Skip to content
/ Basic-BTP Public

A naïve implementation of a feature-transformation biometric template protection scheme based on simple XOR comparison. This is not meant for practical use, but for educational purposes as an introduction to BTP.

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

templateprotection/Basic-BTP

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
Images
Images
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
btp.py
btp.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Basic Biometric Template Protection (BTP) Scheme

Overview

Biometric Template Protection (BTP) is an important component in biometric systems, aimed at protecting sensitive biometric data from being compromised. However, BTP can often be a complex topic difficult to understand for beginners. This repository provides a basic and simplified implementation of a BTP scheme for educational purposes.

My goal is to demonstrate the fundamental concepts of template protection using a simple cryptographic technique, rather than creating a production ready system designed for secure deployment.

How it Works

This simplified scheme consists of two main phases: Enrollment and Authentication.

Enrollment

  1. The biometric data (represented as an embedding embedding1) is first quantized into a binary vector (bit_vector1).
  2. A secret_key is generated, which is a random binary vector of the same length as bit_vector1.
  3. The client then encrypts the binarized template by XORing bit_vector1 with the secret_key to create cipher1.
  4. The client stores the secret_key and sends cipher1 to the server for later authentication.

Authentication

  1. During authentication, a new biometric sample (embedding2) is captured and quantized to bit_vector2.
  2. The client XORs bit_vector2 with the stored secret_key to create cipher2.
  3. The server calculates the Hamming distance between cipher1 (from enrollment) and cipher2 (from authentication).
  4. If the Hamming distance is below a certain threshold, the user is authenticated.

Weaknesses

  • Data Leakage: While the exact bits of the cipher cannot be directly determined without the secret key, the server is able to see which authentication bits differ from the enrollment, which may in time reveal details about the vector's entropy. Particularly, the server can use the differences across several users to determine which bits are reliable, similar to an Attack via Record Multiplicity. Cross-user weaknesses like this can be mitigated by performing a client-side random permutation on the enrollment vector for each user, and storing the permute order for future authentications.

  • Full Access Adversary: If the adversary has access to both the client and server, they will be able to decrypt the original enrollment bit_vector by performing XOR on the client's secret_key and the server's cipher.

Installation

  1. Clone the repository:

    git clone https://github.com/templateprotection/basic-btp.git
cd btp-scheme

  2. Install the required dependencies:

    pip install -r requirements.txt

  3. Run the code:

    python btp.py

About

A naïve implementation of a feature-transformation biometric template protection scheme based on simple XOR comparison. This is not meant for practical use, but for educational purposes as an introduction to BTP.

Topics

cryptography authentication biometrics privacy-preserving biometric-authentication biometric-template-protection

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages