privacy preserving kyc on ethereum
play

Privacy-preserving KYC on Ethereum Introduction A decentralized - PowerPoint PPT Presentation

May 31, 2023 •615 likes •828 views

Privacy-preserving KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Privacy-preserving KYC on Ethereum Introduction A decentralized KYC-compliant identity Alex Biryukov, Dmitry Khovratovich, Sergei Tikhomirov Conclusion and future work

  1. Privacy-preserving KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Privacy-preserving KYC on Ethereum Introduction A decentralized KYC-compliant identity Alex Biryukov, Dmitry Khovratovich, Sergei Tikhomirov Conclusion and future work SnT, University of Luxembourg 9 May 2018 CWI, Amsterdam, The Netherlands 1/20

  2. Privacy-preserving Outline KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity Introduction Conclusion and future work A decentralized KYC-compliant identity Conclusion and future work 2/20

  3. Privacy-preserving Identity is data that represents a user KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity Identity is used for: Conclusion and ◮ Authentication: proves the user is who they claim to be; future work ◮ Authorization: ensure the user is eligible for an action. In cryptographic terms, user is represented by a private-public key pair. 3/20

  4. Privacy-preserving Centrally managed identity KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ Prevalent model today Conclusion and future work ◮ User delegate identity management to companies, get access using password ◮ Risks: identity theft, central point of failure 4/20

  5. Privacy-preserving Decentralized identity KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ Putting users in charge of managing their data Conclusion and future work ◮ Can be implemented using blockchains ◮ Does it respect privacy? ◮ Does it comply with regulations? 5/20

  6. Privacy-preserving Bitcoin KYC on Ethereum Biryukov, Khovratovich, ◮ A decentralized digital currency [Nakamoto 2008] Tikhomirov Introduction ◮ Combines cryptography and economics to prevent A decentralized KYC-compliant double spending without a trusted third party identity Conclusion and future work 6/20

  7. Privacy-preserving Ethereum: generalized blockchain KYC on Ethereum Biryukov, Khovratovich, ◮ A blockchain-based application platform [Buterin 2014] Tikhomirov Introduction ◮ Key feature: Turing complete programming A decentralized KYC-compliant identity Conclusion and future work 7/20

  8. Privacy-preserving Ethereum tokens KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ A popular use case for smart contracts Conclusion and future work ◮ A fungible unit of value maintained by a smart contract ◮ ERC20 is the de-facto standard token API ◮ Decentralized exchanges – a promising direction 8/20

  9. Privacy-preserving ERC20 functions KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ transfer – send tokens to an address Conclusion and future work ◮ approve – allow other user to transfer my tokens ◮ transferFrom – send other user’s tokens (only if approve d) 9/20

  10. Privacy-preserving A decentralized KYC-compliant identity KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized Our identity management design for financial services is: KYC-compliant identity ◮ Decentralized (on-chain) Conclusion and future work ◮ Privacy-preserving ◮ Can be made compliant ◮ Extendable to many application types (consider a token exchange as an example) 10/20

  11. Privacy-preserving Cryptographic accumulator KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ A cryptographic primitive: absorbs algebraic objects Conclusion and future work ◮ Provides interface to verify whether a value was accumulated ◮ Preserves privacy: individual values are not disclosed 11/20

  12. Privacy-preserving Accumulator-based identity workflow (1/2) KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant ◮ A KYC Provider publishes a contract with an empty identity accumulator Conclusion and future work ◮ A User interacts with the Provider (possibly offline) and gets their value accumulated ◮ The Provider issues a witness s.t. the User can later prove their eligibility 12/20

  13. Privacy-preserving Accumulator-based identity workflow (2/2) KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity To prove eligibility, a user submits an (atomic) Conclusion and zero-knowledge proof of the statement: future work ◮ I know the private key corresponding to msg.sender ; ◮ I know a signature and a witness for some value which was previously accumulated. 13/20

  14. Privacy-preserving KYC Provider interface KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity ◮ add(user, token) – makes user eligible Conclusion and future work ◮ remove(user, token) – makes user not eligible ◮ isEligible(user, token) – check if the user is eligible 14/20

  15. Privacy-preserving Use case 1: compliant exchange KYC on Ethereum Biryukov, Khovratovich, Tikhomirov ◮ An exchange verifies users before making transactions Introduction A decentralized KYC-compliant ◮ Traded tokens do not need to be aware of KYC identity Conclusion and future work 15/20

  16. Privacy-preserving Use case 2: compliant token KYC on Ethereum Biryukov, Khovratovich, Tikhomirov ◮ A token verifies users before making transactions Introduction A decentralized KYC-compliant ◮ Services (exchanges) do not need to be aware of KYC identity Conclusion and future work 16/20

  17. Privacy-preserving Implementation details KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction ◮ A PoC implementation (not privacy-preserving): joint A decentralized KYC-compliant 1st prize at the Luxblock hackathon in May 2017 identity Conclusion and future work ◮ (The team also included: Daniel Feher, Dmitry Khovratovich, Aleksei Udovenko, Maciej Zurad) ◮ Accumulator implementation depends on new opcodes: currently Ethereum does not natively support all required cryptographic operations ◮ Updating the accumulator is expensive if done on-chain 17/20

  18. Privacy-preserving Conclusion and future work KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant ◮ Ethereum provides ways to encode and enforce digital identity agreements Conclusion and future work ◮ Cryptography allows for additional eligibility checks which minimally impact the users’ privacy ◮ Many technical challenges to overcome before realizing this idea 18/20

  19. Privacy-preserving Research question KYC on Ethereum Biryukov, Khovratovich, Tikhomirov Introduction A decentralized KYC-compliant identity Conclusion and Can we leverage sophisticated cryptography in future work public blockchains to provide stronger security and privacy guarantees? 19/20

  20. Privacy-preserving Questions? KYC on Ethereum Biryukov, Khovratovich, Tikhomirov ◮ cryptolux.org Introduction A decentralized KYC-compliant identity Conclusion and ◮ s-tikhomirov.github.io future work 20/20

Recommend

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro University College London (UCL) https://emilianodc.com Privacy-preserving what ? Parties with limited mutual trust willing or required to share

1.1k views • 66 slides
New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of California, San Diego Sensitive Data Medical Records Genetic Data Search Logs AOL Violates Privacy AOL Violates Privacy Netflix Violates Privacy [NS08]

957 views • 92 slides
Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

477 views • 34 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes Ben-Gurion University, Israel This talk presents joint work with Boris Rozenberg Talk Outline Motivation for Privacy-Preserving Distributed Data

1.48k views • 68 slides
Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong CS573 Data Privacy and Anonymity Partial slides credit: W. Du, Syracuse University, Y. Gao, Peking University Privacy Preserving Data Mining

659 views • 39 slides
Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My experience with biometrics and privacy Academic background on privacy Gradiants goal: transfer of knowledge to industry We bring state of

193 views • 6 slides
Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start with encryption With good encryption, data values not readable So whats the problem? Lecture 17 Page 1 CS 236 Online Traffic Analysis

532 views • 21 slides
On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph Geumlek,* Max Welling, + Kamalika Chaudhuri* + University of Amsterdam *University of California, San Diego Overview Bayesian Privacy-preserving

878 views • 75 slides
Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Motivation Two-Cloud Setting PP k NN Classification Conclusion and Future Research Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security Yousef M. Elmehdwi Department of Mathematics and Computer

919 views • 19 slides
DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining & Information Privacy:

DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining & Information Privacy:

DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining & Information Privacy: New Problems and the Search for Solutions March 15 th , 2004 Tal Zarsky The Information Society Project, Yale Law School Introduction: Various

273 views • 25 slides
Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath,

Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath,

Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath, Karl-Peter Fuchs, Dominik Herrmann , Christopher Piosecny University of Hamburg (Germany) 1 Agenda Missing Privacy in DNS Characteristics of DNS Traffic

559 views • 24 slides
P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

P 4 PCN: Privacy-Preserving Path Probing for Ruozhou Yu , Yinxin Wan, Vishnu Teja Kilari, Guoliang Xue, Jian Tang, Dejun Yang Payment Channel Networks P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

197 views • 5 slides
Privacy-Preserving Publish/Subscribe: Efficient Protocols in a

Privacy-Preserving Publish/Subscribe: Efficient Protocols in a

Privacy-Preserving Publish/Subscribe: Efficient Protocols in a Distributed Model Giovanni Di Crescenzo 1 Brian Coan 1 John Schultz 3 Simon Tsang 1 Rebecca N.

338 views • 14 slides
DPM 2013 Privacy-Preserving Multi-Party Reconciliation Secure in the Malicious Model 8th ACM

DPM 2013 Privacy-Preserving Multi-Party Reconciliation Secure in the Malicious Model 8th ACM

DPM 2013 Privacy-Preserving Multi-Party Reconciliation Secure in the Malicious Model 8th ACM International Workshop on Data Privacy Management 2013 Georg Neugebauer 1 , Lucas Brutschy 1 , Ulrike Meyer 1 and Susanne Wetzel 2 UMIC LuFG IT-Security,

212 views • 17 slides
Privacy-Preserving Statistical Data Analysis on Federated Databases Dan Bogdanov Liina Kamm

Privacy-Preserving Statistical Data Analysis on Federated Databases Dan Bogdanov Liina Kamm

Privacy-Preserving Statistical Data Analysis on Federated Databases Dan Bogdanov Liina Kamm Sven Laur Pille Pruulmann-Vengerfeldt Riivo Talviste Jan Willemson Annual Privacy Forum Athens, Greece May 20, 2014 UaESMC Problem Statement

429 views • 17 slides
Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

CS573 Data Privacy and Security Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li Xiong Slides credit: Chris Clifton, Purdue University; Murat Kantarcioglu, UT Dallas Outline Overview Data

901 views • 42 slides
Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving

Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving

Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving Mechanisms Simon Oya, Carmela Troncoso, Fernando Prez-Gonzlez 1 Motivation. Obfuscation-Based Location Privacy. Location information is sensitive.

521 views • 20 slides
Helper data schemes for privacy-preserving biometrics Boris kori TU Eindhoven van der

Helper data schemes for privacy-preserving biometrics Boris kori TU Eindhoven van der

Helper data schemes for privacy-preserving biometrics Boris kori TU Eindhoven van der Meulen seminar Leuven, December 2011 1 Outline Security with noisy data - biometrics & privacy - Physical Unclonable Functions (PUFs)

828 views • 39 slides
Building Blocks for Privacy- Preserving Decentralized Online Social Networks iSocial Summer

Building Blocks for Privacy- Preserving Decentralized Online Social Networks iSocial Summer

Building Blocks for Privacy- Preserving Decentralized Online Social Networks iSocial Summer School Sonja Buchegger, Assoc. Prof. Computer Science KTH ! Online Privacy Problematic Current services (FB, GMail, GCal, Flickr, Pinterest) are

398 views • 18 slides
Privacy Preserving Rechargeable Battery Policies for Smart Metering Systems Simon Li (Toronto),

Privacy Preserving Rechargeable Battery Policies for Smart Metering Systems Simon Li (Toronto),

Privacy Preserving Rechargeable Battery Policies for Smart Metering Systems Simon Li (Toronto), Ashish Khisti (Toronto), Aditya Mahajan (McGill) March 3, 2016 1/15 Motivation: Privacy Leakage through Power Profile U. Greveler, P. Glosekotter,

810 views • 25 slides
Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B.

Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B.

Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B. Cohen University of Edinburgh ILCC EMNLP 2018 Brussels 1 / 15 Context: Privacy and Neural Networks Machine learning uses data (e.g. UGC)

481 views • 19 slides
Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu, Shicong Meng, and Balaji Palanisamy College of Computing, Georgia Institute of Technology Talk Overview Motivation Content Privacy issues in

963 views • 33 slides

More recommend