Paper 2018/697

AUDIT: Practical Accountability of Secret Processes

Jonathan Frankle, Sunoo Park, Daniel Shaar, Shafi Goldwasser, and Daniel J. Weitzner

Abstract

The US federal court system is exploring ways to improve the accountability of electronic surveillance, an opaque process often involving cases sealed from public view and tech companies subject to gag orders against informing surveilled users. One judge has proposed publicly releasing some metadata about each case on a paper cover sheet as a way to balance the competing goals of (1) secrecy, so the target of an investigation does not discover and sabotage it, and (2) accountability, to assure the public that surveillance powers are not misused or abused. Inspired by the courts' accountability challenge, we illustrate how accountability and secrecy are simultaneously achievable when modern cryptography is brought to bear. Our system improves configurability while preserving secrecy, offering new tradeoffs potentially more palatable to the risk-averse court system. Judges, law enforcement, and companies publish commitments to surveillance actions, argue in zero-knowledge that their behavior is consistent, and compute aggregate surveillance statistics by multi-party computation (MPC). We demonstrate that these primitives perform efficiently at the scale of the federal judiciary. To do so, we implement a hierarchical form of MPC that mirrors the hierarchy of the court system. We also develop statements in succinct zero-knowledge (SNARKs) whose specificity can be tuned to calibrate the amount of information released. All told, our proposal not only offers the court system a flexible range of options for enhancing accountability in the face of necessary secrecy, but also yields a general framework for accountability in a broader class of "secret information processes."

Note: TItle differs from the conference (USENIX Security) version. The conference version title does not include "AUDIT"

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. USENIX Security Symposium 2018
Contact author(s)
sunoo @ csail mit edu
History
2018-08-08: revised
2018-07-24: received
See all versions
Short URL
https://ia.cr/2018/697
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2018/697,
      author = {Jonathan Frankle and Sunoo Park and Daniel Shaar and Shafi Goldwasser and Daniel J.  Weitzner},
      title = {{AUDIT}: Practical Accountability of Secret Processes},
      howpublished = {Cryptology {ePrint} Archive, Paper 2018/697},
      year = {2018},
      url = {https://eprint.iacr.org/2018/697}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.