重点实验室开放课题(GCIS201622,GCIS201702)

Survey on Biometrics Template Protection

Wang Huiyong1,4, Tang Shijie2, Ding Yong3,4, Wang Yujue3,4, Li Jiahui1,4   

  1. 1( School of Mathematics & Computing Science, Guilin University of Electronic Technology, Guilin, Guangxi 541004);2( School of Electronic Engineering & Automation, Guilin University of Electronic Technology, Guilin, Guangxi 541004);3( School of Computer Science & Information Security, Guilin University of Electronic Technology, Guilin, Guangxi 541004);4( Guangxi Key Laboratory of Cryptography and Information Security(Guilin University of Electronic Technology), Guilin, Guangxi 541004)
  • Online: 2020-05-01
  • Supported by: 
    This work was supported by the National Natural Science Foundation of China (61772150, 61862012, 61802083, 61962012), the Natural Science Foundation of Guangxi Autonomous Region of China (2018GXNSFDA281054, 2018GXNSFAA281232), the Guangxi Key Research and Development Program (AB17195025), and the Open Project of Guangxi Key Laboratory of Cryptography and Information Security (GCIS201622, GCIS201702).

摘要: 生物特征识别(biometric authentication, BA)已经成为一种重要的身份鉴别手段,但当前部署的很多BA系统在保护用户生物特征数据的安全性和隐私性方面考虑不足,成为阻碍BA技术推广应用的一个关键障碍.BA系统可能面临来自软件和硬件的多种攻击,针对生物特征模板的攻击是其中最常见的一种.已经有很多技术文献致力于应对这种类型的攻击,但现有的综述性文献存在论述不全面或内容冲突等问题.为系统总结针对生物特征模板的攻击与保护技术,首先介绍了BA系统的相关概念、体系架构以及安全性与隐私性的内涵,然后阐述了BA系统面临的典型模板攻击方法.随后,将BA系统模板保护技术归纳为基于变换的方法和基于加密的方法2个类别,阐述并分析了每个类别中的经典方法与新兴技术.最后,指出了构建安全BA系统可能面临的几个主要困难与可能的解决思路.

关键词: 生物特征识别, 数据安全, 隐私保护, 模板保护, 综述

Abstract: Biometric authentication (BA) has become an important means of identity authentication. However, many BA systems deployed at present do not take enough consideration in protecting the security and privacy of users biometric data, which has become a main obstacle to the popularization and application of the BA technology. BA systems may face various attacks from software or hardware implementations, among which, template attack is the main consideration. Many technical literatures have been devoted to dealing with this type of attacks. However, existing review literatures suffer from incomplete descriptions or conflicting discussions. In order to systematically summarize the attacking and protection technologies against biometric templates, some related concepts of the BA system is introduced at first, as well as the architecture of a BA system and the connotation of BA security and privacy. Then, template protection technologies for a BA system are classified into two main categories for description: the transformation-based methods and the crypto-based methods, which solves some conflictions in existing literatures. Afterwards, some classical methods and emerging technologies in each category are expounded and analyzed, as well as some subsequent evaluations and improvements. Finally, several major difficulties and the corresponding possible solutions for building a secure BA system are pointed out.

Key words: biometric authentication, data security, privacy protection, template protection, review

中图分类号: