Abstract
Secure authentication is an essential mechanism required by the vast majority of computer systems and various applications in order to establish user identity. Credentials such as passwords and biometric data should be protected against theft, as user impersonation can have serious consequences. Some practices widely used in order to make authentication more secure include storing password hashes in databases and processing biometric data under encryption. In this paper, we propose a system for both password-based and iris-based authentication that uses secure multiparty computation (SMPC) protocols and Shamir secret sharing. The system allows secure information storage in distributed databases and sensitive data is never revealed in plaintext during the authentication process. The communication between different components of the system is secured using both symmetric and asymmetric cryptographic primitives. The efficiency of the used protocols is evaluated along with two SMPC specific metrics: The number of communication rounds and the communication cost. According to our results, SMPC based on secret sharing can be successfully integrated in real-word authentication systems and the communication cost has an important impact on the performance of the SMPC protocols.
Highlights
Nowadays, while the most widely used authentication method is represented by password validation, biometric authentication is becoming more and more popular due to the many advantages it provides
In this paper we focus strictly on the validation/matching of biometric credentials, when the Hamming distance (HD) [5] is computed using secure multiparty computation (SMPC)
For iris-based authentication, we considered the SMPC_Iris_match_with_masks_threshold algorithm, iriscodes containing 6400 bits and secret shared values represented on M bytes, with 3
Summary
While the most widely used authentication method is represented by password validation, biometric authentication is becoming more and more popular due to the many advantages it provides. Biometric traits are strongly bonded to the person they belong to and they uniquely identify the owner. These traits are part of the human body and, unlike passwords, cannot be forgotten or lost, excepting the case somebody suffers serious injuries. Some common biometric traits are: iris, fingerprint, retina and face. While it is recommended for users to have different passwords for different accounts, each person has only one set of biometric traits. This raises security concerns because, when compromised, biometric information can hardly be revoked and never replaced. Disclosed credentials can have negative consequences and stolen biometric traits can even facilitate identity theft
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
