Privacy-Preserving Infection Exposure Notification without Trust in Third Parties

• URL: http://arxiv.org/abs/2103.07669v1
• Date: Sat, 13 Mar 2021 09:47:45 GMT
• Title: Privacy-Preserving Infection Exposure Notification without Trust in Third Parties
• Authors: Kenji Saito, Mitsuru Iwamura
• Abstract summary: We propose a privacy-preserving exposure notification under situations where none of the middle entities can be trusted. We show that the level of verifiability is much higher with our proposed design if a consumer group were to verify the privacy protections of the deployed systems.
• Score: 0.0
• License: http://arxiv.org/licenses/nonexclusive-distrib/1.0/
• Abstract: In response to the COVID-19 pandemic, Bluetooth-based contact tracing has been deployed in many countries with the help of the developers of smartphone operating systems that provide APIs for privacy-preserving exposure notification. However, it has been assumed by the design that the OS developers, smartphone vendors, or governments will not violate people's privacy. We propose a privacy-preserving exposure notification under situations where none of the middle entities can be trusted. We believe that it can be achieved with small changes to the existing mechanism: random numbers are generated on the application side instead of the OS, and the positive test results are reported to a public ledger (e.g. blockchain) rather than to a government server, with endorsements from the medical institutes with blind signatures. We also discuss how to incentivize the peer-to-peer maintenance of the public ledger if it should be newly built. We show that the level of verifiability is much higher with our proposed design if a consumer group were to verify the privacy protections of the deployed systems. We believe that this will allow for safer contact tracing, and contribute to healthier lifestyles for citizens who may want to or have to go out under pandemic situations.

Related papers

• SPAct: Self-supervised Privacy Preservation for Action Recognition [73.79886509500409]
  Existing approaches for mitigating privacy leakage in action recognition require privacy labels along with the action labels from the video dataset. Recent developments of self-supervised learning (SSL) have unleashed the untapped potential of the unlabeled data. We present a novel training framework which removes privacy information from input video in a self-supervised manner without requiring privacy labels.
  arXiv  Detail & Related papers  (2022-03-29T02:56:40Z)
• Privacy Amplification via Shuffling for Linear Contextual Bandits [51.94904361874446]
  We study the contextual linear bandit problem with differential privacy (DP) We show that it is possible to achieve a privacy/utility trade-off between JDP and LDP by leveraging the shuffle model of privacy. Our result shows that it is possible to obtain a tradeoff between JDP and LDP by leveraging the shuffle model while preserving local privacy.
  arXiv  Detail & Related papers  (2021-12-11T15:23:28Z)
• A Critique of the Google Apple Exposure Notification (GAEN) Framework [1.7513645771137178]
  Digital contact tracing has been proposed as a tool to support the health authorities in their quest to determine who has been in close and sustained contact with a person infected by the coronavirus. In April 2020 Google and Apple released the Google Apple Exposure Notification framework, as a decentralised and more privacy friendly platform for contact tracing. We argue that this creates a dormant functionality for mass surveillance at the operating system layer.
  arXiv  Detail & Related papers  (2020-12-09T15:05:59Z)
• Privacy-accuracy trade-offs in noisy digital exposure notifications [3.04585143845864]
  There is interest in using the power of mobile phones to automate the contact-tracing process. The rough idea is simple: use Bluetooth or other data-exchange technologies to record contacts between users, enable users to report positive diagnoses, and alert users who have been exposed to sick users. Although designing practical protocols is of crucial importance, it is essential to realize that notifying users about exposure events may itself leak confidential information.
  arXiv  Detail & Related papers  (2020-11-08T15:00:38Z)
• Second layer data governance for permissioned blockchains: the privacy management challenge [58.720142291102135]
  In pandemic situations, such as the COVID-19 and Ebola outbreak, the action related to sharing health data is crucial to avoid the massive infection and decrease the number of deaths. In this sense, permissioned blockchain technology emerges to empower users to get their rights providing data ownership, transparency, and security through an immutable, unified, and distributed database ruled by smart contracts.
  arXiv  Detail & Related papers  (2020-10-22T13:19:38Z)
• Mind the GAP: Security & Privacy Risks of Contact Tracing Apps [75.7995398006171]
  Google and Apple have jointly provided an API for exposure notification in order to implement decentralized contract tracing apps using Bluetooth Low Energy. We demonstrate that in real-world scenarios the GAP design is vulnerable to (i) profiling and possibly de-anonymizing persons, and (ii) relay-based wormhole attacks that basically can generate fake contacts.
  arXiv  Detail & Related papers  (2020-06-10T16:05:05Z)
• CoVista: A Unified View on Privacy Sensitive Mobile Contact Tracing Effort [16.33086478979547]
  The software created by Apple and Google enables individuals to track their own potential exposure through collated exposure notifications. The same software prohibits location tracking, denying key information needed by public health officials for robust contract tracing. This information is needed to treat and isolate COVID-19 positive people, identify transmission hotspots, and protect against continued spread of infection.
  arXiv  Detail & Related papers  (2020-05-27T05:09:41Z)
• Decentralized Privacy-Preserving Proximity Tracing [50.27258414960402]
  DP3T provides a technological foundation to help slow the spread of SARS-CoV-2. System aims to minimise privacy and security risks for individuals and communities.
  arXiv  Detail & Related papers  (2020-05-25T12:32:02Z)
• Give more data, awareness and control to individual citizens, and they will help COVID-19 containment [74.10257867142049]
  Contact-tracing apps are being proposed for large scale adoption by many countries. A centralized approach raises concerns about citizens' privacy and needlessly strong digital surveillance. We advocate a decentralized approach, where both contact and location data are collected exclusively in individual citizens' "personal data stores"
  arXiv  Detail & Related papers  (2020-04-10T20:30:37Z)
• Assessing Disease Exposure Risk with Location Data: A Proposal for Cryptographic Preservation of Privacy [10.527218766532192]
  Governments and researchers are implementing digital contact tracing solutions to stem the spread of infectious disease, namely COVID-19. Many of these solutions threaten individual rights and privacy. We offer an alternative approach to assess and communicate users' risk of exposure to an infectious disease while preserving individual privacy.
  arXiv  Detail & Related papers  (2020-03-31T17:56:30Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.