Abstract | ||
---|---|---|
We analyze the privacy implications of identity references in biometric databases in which either raw biometric samples or templates are stored. The analysis was inspired by the privacy requirement imposed by the Norwegian National DPA (Data Protection Act Privacy Advisor) on the fingerprint data collection for one of our research projects. The respective DPA approved maintenance of a fingerprint database but required deletion of personal information, e.g., name, gender, age, and email address which were collected and stored in a 'namelist' (XLS-file) as identity references and maintained on a separate hard-disk from the biometric references. We discuss in this paper whether deletion of identity references, as the simplest anonymization way, is appropriate for privacy protection. We take a closer look at the identity attributes and assess to which degree they achieve privacy for an entity based on the proposed criteria. We analyze different biometric database models against the given criteria to give privacy protection guidelines for the identity reference construction and maintenance in a biometric database. In addition, the possibility of joint protection of identity references and biometric references is also investigated in some proposed models suitable for the identity authentication scenario. |
Year | DOI | Venue |
---|---|---|
2012 | 10.1109/IIH-MSP.2012.13 | IIH-MSP |
Keywords | Field | DocType |
biometric samples,database management systems,namelist,identity attribute,biometrics databases,data privacy,biometric references,different biometric database model,identity reference,biometrics,privacy requirement,data protection act privacy advisor,identity authentication scenario,fingerprint data collection,biometric reference,raw biometric sample,biometric database,privacy,privacy implication,biometrics (access control),biometric databases,norwegian national dpa,identity references,hard-disk,biometric templates,identity management,privacy implications,identity reference construction,databases,security,couplings | Internet privacy,Authentication,Database model,Computer science,Fingerprint,Identity management,Personally identifiable information,Biometrics,Information privacy,Data Protection Act 1998,Database | Conference |
ISBN | Citations | PageRank |
978-1-4673-1741-2 | 0 | 0.34 |
References | Authors | |
8 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Bian Yang | 1 | 197 | 18.08 |
Lisa Rajbhandari | 2 | 24 | 4.56 |
Christoph Busch | 3 | 339 | 31.75 |
Xuebing Zhou | 4 | 150 | 13.14 |