Scaling Private Iris Code Uniqueness Checks to Millions of Users

Abstract

In this work we tackle privacy concerns in biometric verification systems that typically require server-side processing of sensitive data (e.g., fingerprints and Iris Codes). Concretely, we design a solution that allows us to query whether a given Iris Code is similar to one contained in a given database, while all queries and datasets are being protected using secure multiparty computation (MPC). Addressing the substantial performance demands of operational systems like World ID and aid distributions by the Red Cross, we propose new protocols to improve performance by several orders of magnitude compared to the recent state-of-the-art system Janus (S&P 24). Our final protocol can achieve a throughput of over two billion Iris Code comparisons per second on a cluster of GPUs, while protecting the privacy of both the query and database Iris Codes.

Date
Jul 23, 2024
Event
Privacy & Scaling Exploration Residency Tokyo
Location
Privacy & Scaling Exploration Residency Tokyo
Roman Walch
Roman Walch
Co-founder/Lead Cryptographer at TACEO

My main research interests include privacy enhancing technologies (FHE, MPC, ZKP), domain-specific symmetric primitives, and their application to real-world use cases.

Related