Related papers: Cross Hashing: Anonymizing encounters in Decentralised Contact Tracing Protocols

Cross Hashing: Anonymizing encounters in Decentralised Contact Tracing Protocols

URL: http://arxiv.org/abs/2005.12884v4
Date: Wed, 18 Nov 2020 18:15:41 GMT
Title: Cross Hashing: Anonymizing encounters in Decentralised Contact Tracing Protocols
Authors: Junade Ali and Vladimir Dyo
Abstract summary: App-based solutions have emerged for Contact Tracing, including a protocol designed by Apple and Google. This protocol contains two well-documented de-anonymisation attacks. We propose a novel "cross hashing" approach to cryptographically guarantee minimum exposure durations.
Score: 0.76146285961466
License: http://arxiv.org/licenses/nonexclusive-distrib/1.0/
Abstract: During the COVID-19 (SARS-CoV-2) epidemic, Contact Tracing emerged as an essential tool for managing the epidemic. App-based solutions have emerged for Contact Tracing, including a protocol designed by Apple and Google (influenced by an open-source protocol known as DP3T). This protocol contains two well-documented de-anonymisation attacks. Firstly that when someone is marked as having tested positive and their keys are made public, they can be tracked over a large geographic area for 24 hours at a time. Secondly, whilst the app requires a minimum exposure duration to register a contact, there is no cryptographic guarantee for this property. This means an adversary can scan Bluetooth networks and retrospectively find who is infected. We propose a novel "cross hashing" approach to cryptographically guarantee minimum exposure durations. We further mitigate the 24-hour data exposure of infected individuals and reduce computational time for identifying if a user has been exposed using $k$-Anonymous buckets of hashes and Private Set Intersection. We empirically demonstrate that this modified protocol can offer like-for-like efficacy to the existing protocol.

Related papers

The Latency Price of Threshold Cryptosystem in Blockchains [52.359230560289745]
We study the interplay between threshold cryptography and a class of blockchains that use Byzantine-fault tolerant (BFT) consensus protocols. Existing approaches for threshold cryptosystems introduce a latency overhead of at least one message delay for running the threshold cryptographic protocol. We propose a mechanism to eliminate this overhead for blockchain-native threshold cryptosystems with tight thresholds.
arXiv Detail & Related papers (2024-07-16T20:53:04Z)
Protect Your Score: Contact Tracing With Differential Privacy Guarantees [68.53998103087508]
We argue that privacy concerns currently hold deployment back. We propose a contact tracing algorithm with differential privacy guarantees against this attack. Especially for realistic test scenarios, we achieve a two to ten-fold reduction in the infection rate of the virus.
arXiv Detail & Related papers (2023-12-18T11:16:33Z)
In Lieu of Privacy: Anonymous Contact Tracing [0.0]
Tracer Tokens are a hardware token of privacy-preserving contact tracing utilizing Exposure Notification citeGAEN protocol. We show that any disease spread by proximity can be traced such as seasonal flu, cold, regional strains of COVID-19, or Tuberculosis.
arXiv Detail & Related papers (2021-12-31T17:41:27Z)
Experimental implementation of secure anonymous protocols on an eight-user quantum network [2.5516484173114855]
We experimentally demonstrate 5 information-theoretically secure anonymity protocols on an 8 user city-wide quantum network. For a network of $n$ users, the protocols retain anonymity for the sender, given less than $n-2$ users are dishonest.
arXiv Detail & Related papers (2020-11-18T19:00:01Z)
BeeTrace: A Unified Platform for Secure Contact Tracing that Breaks Data Silos [73.84437456144994]
Contact tracing is an important method to control the spread of an infectious disease such as COVID-19. Current solutions do not utilize the huge volume of data stored in business databases and individual digital devices. We propose BeeTrace, a unified platform that breaks data silos and deploys state-of-the-art cryptographic protocols to guarantee privacy goals.
arXiv Detail & Related papers (2020-07-05T10:33:45Z)
Mind the GAP: Security & Privacy Risks of Contact Tracing Apps [75.7995398006171]
Google and Apple have jointly provided an API for exposure notification in order to implement decentralized contract tracing apps using Bluetooth Low Energy. We demonstrate that in real-world scenarios the GAP design is vulnerable to (i) profiling and possibly de-anonymizing persons, and (ii) relay-based wormhole attacks that basically can generate fake contacts.
arXiv Detail & Related papers (2020-06-10T16:05:05Z)
Decentralized Privacy-Preserving Proximity Tracing [50.27258414960402]
DP3T provides a technological foundation to help slow the spread of SARS-CoV-2. System aims to minimise privacy and security risks for individuals and communities.
arXiv Detail & Related papers (2020-05-25T12:32:02Z)
Give more data, awareness and control to individual citizens, and they will help COVID-19 containment [74.10257867142049]
Contact-tracing apps are being proposed for large scale adoption by many countries. A centralized approach raises concerns about citizens' privacy and needlessly strong digital surveillance. We advocate a decentralized approach, where both contact and location data are collected exclusively in individual citizens' "personal data stores"
arXiv Detail & Related papers (2020-04-10T20:30:37Z)
Assessing Disease Exposure Risk with Location Data: A Proposal for Cryptographic Preservation of Privacy [10.527218766532192]
Governments and researchers are implementing digital contact tracing solutions to stem the spread of infectious disease, namely COVID-19. Many of these solutions threaten individual rights and privacy. We offer an alternative approach to assess and communicate users' risk of exposure to an infectious disease while preserving individual privacy.
arXiv Detail & Related papers (2020-03-31T17:56:30Z)

This list is automatically generated from the titles and abstracts of the papers in this site.