You want to protect biometric data against unauthorised access. There are many ways.
I have observed another way to protect medical data (a case of bio data), with data not moving on networks, and if processing is needed, it comes to the data. Data stay where they are (clinic, hospital). Algorithms travel.
An interesting issue. Biometric encryption is currently one of the fastest growing areas of security technology for access to information systems of strategic state institutions for authorized persons and in the use of personal mobile devices. Therefore, it can contribute to raising the level of security of data transfer in electronic online and mobile banking. On the other hand, some types of cybercriminal activity are developing almost independently of improving the techniques of encrypting and decrypting access to data, to computerized database systems of institutions or important electronic personal documents. If in their activity cybercriminals use the latest available ICT technologies, social engineering tricks and break into thousands or millions of social media accounts and e-mail accounts, the development of biometric encryption can not help defending cybercriminal attacks in this matter. In a situation where up to thousands of millions of e-mail account accounts of social media portals are sent by cybercriminals false messages, malware-infected e-mails, the scale of cyber-crime activity can be much greater than that of institutions attacked in this way. For example, in recent years there has been a growing scale of effective cybercriminal attacks on e-mail accounts of institutional and individual users using ransomware, which digitally encrypts data access on disks. I described these issues in my publications.
Thank you very much for pointing out the issues of the security breaches, looking at the database as the storage aspect. What do you think could be the best mechanism to protect the biometric data in the database server.