We extend previously proposed billing protocols to strengthen their privacy in two key ways. First, we study the monetary amount a customer should add to their bill in order to provably hide their activities, within the differential privacy framework. Second, we propose a cryptographic protocol for oblivious billing that ensures any additional expenditure, aimed at protecting privacy, can be tracked and reclaimed in the future, thus minimising its cost. Our proposals can be used together or separately and are backed by provable guarantees of security.
Category / Keywords: applications / Smart Metering, Differential Privacy Date: received 16 Mar 2011, last revised 12 Apr 2011 Contact author: markulf at microsoft com Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation Note: Some minor corrections. Version: 20110412:165556 (All versions of this report) Short URL: ia.cr/2011/134 Discussion forum: Show discussion | Start new discussion