Biometric Template Protection

Techniques like cancellable biometrics and encryption safeguard stored biometric templates from misuse or breach.

Overview

Template protection techniques reduce the risk that stolen biometric data can be reused or inverted, supporting privacy regulations.

How it works

Transform or encrypt templates at enrollment.
Perform matching in protected form (e.g., homomorphic encryption or secure enclaves).
Allow template revocation and reissue when needed.

Common use cases

Privacy-sensitive biometric databases
Mobile devices with secure enclaves
Research on secure multi-party matching

Strengths and limitations

Strengths: Limits impact of data breaches; supports revocation.
Limitations: Performance overhead; interoperability challenges.

Key terms

Cancellable biometrics: Reversible transform of templates.
Biometric cryptosystem: Uses cryptographic schemes to protect matching.

References

Frequently Asked Questions

What is cancellable biometrics?

A method that transforms templates so they can be revoked and reissued if compromised.

How is matching done on protected data?

Approaches include secure enclaves for plaintext-in-TEE matching, helper-data schemes, or privacy-preserving computation (e.g., homomorphic encryption).

Can template protection stop inversion attacks?

Properly designed schemes reduce the risk and utility of reconstructions, but security depends on threat models and implementation.