Privacy-Preserving Surveillance

The explosive growth of biometrics use (e.g., in surveillance) poses a persistent challenge to keep biometric data private without sacrificing the apps’ functionality. We consider private querying of a real-life biometric scan (e.g., a person’s face) against a private biometric database. The querier learns only the label(s) of a matching scan(s) (e.g. a person’s name), and the database server learns nothing. We formally define Fuzzy Labeled Private Set Intersection (FLPSI), a primitive computing the intersection of noisy input sets by considering closeness/similarity instead of equality. Our FLPSI protocol’s communication is sublinear in database size and is concretely efficient. We implement it and apply it to facial search by integrating with our fine-tuned toolchain that maps face images into Hamming space. We have implemented and extensively tested our system, achieving high performance with concretely small network usage: for a 10K-row database, the query response time over WAN (resp. fast LAN) is 146ms (resp. 47ms), transferring 12.1MB; offline precomputation (with no communication) time is 0.94s. FLPSI scales well: for a 1M-row database, online time is 1.66s (WAN) and 1.46s (fast LAN) with 40.8MB of data transfer in online phase and 37.5s in offline precomputation. This improves the state-of-the-art work (SANNS) by 9-25x (on WAN) and 1.2-4x (on fast LAN). Our false non-matching rate is 0.75% for at most 10 false matches over 1M-row DB, which is comparable to underlying plaintext matching algorithm.

Demo

Details

  • [PAPER] E. Uzun, S. Chung, V. Kolesnikov, Alexandra Boldyreva and W. Lee. “Privacy Preserving Surveillance from Fuzzy Labeled Private Set Intersection.” Privacy Preserving Machine Learning (CCS Workshop), 2021.
  • [PAPER] E. Uzun, S. Chung, V. Kolesnikov, Alexandra Boldyreva and W. Lee. “Fuzzy Labeled Private Set Intersection with Applications to Private Real-Time Biometric Search.” The 30th USENIX Security Symposium, 2021.
  • [LICENSE] E. Uzun, S. Chung, V. Kolesnikov, Alexandra Boldyreva and W. Lee. “Enabling Privacy-Preserving Search Over Fuzzy Databases.” Georgia Tech Technology Licensing (8506).
  • [PATENT] E. Uzun, S. Chung, V. Kolesnikov, Alexandra Boldyreva and W. Lee. “Conducting privacy-preserving search over fuzzy databases.” U.S. Application Filed 63/052,201, Georgia Tech Research Corporation, 2021.
  • [AWARD]: The People’s Choice and Create-X Launch Invitation awards in IISP Demo Day Finale, 2020.