Kontakt

Universität Oldenburg
Fakultät II – Department für Informatik
Abteilung Safety-Security-Interaction
26111 Oldenburg

Sekretariat

Ingrid Ahlhorn

+49 (0) 441 - 798 2426

I 11 0-014

Industriestrasse 11, 26121 Oldenburg

Safety-Security-Interaction

Herzlich willkommen auf den Webseiten der Abteilung für Safety-Security-Interaction!

Die Abteilung für Safety-Security-Interaction beschäftigt sich mit der Entwicklung theoretisch fundierter Verfahren zur Wahrung der Sicherheit (security) von IT-Systemen im Kontext sicherheitskritischer Systeme und des Internets der Dinge. Schwerpunkt ist die Entwicklung von Sicherheitslösungen, welche auf die Kontext-spezifischen Rahmenbedingungen zugeschnitten sind und verschiedenartige Benutzerinteraktionen (interaction) sowie die funktionale Sicherheit (safety) der zu schützenden Systeme berücksichtigen.

Nachrichten

Artikel im Frontiers in Imaging Journal!

Safety-Security-Interaction

Der Artikel „Template recovery attack on encrypted face recognition systems with unprotected decision using synthetic faces” mit SSI-Beteiligung beim Frontiers in Imaging Journal akzeptiert!

Der Artikel „Template recovery attack on encrypted face recognition systems with unprotected decision using synthetic faces” mit SSI-Beteiligung beim Frontiers in Imaging Journal akzeptiert!

A. Bassit, F. Hahn, Z. Rezgui, H. O. Shahreza, R. Veldhuis, und A. Peter, "Template recovery attack on encrypted face recognition systems with unprotected decision using synthetic faces" Frontiers in Imaging.

Kurze Zusammenfassung (auf Englisch):

Introduction: Homomorphic encryption (HE) enables privacy-preserving face recognition by allowing encrypted facial embeddings to be compared without decryption. While efficient, these systems often reveal comparison scores in plaintext, introducing a security risk. Revealing these scores can potentially allow adversaries to reconstruct sensitive facial embeddings and infer demographic attributes, thus compromising user privacy.

Methods: This work proposes a training-less face template recovery attack leveraging the Lagrange multiplier optimization method. The attack requires only a small set of randomly generated synthetic facial images and their associated comparison scores with a target template. The method assumes attackers use spoofed synthetic faces and lack direct access to the face recognition system, aligning with real-world threat models.

Results: Experimental evaluation demonstrates the feasibility and effectiveness of the proposed attack. It shows that between 50 and 192 comparison scores and synthetic images are sufficient to recover the target face template with 100% success under strict system thresholds. The recovered templates closely resemble the original and retain identifiable soft biometric traits.

Discussion: The findings reveal a critical vulnerability in face recognition systems employing inner product similarity measures under homomorphic encryption. Even without system access or training data, attackers can exploit leaked comparison scores to compromise facial privacy. The study underscores the need to reassess how score leakage is handled in encrypted recognition systems and explore stronger protection mechanisms against template reconstruction.

Webmaster (Stand: 20.08.2024)  Kurz-URL:Shortlink: https://uole.de/p81251n11955
Zum Seitananfang scrollen Scroll to the top of the page