Insynd: Improved Privacy-Preserving Transparency Logging

Peeters, Roel; Pulls, Tobias

doi:10.1007/978-3-319-45741-3_7

Cited by 8 publications

(3 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Informed privacy settings [35] Consent Management Platforms [36]- [38] Privacy nudges [39]- [42] Data Management Data minimization [24] De-identification [43] Differential privacy [44] Local differential privacy [45] Compliant database [46] Policies P3P [47], [48] Enterprise privacy policies [49] Sticky policies [50]- [52] Access Control (Data User) [53], [54] Access Control (Data Subject) [55] Privacy API [56] Monitoring Minimization monitoring [57] Logging [58]- [60] Workflow auditing [61] Legend: D design time decision, R runtime decision, primary principle the technology contributes to (not necessarily complete so other technologies can still be required), other principles the technology can contribute to.…”

Section: User Preferencesmentioning

confidence: 99%

An Overview of Runtime Data Protection Enforcement Approaches

Sion

Landuyt

Joosen

2021

2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

Section: User Preferencesmentioning

confidence: 99%

An Overview of Runtime Data Protection Enforcement Approaches

Sion

Landuyt

Joosen

2021

2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

“…A prefix tree and a history tree can be combined into a single system to form a verifiable log-backed map [8], [83] (see also Key Transparency [82] and the proposed enhanced certificate transparency [163]). (The prefix tree can alternatively be a hash treap [151], [156]. )…”

Section: Logging Mechanismmentioning

confidence: 99%

Transparency Enhancing Technologies to Make Security Protocols Work for Humans

Hicks

Murdoch

2020

Security Protocols XXVII

View full text Add to dashboard Cite

As computer systems are increasingly relied on to make decisions that will have significant consequences, it has also become important to provide not only standard security guarantees for the computer system but also ways of explaining the output of the system in case of possible errors and disputes. This translates to new security requirements in terms of human needs rather than technical properties. For some context, we look at prior disputes regarding banking security and the ongoing litigation concerning the Post Office's Horizon system, discussing the difficulty in achieving meaningful transparency and how to better evaluate available evidence.

show abstract

“…Extended Certificate Transparency [43] adds a second log to efficiently handle certificate revocation and presents an application to secure email. Finally, a number of works have focused on building general transparent data structures and enabling computation over them [40,41,37,49].…”

Section: Related Workmentioning

confidence: 99%

Certificate Transparency with Privacy

Eskandarian

Messeri²,

Bonneau³

et al. 2017

Proceedings on Privacy Enhancing Technologies

View full text Add to dashboard Cite

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of privacy-related challenges remain. In this paper we propose practical solutions to two issues. First, we develop a mechanism that enables web browsers to audit a CT log without violating user privacy. Second, we extend CT to support non-public subdomains.

show abstract

Insynd: Improved Privacy-Preserving Transparency Logging

Cited by 8 publications

References 14 publications

An Overview of Runtime Data Protection Enforcement Approaches

An Overview of Runtime Data Protection Enforcement Approaches

Transparency Enhancing Technologies to Make Security Protocols Work for Humans

Certificate Transparency with Privacy

Contact Info

Product

Resources

About