A biometric authentication scheme enables a client to log into a network system in which the safeguarding of critical data or/and controlling access are signified. A biometric-based network system verifies users who are the owners of legal biometric information. To secure such a network, we should protect all information belonging to legal individuals and preserve the privacy of tracking actions. In our previous work, we proposed a scheme with a non-repudiation property in which all individuals’ information is preserved, but there were some deficiencies in the scheme related to privacy. In this paper, we extend the previous work such that the network system enables the handling of secure computation for confident authentication, as well as the protection of critical information and the preservation of legal individuals’ privacy. Through various practical scenarios, we consider different attacks from the client, server, and network sides as intrusions into the privacy. We mathematically and practically prove that our scheme is safe enough to resist against different network attacks and to protect legitimate individuals' information and privacy. Finally, we demonstrate our computation and memory efficiency compared to related studies.

一个生物识别身份验证方案使客户端可以登录网络系统，在该网络系统中，必须保护关键数据或控制访问。基于生物特征的网络系统会验证合法生物特征信息所有者的用户。为了保护这样的网络，我们应该保护属于法人的所有信息，并保留跟踪动作的隐私。在我们以前的工作中，我们提出了一种具有不可否认性的方案，其中保留了所有个人的信息，但是该方案在隐私方面存在一些缺陷。在本文中，我们扩展了以前的工作，以使网络系统能够处理安全的计算以进行可靠的身份验证，以及保护关键信息和保护法人的隐私。通过各种实际情况，我们将来自客户端，服务器和网络端的不同攻击视为对隐私的入侵。我们在数学上和实践上证明了我们的方案足够安全，可以抵抗各种网络攻击并保护合法个人的信息和隐私。最后，我们证明了与相关研究相比，我们的计算和内存效率。