Karim Eldefrawy

Cryptography, Cybersecurity, Privacy

Co-founder and CTO at Confidencial.io
2017-2021: SRI
2011-2016: HRL Laboratories
2006-2010: PhD@UC Irvine

Scientific curiosity

Scientific knowledge map · Paper #48

SNUSE: A Secure Computation Approach for Large-Scale User Re-Enrollment in Biometric Authentication Systems

Ivan De Oliveira Nunes, Karim Eldefrawy, and Tancrède Lepoint

2019 · Future Generation Computer Systems, Volume 98

  • Theory
  • Applied
  • protocol

What does the paper try to establish?

Can enterprise-scale biometric credentials be refreshed automatically after compromise, policy change, or helper-data loss without collecting users again and without centralizing their biometric templates?

What is the proposed answer?

SNUSE stores threshold shares of each biometric template on mostly offline re-enrollment servers and MPC-computes new fuzzy-vault helper data on demand. Precomputing exponentiations shifts work to enrollment, enabling rapid bulk refresh; the fingerprint/iris prototype and security analysis expose both feasibility and collusion/reusability limits.

Abstract

Recent years have witnessed an increasing demand for biometrics based identification, authentication and access control (BIA) systems, which offer convenience, ease of use, and (in some cases) improved security. In contrast to other methods, such as passwords or pins, BIA systems face new unique challenges; chiefly among them is ensuring long-term confidentiality of biometric data stored in backends, as such data has to be secured for the lifetime of an individual. Cryptographic approaches such as Fuzzy Extractors (FE) and Fuzzy Vaults (FV) have been developed to address this challenge. FE/FV do not require storing any biometric data in backends, and instead generate and store helper data that enables BIA when a new biometric reading is supplied. Security of FE/FV ensures that an adversary obtaining such helper data cannot (efficiently) learn the biometric. Relying on such cryptographic approaches raises the following question: what happens when helper data is lost or destroyed (e.g., due to a failure, or malicious activity), or when new helper data has to be generated (e.g., in response to a breach or to update the system)? Requiring a large number of users to physically re-enroll is impractical, and the literature falls short of addressing this problem. In this paper we develop SNUSE, a secure computation based approach for non-interactive re-enrollment of a large number of users in BIA systems. We prototype SNUSE to illustrate its feasibility, and evaluate its performance and accuracy on two biometric modalities, fingerprints and iris scans. Our results show that thousands of users can be securely re-enrolled in seconds without affecting the accuracy of the system.

Provenance: Transcribed from the checked-in full-text PDF; only typography, discretionary hyphenation, and line-break artifacts were normalized.

Six dimensions, kept separate

The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.

The visual spider chart requires JavaScript. The complete values and rationales follow in text.

LowMediumHighN/A = not assessed

A smaller value means less documented support for that dimension, not that the paper is false or unimportant.

Epistemic evidence High

The complete journal paper supplies protocols, optimization alternatives, a working prototype, public-dataset accuracy tests, performance/storage evaluation, and explicit security analysis and limits.

Enrollment, authentication, and re-enrollment protocols GAR/FAR experiments and public datasets Timing, scale, and storage evaluation Stored and execution confidentiality, collusion leakage, and reusability
Auditability High

A checked-in full author copy with SHA-256/page count, precise page anchors, and DOI makes the complete represented paper inspectable; code and raw results are not fixed here.

Problem, SNUSE contribution, enterprise setting, and claimed novelty Official journal publication identity
Production provenance Medium

Authors, journal, DOI, libraries, datasets, parameters, hardware, and experiment procedure are documented; roles, revisions, exact code version, and raw-run lineage are not.

Official journal publication identity NTL implementation and fingerprint/iris template extraction Timing, scale, and storage evaluation
External scrutiny Medium

Journal publication establishes external review, but public reports, artifact evaluation, and independent reproduction were not located.

Official journal publication identity
Reception Low

OpenAlex reported 6 citations on 2026-07-11; under the finalized rubric, 0 through 8 located citations is Low.

Dated citation-count snapshot
Contribution significance Medium

The work develops and validates a concrete response to a real deployment bottleneck, while security remains bounded by honest-but-curious MPC, collusion, and fuzzy-vault reusability.

Problem, SNUSE contribution, enterprise setting, and claimed novelty Stored and execution confidentiality, collusion leakage, and reusability Conclusion, measured result, and open directions

Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.

Hierarchical knowledge map

Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.

paper

SNUSE journal paper

An expanded protocol, optimization, prototype, evaluation, and security treatment of large-scale non-interactive biometric re-enrollment.

Problem, SNUSE contribution, enterprise setting, and claimed novelty
  1. protocol group Three-phase SNUSE protocol specified and implemented

    Initial enrollment distributes template shares and creates helper data; routine authentication opens the vault locally; re-enrollment regenerates helper data without the user.

    Enrollment, authentication, and re-enrollment protocols
  2. claim group Principal claims mixed

    SNUSE protects backend template storage below threshold, keeps regular authentication simple, and makes server-side bulk credential refresh feasible without altering the base biometric matching decision.

    Stored and execution confidentiality, collusion leakage, and reusability Timing, scale, and storage evaluation GAR/FAR experiments and public datasets
    1. claim

      Large-scale refresh

      experimentally supported and extrapolated

      The reported setup averages 13.2 ms for one re-enrollment and scales linearly; 100,000 users with nine RESs are projected under five minutes and one million under one hour.

      Timing, scale, and storage evaluation
  3. evidence group

    Evidence stack

    prototype experiments and analysis

    Detailed protocol algorithms, implementation parameters, three public biometric datasets, all-pairs GAR/FAR experiments, 100-run timings, scaling trials, storage calculations, and a dedicated security section support the paper.

    Enrollment, authentication, and re-enrollment protocols NTL implementation and fingerprint/iris template extraction GAR/FAR experiments and public datasets Timing, scale, and storage evaluation Stored and execution confidentiality, collusion leakage, and reusability
  4. scrutiny

    External scrutiny

    journal reviewed

    FGCS journal publication provides external review exposure; reports, artifact evaluation, and independent replication are not represented.

    Official journal publication identity

Source index

Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.

  1. Problem, SNUSE contribution, enterprise setting, and claimed novelty Abstract and Sections 1-1.1, PDF pages 1-3
  2. BIA, threshold sharing, MPC, and fuzzy-vault assumptions Section 2, PDF pages 3-5
  3. Parties, lifecycle, and data placement Section 4, PDF page 6
  4. Enrollment, authentication, and re-enrollment protocols Sections 4.1-4.3, PDF pages 7-8
  5. MPC helper-data computation, three multiplication strategies, and secret handling Sections 4.4-4.5, PDF pages 8-10
  6. NTL implementation and fingerprint/iris template extraction Sections 5-5.2, PDF pages 10-12
  7. GAR/FAR experiments and public datasets Section 5.3 and Figure 6, PDF pages 12-13
  8. Timing, scale, and storage evaluation Section 6, Table 1 and Figure 7, PDF pages 13-15
  9. Stored and execution confidentiality, collusion leakage, and reusability Section 7, PDF pages 14-15
  10. Conclusion, measured result, and open directions Section 8, PDF page 15
  11. Official journal publication identity FGCS 98, DOI 10.1016/j.future.2019.03.051
  12. Dated citation-count snapshot OpenAlex reported 6 citing works on 2026-07-11