Inverse operation and preimage attack on BioHashing

Author

Lee, Yongjin ; Chung, Yunsu ; Moon, Kiyoung

Author_Institution

Biometrics Technol. Res. Team, Electron. & Telecommun. Res. Inst., Daejeon

fYear

2009

fDate

March 30 2009-April 2 2009

Firstpage

92

Lastpage

97

Abstract

BioHashing generates a BioCode from a user´s biometric features by projecting them onto user-specific random vectors and then discritizes the projection coefficients into zero or one. Since biometric features are distorted by the non-invertible transforms and template matching is performed in a transformed state, it has been claimed that BioHashing is oneway and a BioCode is as secure as a hashed password. However, we disprove it by showing that even without a genuine´s private random vectors, a preimage of a BioCode is easily calculated from a lost BioCode and an attacker can gain an illegal access to a system.

Keywords

biometrics (access control); cryptography; message authentication; BioCode; BioHashing; hashed password; illegal access; inverse operation; non invertible transforms; preimage attack; template matching; user biometric features; Authentication; Bioinformatics; Biometrics; Concrete; Data privacy; Data security; Immune system; Moon; Protection; Terminology;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence in Biometrics: Theory, Algorithms, and Applications, 2009. CIB 2009. IEEE Workshop on

Conference_Location

Nashville, TN

Print_ISBN

978-1-4244-2773-4

Type

conf

DOI

10.1109/CIB.2009.4925692

Filename

4925692