FLAME: Flexible and Lightweight Biometric Authentication Scheme in Malicious Environments
Fuyi Wang, Fangyuan Sun, Mingyuan Fan, Jianying Zhou, Jin Ma, Chao Chen, Jiangang Shu, Leo Yu Zhang
TL;DR
FLAME addresses the need for privacy-preserving biometric authentication in malicious environments by introducing a two-server, 2PC scheme that leverages lightweight secret-sharing primitives and an offline-online paradigm. It supports multiple similarity metrics (Cosine and Euclidean) through client-side preprocessing that aligns their semantics with a unified server-side inner-product-based authentication, while maintaining strong integrity guarantees via MAC-checked protocols. The paper formalizes secure constructions for inner products and comparisons, proves security under malicious adversaries, and demonstrates substantial practical gains: dramatic online-time reductions and orders-of-magnitude reductions in online communication compared to prior work, with accuracy above practical thresholds on real facial biometrics datasets. These results indicate FLAME's suitability for real-time, large-scale biometric authentication in cloud-assisted settings, offering strong privacy, robustness, and flexibility for diverse biometric traits and similarity measures.
Abstract
Privacy-preserving biometric authentication (PPBA) enables client authentication without revealing sensitive biometric data, addressing privacy and security concerns. Many studies have proposed efficient cryptographic solutions to this problem based on secure multi-party computation, typically assuming a semi-honest adversary model, where all parties follow the protocol but may try to learn additional information. However, this assumption often falls short in real-world scenarios, where adversaries may behave maliciously and actively deviate from the protocol. In this paper, we propose, implement, and evaluate $\sysname$, a \underline{F}lexible and \underline{L}ightweight biometric \underline{A}uthentication scheme designed for a \underline{M}alicious \underline{E}nvironment. By hybridizing lightweight secret-sharing-family primitives within two-party computation, $\sysname$ carefully designs a line of supporting protocols that incorporate integrity checks with rationally extra overhead. Additionally, $\sysname$ enables server-side authentication with various similarity metrics through a cross-metric-compatible design, enhancing flexibility and robustness without requiring any changes to the server-side process. A rigorous theoretical analysis validates the correctness, security, and efficiency of $\sysname$. Extensive experiments highlight $\sysname$'s superior efficiency, with a communication reduction by {$97.61\times \sim 110.13\times$} and a speedup of {$ 2.72\times \sim 2.82\times$ (resp. $ 6.58\times \sim 8.51\times$)} in a LAN (resp. WAN) environment, when compared to the state-of-the-art work.