CryptoBiometrics

At the Norwegian University of Science and Technology, NTNU, researchers have developed a patent pending biometric crypto system, offering the convenience of biometric recognition while securing the credential management with cryptographic methods.


The systems modality independent and enables authentication in an open inviroment, without the need of re-enrolment of biometrics.

Renewable biometrics managing unlimited keys

The invention transforms original biometric templates to an unlimited number of renewable irreversible and unsinkable (ISO 24745 compliant) pseudonymous identifiers (GDPR compliant), that can be compared directly with little privacy concern or can be combined with an unlimited number of passwords or private kaos to «memorize» them in a secure way.


The special way to devise this biometric secret combination makes authentication possible in an untrusted open environment, such as public cloud services, blockchain services, outsourced or self-sovereign identity managing services.

Advantages:

  • Unlimited revocable and renewable templates generated from the original biometrics

  • Unlimited number of passwords/private keys

  • Independent of biometric modalities or featurenextraction methods

  • Biometric recognition accuracy preservation (compared ro using original templates)

  • Tempaltes generation without needing re-enrolment of biometrics from users

  • No need of secure hardware

  • Compatible with exiting password and private key based authentication schemes.

Flexibility in deployment under various application scenarios

The invention engineers a “privacy-by-design” concept (required by EU/EEA’s new data protection regulation (GDPR) todiversify the plain biometric features to unlimited revocable and renewable pseudonymousidentifiers (compliant to the requirement of GDPR).


It can be used: to strengthen the protection of biometricdata in a device/system centered authentication scenario, such as device access control, standalonebiometric system, compliant to the FIDO standard; or be used in an open environment where securetemplates can be outsourced for storage and comparison without little risk of biometric information leakage,enabling biometrics’ use in blockchain based identity management and sovereign identity management.

  • Mustad Næringspark,

    Bright House, Gjøvik

  • Ragnhild.Skarpen@biofy.no

  • +47 911 39 818

Research and Background

The biometric cryptosystem has been developed at the Norwegian Information Security Laboratory (NISlab) at NTNU, and builds on knowledge and expertise accumulated from three EU research projects (TURBINE, FIDELITY, and PIDaaS). A private identity authenti- cation platform based on this patent-pending mechanism had been piloted in three scen- arios “e-Citizen”, “e-Commerce”, and “e-Health” in the EU project PIDaaS (www.pidaas.eu).

Nettside av Kodeo og design av Rebne Design