{"schema_version":"0.1","map_id":"paper-43-map","publication_id":43,"publication_anchor":"paper-43","slug":"paper-43","canonical_path":"/knowledge/papers/paper-43/","machine_path":"/knowledge/papers/paper-43.json","root_node_id":"paper-43","stage":"mapped_draft","contribution_type_vocabulary_version":"0.1","contribution_types":["protocol"],"title":"Secure Non-Interactive User Re-Enrollment in Biometrics-Based Identification and Authentication Systems","year":2018,"status":"Published · conference version","venue":"2nd International Symposium on Cyber Security, Cryptography and Machine Learning (CSCML)","topic":"privacy-identity","labels":["Theory","Applied"],"authors":["Ivan De Oliveira Nunes","Karim Eldefrawy","Tancrède Lepoint"],"keywords":["biometrics","re-enrollment","fuzzy vault","secure computation","secret sharing"],"research_question":"Can a large biometric-authentication deployment replace lost, revoked, or policy-dependent helper data without bringing every user back and without storing a complete reusable biometric template at any backend?","central_answer":"SNUSE secret-shares each biometric template among re-enrollment servers and uses MPC to generate fresh fuzzy-vault helper data. A prototype for fingerprints and irises shows non-interactive re-enrollment at scale, subject to honest-but-curious MPC, secure channels, threshold non-collusion, fuzzy-vault reuse, and online-compromise limitations.","curation":{"drafted_at":"2026-07-11","drafted_by":[{"actor_type":"ai","name":"OpenAI Codex","role":"full-text extraction, claim mapping, and initial assessment"}],"method":"Source-grounded review of the complete 28-page author manuscript, including its implementation, experiment, security, and related-work appendices. The title and substantive experiment/security pages were visually inspected; code and raw datasets were not independently reproduced.","source_scope":"full_source_audit","approval":{"status":"pending","note":"AI-authored source map awaiting full author audit. Protocol interpretation, parameter readings, and ratings remain provisional."}},"sources":[{"id":"source-paper-43-author-pdf","type":"author_hosted_copy","title":"Secure Non-Interactive User Re-Enrollment in Biometrics-Based Identification and Authentication Systems","url":"/pubs/2018/snuse-cscml2018.pdf","provenance_category":"author","retrieved_from":"https://sprout.ics.uci.edu/people/ivan/pubs/2018_snuse.pdf","media_type":"application/pdf","sha256":"5da9d336e5b017b7e9960a08035916cd353b3015eef5868a61b770d1e89e0077","page_count":28},{"id":"source-paper-43-official","type":"official_publication_record","title":"CSCML 2018 publication record","url":"https://doi.org/10.1007/978-3-319-94147-9_13","provenance_category":"official"},{"id":"source-paper-43-citations","type":"citation_index_snapshot","title":"OpenAlex work W2808255709","url":"https://openalex.org/W2808255709","accessed_at":"2026-07-11"}],"source_anchors":[{"id":"anchor-paper-43-problem","source_id":"source-paper-43-author-pdf","label":"Re-enrollment problem, SNUSE contribution, and headline results","locator":"Abstract and Section 1, PDF pages 1-4","url":"/pubs/2018/snuse-cscml2018.pdf#page=1"},{"id":"anchor-paper-43-background","source_id":"source-paper-43-author-pdf","label":"BIA, Shamir sharing, honest-but-curious MPC, and fuzzy-vault background","locator":"Section 2, PDF pages 4-8","url":"/pubs/2018/snuse-cscml2018.pdf#page=4"},{"id":"anchor-paper-43-architecture","source_id":"source-paper-43-author-pdf","label":"Parties, data placement, and SNUSE lifecycle","locator":"Section 3, PDF pages 8-9","url":"/pubs/2018/snuse-cscml2018.pdf#page=8"},{"id":"anchor-paper-43-enrollment","source_id":"source-paper-43-author-pdf","label":"Initial enrollment protocol","locator":"Section 3.1 and Figure 2, PDF pages 9-11","url":"/pubs/2018/snuse-cscml2018.pdf#page=9"},{"id":"anchor-paper-43-authentication","source_id":"source-paper-43-author-pdf","label":"Local authentication protocol","locator":"Section 3.2 and Figure 3, PDF page 11","url":"/pubs/2018/snuse-cscml2018.pdf#page=11"},{"id":"anchor-paper-43-reenrollment","source_id":"source-paper-43-author-pdf","label":"Non-interactive re-enrollment and MPC helper-data generation","locator":"Sections 3.3-3.4 and Figure 4, PDF pages 11-15","url":"/pubs/2018/snuse-cscml2018.pdf#page=11"},{"id":"anchor-paper-43-implementation","source_id":"source-paper-43-author-pdf","label":"NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction","locator":"Appendix A, PDF pages 19-22","url":"/pubs/2018/snuse-cscml2018.pdf#page=19"},{"id":"anchor-paper-43-accuracy","source_id":"source-paper-43-author-pdf","label":"Fingerprint and iris datasets, GAR/FAR method, and results","locator":"Appendix B and Figure 6, PDF pages 22-23","url":"/pubs/2018/snuse-cscml2018.pdf#page=22"},{"id":"anchor-paper-43-performance","source_id":"source-paper-43-author-pdf","label":"Execution, scale, and storage evaluation","locator":"Appendix C, Tables/Figures 1, 7, and 8, PDF pages 23-26","url":"/pubs/2018/snuse-cscml2018.pdf#page=23"},{"id":"anchor-paper-43-security","source_id":"source-paper-43-author-pdf","label":"Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse","locator":"Appendix D, PDF pages 26-27","url":"/pubs/2018/snuse-cscml2018.pdf#page=26"},{"id":"anchor-paper-43-conclusion","source_id":"source-paper-43-author-pdf","label":"Conclusion and future malicious/covert-security work","locator":"Section 4, PDF page 16","url":"/pubs/2018/snuse-cscml2018.pdf#page=16"},{"id":"anchor-paper-43-publication","source_id":"source-paper-43-official","label":"Official conference publication identity","locator":"CSCML 2018, DOI 10.1007/978-3-319-94147-9_13","url":"https://doi.org/10.1007/978-3-319-94147-9_13"},{"id":"anchor-paper-43-reception","source_id":"source-paper-43-citations","label":"Dated citation-count snapshot","locator":"OpenAlex reported 2 citing works on 2026-07-11","url":"https://openalex.org/W2808255709"}],"nodes":[{"id":"paper-43","kind":"paper","parent_id":null,"order":1,"epistemic_status":"published_conference_version","title":"SNUSE conference paper","summary":"A protocol and prototype for refreshing fuzzy-vault authentication material from threshold-shared biometric templates without user participation.","source_anchor_ids":["anchor-paper-43-problem"]},{"id":"paper-43-question","kind":"question","parent_id":"paper-43","order":1,"epistemic_status":"research_question","title":"Research question","summary":"Can biometric helper data be regenerated for thousands of users without resampling each biometric or centralizing a lifetime-sensitive template?","source_anchor_ids":["anchor-paper-43-problem"]},{"id":"paper-43-answer","kind":"contribution","parent_id":"paper-43","order":2,"epistemic_status":"implemented","title":"Central answer","summary":"Distribute template shares to offline re-enrollment servers and jointly compute a fresh fuzzy vault under MPC; keep the authentication server limited to helper data.","source_anchor_ids":["anchor-paper-43-architecture","anchor-paper-43-reenrollment"]},{"id":"paper-43-model","kind":"scope","parent_id":"paper-43","order":3,"epistemic_status":"defined","title":"Parties and data placement","summary":"A trusted biometric reader sees the template transiently; N re-enrollment servers each store one share; an authentication server stores helper data; only the enrollment/re-enrollment phases invoke the RES set.","source_anchor_ids":["anchor-paper-43-architecture","anchor-paper-43-enrollment"]},{"id":"paper-43-adversary","kind":"threat_model","parent_id":"paper-43","order":4,"epistemic_status":"honest_but_curious","title":"Adversary model","summary":"The prototype assumes honest-but-curious MPC and secure authenticated channels. Stored-template confidentiality holds below the Shamir threshold, with separate leakage cases for joint online compromise.","source_anchor_ids":["anchor-paper-43-background","anchor-paper-43-security"]},{"id":"paper-43-assumptions","kind":"assumption","parent_id":"paper-43","order":5,"epistemic_status":"cryptographic_and_operational","title":"Security assumptions","summary":"Claims rely on Shamir-sharing privacy, fuzzy-vault polynomial-reconstruction hardness, secure channel establishment, trusted sampling, and enough non-colluding RESs.","source_anchor_ids":["anchor-paper-43-background","anchor-paper-43-security"]},{"id":"paper-43-protocols","kind":"protocol_group","parent_id":"paper-43","order":6,"epistemic_status":"specified_and_implemented","title":"SNUSE lifecycle","summary":"Three protocols separate one-time enrollment, routine authentication, and occasional server-side re-enrollment.","source_anchor_ids":["anchor-paper-43-enrollment","anchor-paper-43-authentication","anchor-paper-43-reenrollment"]},{"id":"paper-43-enroll","kind":"protocol","parent_id":"paper-43-protocols","order":1,"epistemic_status":"implemented","title":"Initial enrollment","summary":"The reader samples and shares the template; RESs agree on a secret and MPC-compute shares of the vault; AS reconstructs and stores only helper data.","source_anchor_ids":["anchor-paper-43-enrollment"]},{"id":"paper-43-auth","kind":"protocol","parent_id":"paper-43-protocols","order":2,"epistemic_status":"implemented","title":"Routine authentication","summary":"AS returns the user's helper data, and the reader applies fuzzy-vault opening to a fresh biometric sample; RESs are offline and uninvolved.","source_anchor_ids":["anchor-paper-43-authentication"]},{"id":"paper-43-reenroll","kind":"protocol","parent_id":"paper-43-protocols","order":3,"epistemic_status":"implemented","title":"Non-interactive re-enrollment","summary":"AS requests a fresh credential; RESs use their stored template shares and MPC to form new helper-data shares, which AS combines without reconstructing the template.","source_anchor_ids":["anchor-paper-43-reenrollment"]},{"id":"paper-43-implementation-node","kind":"implementation","parent_id":"paper-43","order":7,"epistemic_status":"prototype","title":"Fingerprint and iris prototype","summary":"The implementation uses NTL over GF(2^24), Shamir sharing, TCP processes, NBIS fingerprint minutiae, OSIRIS iris features, 20/18 data points, and 200 chaff points.","source_anchor_ids":["anchor-paper-43-implementation"]},{"id":"paper-43-claims","kind":"claim_group","parent_id":"paper-43","order":8,"epistemic_status":"mixed","title":"Main claims","summary":"SNUSE separates biometric storage across servers, preserves the underlying matching procedure, and makes bulk re-enrollment computationally feasible in the tested setting.","source_anchor_ids":["anchor-paper-43-security","anchor-paper-43-accuracy","anchor-paper-43-performance"]},{"id":"paper-43-claim-confidentiality","kind":"claim","parent_id":"paper-43-claims","order":1,"epistemic_status":"conditional_argument","title":"No complete backend template below threshold","summary":"AS sees helper data; fewer than K RESs see only shares; the template is not reconstructed during ordinary protocol execution, conditional on the stated fuzzy-vault, sharing, and corruption assumptions.","source_anchor_ids":["anchor-paper-43-security"]},{"id":"paper-43-claim-performance","kind":"claim","parent_id":"paper-43-claims","order":2,"epistemic_status":"experimentally_supported","title":"Fast bulk refresh","summary":"A single re-enrollment averages 13.2 ms in the reported setup; scaling is approximately linear, and the extrapolation places 100,000 users under five minutes with nine RESs.","source_anchor_ids":["anchor-paper-43-performance"]},{"id":"paper-43-claim-accuracy","kind":"claim","parent_id":"paper-43-claims","order":3,"epistemic_status":"dataset_supported","title":"Matching accuracy is governed by biometric/vault parameters","summary":"On the tested data, fingerprint degree 7 gives about 90% GAR and 3% FAR, while the simple iris encoding at degree 5 gives about 75% GAR and 5% FAR; SNUSE does not itself change vault opening.","source_anchor_ids":["anchor-paper-43-accuracy"]},{"id":"paper-43-evidence","kind":"evidence_group","parent_id":"paper-43","order":9,"epistemic_status":"prototype_and_security_analysis","title":"Evidence stack","summary":"Protocol pseudocode and confidentiality arguments are paired with public biometric datasets, cross-pair GAR/FAR tests, 100-run timing measurements, scale tests, and storage calculations.","source_anchor_ids":["anchor-paper-43-implementation","anchor-paper-43-accuracy","anchor-paper-43-performance","anchor-paper-43-security"]},{"id":"paper-43-boundaries","kind":"limitation_group","parent_id":"paper-43","order":10,"epistemic_status":"explicit","title":"Security and generality boundaries","summary":"Simultaneously compromising AS and one RES during computation can reveal the current template when k is visible; conventional fuzzy vaults are not reusable; the prototype is honest-but-curious and the iris encoding is intentionally simple.","source_anchor_ids":["anchor-paper-43-security","anchor-paper-43-conclusion"]},{"id":"paper-43-artifacts","kind":"artifact_group","parent_id":"paper-43","order":11,"epistemic_status":"partial","title":"Artifacts and reproducibility","summary":"Full text, algorithm detail, parameterization, and public dataset names are available. This audit did not locate version-pinned source code, raw outputs, or an independent reproduction.","source_anchor_ids":["anchor-paper-43-implementation","anchor-paper-43-performance"]},{"id":"paper-43-scrutiny","kind":"scrutiny","parent_id":"paper-43","order":12,"epistemic_status":"venue_reviewed","title":"External scrutiny","summary":"The conference publication establishes CSCML review exposure; review reports and artifact evaluation are not represented.","source_anchor_ids":["anchor-paper-43-publication"]},{"id":"paper-43-lineage","kind":"lineage","parent_id":"paper-43","order":13,"epistemic_status":"versioned","title":"Later journal version","summary":"Paper","source_anchor_ids":["anchor-paper-43-problem","anchor-paper-43-conclusion"]}],"relations":[{"id":"paper-43-relation-answer-question","type":"addresses","from_id":"paper-43-answer","to_id":"paper-43-question"},{"id":"paper-43-relation-enroll-protocols","type":"component_of","from_id":"paper-43-enroll","to_id":"paper-43-protocols"},{"id":"paper-43-relation-auth-protocols","type":"component_of","from_id":"paper-43-auth","to_id":"paper-43-protocols"},{"id":"paper-43-relation-reenroll-protocols","type":"component_of","from_id":"paper-43-reenroll","to_id":"paper-43-protocols"},{"id":"paper-43-relation-assumptions-confidentiality","type":"qualifies","from_id":"paper-43-assumptions","to_id":"paper-43-claim-confidentiality"},{"id":"paper-43-relation-adversary-confidentiality","type":"qualifies","from_id":"paper-43-adversary","to_id":"paper-43-claim-confidentiality"},{"id":"paper-43-relation-evidence-performance","type":"supports","from_id":"paper-43-evidence","to_id":"paper-43-claim-performance"},{"id":"paper-43-relation-evidence-accuracy","type":"supports","from_id":"paper-43-evidence","to_id":"paper-43-claim-accuracy"},{"id":"paper-43-relation-boundaries-claims","type":"qualifies","from_id":"paper-43-boundaries","to_id":"paper-43-claims"},{"id":"paper-43-relation-lineage-paper","type":"contextualizes","from_id":"paper-43-lineage","to_id":"paper-43"}],"assessment":{"id":"paper-43-assessment-2026-07-11","rubric_version":"0.2","assessed_at":"2026-07-11","status":"ai_draft_author_review_pending","note":"These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.","axes":[{"id":"epistemic_evidence","level":"high","rationale":"The full manuscript provides protocols, security analysis, a working two-modality prototype, named datasets, accuracy tests, timings, scaling, and storage analysis, with explicit limits.","basis_source_anchor_ids":["anchor-paper-43-reenrollment","anchor-paper-43-accuracy","anchor-paper-43-performance","anchor-paper-43-security"]},{"id":"auditability","level":"high","rationale":"A complete checked-in author manuscript with hash, page count, detailed appendices, precise anchors, and DOI makes the represented evidence directly inspectable.","basis_source_anchor_ids":["anchor-paper-43-problem","anchor-paper-43-publication"]},{"id":"production_provenance","level":"medium","rationale":"Named authorship, venue, DOI, protocols, libraries, datasets, and environment are documented; roles, revision history, exact source revision, and raw experiment lineage are not.","basis_source_anchor_ids":["anchor-paper-43-publication","anchor-paper-43-implementation"]},{"id":"external_scrutiny","level":"medium","rationale":"CSCML publication establishes venue review, but public reports, artifact review, and independent reproduction were not located.","basis_source_anchor_ids":["anchor-paper-43-publication"]},{"id":"reception","level":"low","rationale":"OpenAlex reported 2 citations on 2026-07-11; under the author-defined rule, 0 through 8 located citations is Low. The later journal version is counted separately.","basis_source_anchor_ids":["anchor-paper-43-reception"]},{"id":"contribution_significance","level":"medium","rationale":"The work presents a concrete first claimed solution to a deployment-scale re-enrollment problem and validates feasibility, while retaining important collusion, reusability, and adversary-model limits.","basis_source_anchor_ids":["anchor-paper-43-problem","anchor-paper-43-security","anchor-paper-43-conclusion"]}]},"reception_snapshot":{"as_of":"2026-07-11","method":"OpenAlex DOI lookup","citation_count":2,"source_url":"https://openalex.org/W2808255709","signals":["OpenAlex reported 2 works citing the CSCML conference version."],"limitation":"Citation counts vary by index/date; citations may instead accrue to the later FGCS journal version, and counts do not assess security or reproducibility."}}
