Online age verification suffers from low accuracy, high intrusiveness, privacy leakage, and credential sharing. This paper proposes Biometric-Bound Credentials (BBCreds), a cryptographic age-verification mechanism that avoids storing raw biometric templates. BBCreds dynamically binds verifiable age claims to users’ live biometric traits via zero-knowledge proofs and biometric encryption, enforcing strict “self-only, on-site-only, service-authorized-only” access control. The scheme enables decentralized verification, eliminating credential resale and identity impersonation while simultaneously ensuring privacy preservation, collusion resistance, and auditability. To the best of our knowledge, BBCreds is the first system design achieving verifiable, share-resistant, and anonymous age credentials without persisting biometric templates.

Age verification is increasingly critical for regulatory compliance, user trust, and the protection of minors online. Historically, solutions have struggled with poor accuracy, intrusiveness, and significant security risks. More recently, concerns have shifted toward privacy, surveillance, fairness, and the need for transparent, trustworthy systems. In this paper, we propose Biometric Bound Credentials (BBCreds) as a privacy-preserving approach that cryptographically binds age credentials to an individual's biometric features without storing biometric templates. This ensures only the legitimate, physically present user can access age-restricted services, prevents credential sharing, and addresses both legacy and emerging challenges in age verification. enhances privacy.