Saved in:
Bibliographic Details
Main Authors: Rahimi, Eliron, Osadchy, Margarita, Dunkelman, Orr
Format: Preprint
Published: 2026
Subjects:
Online Access:https://arxiv.org/abs/2601.17620
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866910000028319744
author Rahimi, Eliron
Osadchy, Margarita
Dunkelman, Orr
author_facet Rahimi, Eliron
Osadchy, Margarita
Dunkelman, Orr
contents Biometric data is considered to be very private and highly sensitive. As such, many methods for biometric template protection were considered over the years -- from biohashing and specially crafted feature extraction procedures, to the use of cryptographic solutions such as Fuzzy Commitments or the use of Fully Homomorphic Encryption (FHE). A key question that arises is how much protection these solutions can offer when the adversary can inject samples, and observe the outputs of the system. While for systems that return the similarity score, one can use attacks such as hill-climbing, for systems where the adversary can only learn whether the authentication attempt was successful, this question remained open. In this paper, we show that it is indeed possible to reconstruct the biometric template by just observing the success/failure of the authentication attempt (given the ability to inject a sufficient amount of templates). Our attack achieves negligible template reconstruction loss and enables full recovery of facial images through a generative inversion method, forming a pipeline from binary scores to high-resolution facial images that successfully pass the system more than 98\% of the time. Our results, of course, are applicable for any protection mechanism that maintains the accuracy of the recognition.
format Preprint
id arxiv_https___arxiv_org_abs_2601_17620
institution arXiv
publishDate 2026
record_format arxiv
spellingShingle Reconstructing Protected Biometric Templates from Binary Authentication Results
Rahimi, Eliron
Osadchy, Margarita
Dunkelman, Orr
Cryptography and Security
Biometric data is considered to be very private and highly sensitive. As such, many methods for biometric template protection were considered over the years -- from biohashing and specially crafted feature extraction procedures, to the use of cryptographic solutions such as Fuzzy Commitments or the use of Fully Homomorphic Encryption (FHE). A key question that arises is how much protection these solutions can offer when the adversary can inject samples, and observe the outputs of the system. While for systems that return the similarity score, one can use attacks such as hill-climbing, for systems where the adversary can only learn whether the authentication attempt was successful, this question remained open. In this paper, we show that it is indeed possible to reconstruct the biometric template by just observing the success/failure of the authentication attempt (given the ability to inject a sufficient amount of templates). Our attack achieves negligible template reconstruction loss and enables full recovery of facial images through a generative inversion method, forming a pipeline from binary scores to high-resolution facial images that successfully pass the system more than 98\% of the time. Our results, of course, are applicable for any protection mechanism that maintains the accuracy of the recognition.
title Reconstructing Protected Biometric Templates from Binary Authentication Results
topic Cryptography and Security
url https://arxiv.org/abs/2601.17620