Cryptology ePrint Archive: Report 2018/664

Public Accountability vs. Secret Laws: Can They Coexist?

Shafi Goldwasser and Sunoo Park

Abstract: Post 9/11, journalists, scholars and activists have pointed out that secret laws --- a body of law whose details and sometime mere existence is classified as top secret --- were on the rise in all three branches of the US government due to growing national security concerns. Amid heated current debates on governmental wishes for exceptional access to encrypted digital data, one of the key issues is: which mechanisms can be put in place to ensure that government agencies follow agreed-upon rules in a manner which does not compromise national security objectives? This promises to be especially challenging when the rules, according to which access to encrypted data is granted, may themselves be secret.

In this work we show how the use of cryptographic protocols, and in particular, the use of zero-knowledge proofs can ensure accountability and transparency of the government in this extraordinary, seemingly deadlocked, setting. We propose an efficient record-keeping infrastructure with versatile publicly verifiable audits that preserve perfect (information-theoretic) secrecy of record contents as well as of the rules by which the records are attested to abide. Our protocol is based on existing blockchain and cryptographic tools including commitments and zero-knowledge SNARKs, and satisfies the properties of indelibility (i.e., no back-dating), perfect data secrecy, public auditability of secret data with secret laws, accountable deletion, and succinctness. We also propose a variant scheme where entities can be required to pay fees based on record contents (e.g., for violating regulations) while still preserving data secrecy. Our scheme can be directly instantiated on the Ethereum blockchain (and a simplified version with weaker guarantees can be instantiated with Bitcoin).

Category / Keywords: applications / accountability, surveillance, zero-knowledge

Original Publication (with minor differences): the Workshop on Privacy in the Electronic Society (WPES) at CCS 2017
DOI:
10.1145/3139550.3139565

Date: received 9 Jul 2018

Contact author: sunoo at csail mit edu

Available format(s): PDF | BibTeX Citation

Version: 20180710:005817 (All versions of this report)

Short URL: ia.cr/2018/664


[ Cryptology ePrint archive ]