35 results about "Fuzzy vault" patented technology

The invention provides a lightweight back-up and efficient restoration method of health block chain data encryption keys.Body area networks achieve physiological parameters acquisition of healthy body health, health block chains are produced by a group of credible IT devices appointed by multiple health institutions and used for receiving and storing health data of the body area networks, the health block chain data encryption keys are produced by utilizing a fuzzy technology fuzzy vault and physiological signals acquired by the body area networks, human physiological data acquired in different time periods is encrypted by utilizing different data encryption keys and then is saved in the block chains of the IT devices without storage of historical data encryption keys; historical secret keys are restored by utilizing the health data acquired by the body area networks in real time.The lightweight back-up and efficient restoration method integrates the body area networks with the health block chains, avoids huge burden brought by secret key splitting related in a traditional secret key restoration method and safe storage and retrieval of shadow secret keys and greatly reduces management complexity of the health block chain data encryption keys.

The invention relates to a fingerprint fuzzy vault method based on a threshold secret sharing scheme. The method comprises a shared key distribution phase and a shared key reconstruction phase. The shared key distribution phase further comprises a binding process of the fingerprint fuzzy vault and a user subkey, and a shared key binding process. The shared key reconstruction phase further comprises a releasing process of partial user subkeys and a releasing process of the shared key. When the fingerprint fuzzy vault method is used to protect the shared key, the shared key is safely and conveniently released through fingerprint characteristics of the user. The releasing process of the key is very simple, and thus the key sharing scheme is more practical.

The invention relates to a fuzzy vault method based on fingerprint features and an Internet key exchange protocol. The existing method has the problems that security storage users share one key. The method comprises the steps of a shared key generation step of a diffie-hellman key exchange protocol and a binding and releasing step of a finger fuzzy vault and the shared key, wherein the shared key generation step is that the shared key is generated on the basis of the Diffie-Hellman protocol. The binding step of the fingerprint fuzzy vault and the shared key is that original fingerprint information is adopted as a polynomial element, and a polynomial is constructed by utilizing the shared key. The releasing step of the fingerprint fuzzy vault and the shared key is that the polynomial is reconstructed by inquiring the fingerprint information, and the shared key is restored. Due to the adoption of the fingerprint fuzzy vault algorithm, while the shared key is protected, the shared key can be safely and conveniently released through the fingerprint features of the user, so that the key sharing scheme has better practicability.

The invention discloses a credibility detection method based on password hash and biometric feature recognition. The method mainly solves the problems that existing computer information detection codes are likely to be reversely calculated and computers cannot recognize physical identities of users. According to the technical scheme, the method includes the steps that 1, software and hardware information of a computer is obtained, and biological feature information of a user is collected; 2, a device code is generated according to the software and hardware information, a fuzzy vault is generated through the biological feature information, and a user code is generated through the device code and the fuzzy vault; 3, the fuzzy vault and the user code serve as computer integrity check codes to be stored; 4, software and hardware information of the computer is obtained again, biological feature information of the user is recollected, and a new user code is generated; 5, the new user code is compared with the stored user code, if the new user code is identical with the stored user code, credibility verification passes, and otherwise, verification fails. The integrity check codes can be prevented from being changed and replaced, the physical identity of the user can be recognized, and the method can be used for protecting computer security.

The invention relates to a method, a device and a system for PBOC transaction based on biometric encryption. The method comprises steps: biometrics of a user are acquired, and effective biometrics are extracted; based on a password inputted by the user, a private key of the user is generated; a fuzzy vault algorithm is adopted to combine the effective biometrics and the private key to generate a biometric template for marking the user identity information; the biometric template is stored to a backstage database, and is located to a financial IC card; and the biometric template in the financial IC card and the password inputted by the user are submitted to the backstage server for verification, and after the verification is passed, the financial IC card is allowed to perform PBOC transaction. The defect that when the financial IC card is adopted to perform PBOC transaction, an asymmetric algorithm is overly dependent and can be decoded can be solved, and the biometric encryption technology is introduced to solve the uncertainty generated as a process with many human factors exists in the PBOC transaction.

The invention relates to a method for realizing a fuzzy vault on the basis of geographical location information. The method can be implemented on various mobile terminals with positioning functions. The method includes generating digital fingerprints on the basis of the geographical location information, binding the fuzzy vault with secret information and extracting the secret information from the fuzzy vault. The step of generating the digital fingerprints on the basis of the geographical location information refers to acquiring the current geographical location information and subjecting the same to treatment such as quantifying and salting to generate the digital fingerprints. The salting process aims to enhance non-duplicability and reliability of the digital fingerprints. The method has the advantages that the fuzzy vault is realized by the aid of the geographical location information, so that confidentiality and integrity of the secret information and system usability are guaranteed; the method can be applied to the all mobile equipment with a positioning function, thereby having high generalizability.

Described is a system for biometric based security. The system applies a reusable fuzzy vault (RFV) process to protect secret information. The RFV process comprises a locking algorithm and an unlocking algorithm. The locking algorithm takes as input a fuzzy string m generated from readings of biometrics and secret information sk to be protected, The locking algorithm outputs a public string vault and a hash value h of sk. The unlocking algorithm takes as input a public string vault and a fuzzy string m′, and outputs a string sk′ if fuzzy string m′ is sufficiently close to fuzzy string m. The unlocking algorithm further computes a hash value h′ of sk′ and compares it with h. The system allows access to the secret information sk when h′ is equivalent to h.

The invention discloses a key extraction method of a palm print-palm vein double-source fuzzy vault. The method comprises: segmenting a set key and a cyclic redundancy code thereof and converting into integers and constructing an n-order multinomial coefficient; during registration, converting the row vectors of 2DPHCs (2D Palm Hash Code) of the palm print and the palm veins into an integer as a horizontal ordinate and mapping the horizontal coordinate on the multinomial coefficient to calculate a longitudinal coordinate, constructing a true point using the horizontal coordinate and the longitudinal coordinate, and then adding randomly generated chaff points to construct two independent FVs; during authentication, searching for candidate points in the two corresponding FVs by use of the row vectors of 2DPHCs of the palm print and the palm veins, respectively; and if the candidate points contain more than (n+1) true points, correctly reconstructing an original polynomial and extracting a key. Due to the double-source mode of the method obviously, the accuracy of authentication is improved enough to resist brute-force attack, multi-database attack and heterogeneity analysis attack, and furthermore, the privacy of original characteristics is further effectively protected.

The invention relates to a fuzzy vault sharing method based on a fingerprint characteristic and a finite multiplicative group. Existing methods have a problem that two parties need to store different fuzzy vaults. According to the fuzzy vault sharing method, the shared information generation stage is that the shared information is obtained by utilizing a designated exchange method via conversion of fingerprint information of the two parties; the shared secret key binding stage is that the shared information generated by conversion and then exchange of the fingerprint information is bound with a shared secret key generated via a Diffie-Hellman secret key exchange protocol so that a shared fuzzy vault is generated; and the shared secret key releasing stage is that the shared information is constructed again via conversion of the fingerprint information of the two parties, the fuzzy vault is unlocked and the shared secret key is recovered. The shared secret key is protected by utilizing a fingerprint fuzzy vault algorithm, the number of the fuzzy vaults is reduced to one, and the shared secret key bound in the shared fingerprint fuzzy vault can only be released via verification of the two parties so that the fuzzy vault sharing method has better security.

The invention relates to a fuzzy control method of a bench control system, a storage medium and computer equipment. The fuzzy control method mainly comprises the following steps: acquiring a historical data set; clustering the historical data set by using an FCM algorithm, obtaining a value of a data densest region in a clustered historical data subset as a maximum value of a membership function, and dividing the historical data subset into a fuzzy set by using the membership function; constructing a fuzzy control model based on a Wang-Mendel algorithm; acquiring expert experience data as training data, and training the fuzzy control model by adopting a supervised learning method; inputting the fuzzy set into the trained fuzzy control model to obtain a fuzzy rule set; defining fuzzy rules with different conditions in the fuzzy rule set as proximity rules, and complementing incomplete fuzzy rules in the fuzzy library by using the proximity rules to obtain a new fuzzy rule set; and inputting the new fuzzy rule set to the rack control system to carry out PID parameter self-tuning.

The invention discloses a privacy protection biological authentication method and device and electronic equipment, and the method comprises the steps: constructing a corresponding biological data template according to a biological information data set inputted by a user during registration; generating a public key and private key pair by using an asymmetric cryptography technology; according to the biological data template and a private key, generating encrypted biological data by using a secret sharing scheme and an OKVS technology; sending a public key and the encrypted biological data to a server; recovering the private key by using an OKVS technology according to biological data input during user verification and the encrypted biological data; constructing a signature according to the recovered private key and the corresponding public key; and sending the signature to a server, so that the server verifies the user according to the public key and the signature. The technical problems that in the prior art, the data storage amount is large, and two systems of which the biological information of the same person is encrypted by using a fuzzy vault technology can be mutually unlocked are solved.