BioZero: An Efficient and Privacy-Preserving Decentralized Biometric Authentication Protocol on Open Blockchain
Digital identity plays a vital role in enabling secure access to resources and services in the digital world. Traditional identity authentication methods, such as password-based and biometric authentications, have limitations in terms of security, privacy, and scalability. Decentralized authenticati...
Saved in:
Main Authors | , , , , |
---|---|
Format | Journal Article |
Language | English |
Published |
25.09.2024
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | Digital identity plays a vital role in enabling secure access to resources
and services in the digital world. Traditional identity authentication methods,
such as password-based and biometric authentications, have limitations in terms
of security, privacy, and scalability. Decentralized authentication approaches
leveraging blockchain technology have emerged as a promising solution. However,
existing decentralized authentication methods often rely on indirect identity
verification (e.g. using passwords or digital signatures as authentication
credentials) and face challenges such as Sybil attacks. In this paper, we
propose BioZero, an efficient and privacy-preserving decentralized biometric
authentication protocol that can be implemented on open blockchain. BioZero
leverages Pedersen commitment and homomorphic computation to protect user
biometric privacy while enabling efficient verification. We enhance the
protocol with non-interactive homomorphic computation and employ zero-knowledge
proofs for secure on-chain verification. The unique aspect of BioZero is that
it is fully decentralized and can be executed by blockchain smart contracts in
a very efficient way. We analyze the security of BioZero and validate its
performance through a prototype implementation. The results demonstrate the
effectiveness, efficiency, and security of BioZero in decentralized
authentication scenarios. Our work contributes to the advancement of
decentralized identity authentication using biometrics. |
---|---|
DOI: | 10.48550/arxiv.2409.17509 |