Biometric systems, while offering convenient authentication, often fall short in providing rigorous security assurances. A primary reason is the ad-hoc design of protocols and components, which hinders the establishment of comprehensive security proofs. This paper introduces a formal framework for constructing secure and privacy-preserving biometric systems. By leveraging the principles of universal composability, we enable the modular analysis and verification of individual system components. This approach allows us to derive strong security and privacy properties for the entire system, grounded in well-defined computational assumptions.

翻译：生物特征系统虽然提供了便捷的身份验证方式，但在提供严格安全保障方面往往存在不足。其主要原因在于协议与组件的临时性设计，这阻碍了建立全面安全证明的进程。本文提出了一种用于构建安全且保护隐私的生物特征系统的形式化框架。通过利用通用可组合性原理，我们实现了对单个系统组件的模块化分析与验证。该方法使我们能够基于明确定义的计算假设，为整个系统推导出强大的安全与隐私属性。