Scientific knowledge map · Paper #43
Secure Non-Interactive User Re-Enrollment in Biometrics-Based Identification and Authentication Systems
2018 · 2nd International Symposium on Cyber Security, Cryptography and Machine Learning (CSCML)
- Theory
- Applied
- protocol
Research question
What does the paper try to establish?
Can a large biometric-authentication deployment replace lost, revoked, or policy-dependent helper data without bringing every user back and without storing a complete reusable biometric template at any backend?
Central answer
What is the proposed answer?
SNUSE secret-shares each biometric template among re-enrollment servers and uses MPC to generate fresh fuzzy-vault helper data. A prototype for fingerprints and irises shows non-interactive re-enrollment at scale, subject to honest-but-curious MPC, secure channels, threshold non-collusion, fuzzy-vault reuse, and online-compromise limitations.
Evidence profile
Six dimensions, kept separate
The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.
LowMediumHighN/A = not assessed
A smaller value means less documented support for that dimension, not that the paper is false or unimportant.
- Epistemic evidence High
-
The full manuscript provides protocols, security analysis, a working two-modality prototype, named datasets, accuracy tests, timings, scaling, and storage analysis, with explicit limits.
Non-interactive re-enrollment and MPC helper-data generation Fingerprint and iris datasets, GAR/FAR method, and results Execution, scale, and storage evaluation Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse - Auditability High
-
A complete checked-in author manuscript with hash, page count, detailed appendices, precise anchors, and DOI makes the represented evidence directly inspectable.
Re-enrollment problem, SNUSE contribution, and headline results Official conference publication identity - Production provenance Medium
-
Named authorship, venue, DOI, protocols, libraries, datasets, and environment are documented; roles, revision history, exact source revision, and raw experiment lineage are not.
Official conference publication identity NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction - External scrutiny Medium
-
CSCML publication establishes venue review, but public reports, artifact review, and independent reproduction were not located.
Official conference publication identity - Reception Low
-
OpenAlex reported 2 citations on 2026-07-11; under the author-defined rule, 0 through 8 located citations is Low. The later journal version is counted separately.
Dated citation-count snapshot - Contribution significance Medium
-
The work presents a concrete first claimed solution to a deployment-scale re-enrollment problem and validates feasibility, while retaining important collusion, reusability, and adversary-model limits.
Re-enrollment problem, SNUSE contribution, and headline results Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse Conclusion and future malicious/covert-security work
Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.
Top-down and bottom-up view
Hierarchical knowledge map
Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.
SNUSE conference paper
A protocol and prototype for refreshing fuzzy-vault authentication material from threshold-shared biometric templates without user participation.
Re-enrollment problem, SNUSE contribution, and headline results-
question Research question
research questionCan biometric helper data be regenerated for thousands of users without resampling each biometric or centralizing a lifetime-sensitive template?
Re-enrollment problem, SNUSE contribution, and headline results -
contribution Central answer
implementedDistribute template shares to offline re-enrollment servers and jointly compute a fresh fuzzy vault under MPC; keep the authentication server limited to helper data.
Parties, data placement, and SNUSE lifecycle Non-interactive re-enrollment and MPC helper-data generation -
scope Parties and data placement
definedA trusted biometric reader sees the template transiently; N re-enrollment servers each store one share; an authentication server stores helper data; only the enrollment/re-enrollment phases invoke the RES set.
Parties, data placement, and SNUSE lifecycle Initial enrollment protocol -
threat model Adversary model
honest but curiousThe prototype assumes honest-but-curious MPC and secure authenticated channels. Stored-template confidentiality holds below the Shamir threshold, with separate leakage cases for joint online compromise.
BIA, Shamir sharing, honest-but-curious MPC, and fuzzy-vault background Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse -
assumption Security assumptions
cryptographic and operationalClaims rely on Shamir-sharing privacy, fuzzy-vault polynomial-reconstruction hardness, secure channel establishment, trusted sampling, and enough non-colluding RESs.
BIA, Shamir sharing, honest-but-curious MPC, and fuzzy-vault background Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse -
protocol group SNUSE lifecycle specified and implemented
Three protocols separate one-time enrollment, routine authentication, and occasional server-side re-enrollment.
Initial enrollment protocol Local authentication protocol Non-interactive re-enrollment and MPC helper-data generation-
protocol Initial enrollment
implementedThe reader samples and shares the template; RESs agree on a secret and MPC-compute shares of the vault; AS reconstructs and stores only helper data.
Initial enrollment protocol -
protocol Routine authentication
implementedAS returns the user's helper data, and the reader applies fuzzy-vault opening to a fresh biometric sample; RESs are offline and uninvolved.
Local authentication protocol -
protocol Non-interactive re-enrollment
implementedAS requests a fresh credential; RESs use their stored template shares and MPC to form new helper-data shares, which AS combines without reconstructing the template.
Non-interactive re-enrollment and MPC helper-data generation
-
-
implementation Fingerprint and iris prototype
prototypeThe implementation uses NTL over GF(2^24), Shamir sharing, TCP processes, NBIS fingerprint minutiae, OSIRIS iris features, 20/18 data points, and 200 chaff points.
NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction -
claim group Main claims mixed
SNUSE separates biometric storage across servers, preserves the underlying matching procedure, and makes bulk re-enrollment computationally feasible in the tested setting.
Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse Fingerprint and iris datasets, GAR/FAR method, and results Execution, scale, and storage evaluation-
claim No complete backend template below threshold
conditional argumentAS sees helper data; fewer than K RESs see only shares; the template is not reconstructed during ordinary protocol execution, conditional on the stated fuzzy-vault, sharing, and corruption assumptions.
Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse -
claim Fast bulk refresh
experimentally supportedA single re-enrollment averages 13.2 ms in the reported setup; scaling is approximately linear, and the extrapolation places 100,000 users under five minutes with nine RESs.
Execution, scale, and storage evaluation -
claim Matching accuracy is governed by biometric/vault parameters
dataset supportedOn the tested data, fingerprint degree 7 gives about 90% GAR and 3% FAR, while the simple iris encoding at degree 5 gives about 75% GAR and 5% FAR; SNUSE does not itself change vault opening.
Fingerprint and iris datasets, GAR/FAR method, and results
-
-
evidence group Evidence stack
prototype and security analysisProtocol pseudocode and confidentiality arguments are paired with public biometric datasets, cross-pair GAR/FAR tests, 100-run timing measurements, scale tests, and storage calculations.
NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction Fingerprint and iris datasets, GAR/FAR method, and results Execution, scale, and storage evaluation Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse -
limitation group Security and generality boundaries
explicitSimultaneously compromising AS and one RES during computation can reveal the current template when k is visible; conventional fuzzy vaults are not reusable; the prototype is honest-but-curious and the iris encoding is intentionally simple.
Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse Conclusion and future malicious/covert-security work -
artifact group Artifacts and reproducibility
partialFull text, algorithm detail, parameterization, and public dataset names are available. This audit did not locate version-pinned source code, raw outputs, or an independent reproduction.
NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction Execution, scale, and storage evaluation -
scrutiny External scrutiny
venue reviewedThe conference publication establishes CSCML review exposure; review reports and artifact evaluation are not represented.
Official conference publication identity -
lineage Later journal version
versionedPaper
Re-enrollment problem, SNUSE contribution, and headline results Conclusion and future malicious/covert-security work
Audit trail
Source index
Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.
- Re-enrollment problem, SNUSE contribution, and headline results Abstract and Section 1, PDF pages 1-4
- BIA, Shamir sharing, honest-but-curious MPC, and fuzzy-vault background Section 2, PDF pages 4-8
- Parties, data placement, and SNUSE lifecycle Section 3, PDF pages 8-9
- Initial enrollment protocol Section 3.1 and Figure 2, PDF pages 9-11
- Local authentication protocol Section 3.2 and Figure 3, PDF page 11
- Non-interactive re-enrollment and MPC helper-data generation Sections 3.3-3.4 and Figure 4, PDF pages 11-15
- NTL prototype, finite-field parameters, TCP processes, fingerprint and iris extraction Appendix A, PDF pages 19-22
- Fingerprint and iris datasets, GAR/FAR method, and results Appendix B and Figure 6, PDF pages 22-23
- Execution, scale, and storage evaluation Appendix C, Tables/Figures 1, 7, and 8, PDF pages 23-26
- Stored/execution confidentiality, collusion boundary, and fuzzy-vault reuse Appendix D, PDF pages 26-27
- Conclusion and future malicious/covert-security work Section 4, PDF page 16
- Official conference publication identity CSCML 2018, DOI 10.1007/978-3-319-94147-9_13
- Dated citation-count snapshot OpenAlex reported 2 citing works on 2026-07-11