Cryptology ePrint Archive: Report 2021/1683

PUBA: Privacy-Preserving User-Data Bookkeeping and Analytics

Valerie Fetzer and Marcel Keller and Sven Maier and Markus Raiber and Andy Rupp and Rebecca Schwerdt

Abstract: In this paper we propose Privacy-preserving User-data Bookkeeping & Analytics (PUBA), a building block destined to enable the implementation of business models (e.g., targeted advertising) and regulations (e.g., fraud detection) requiring user-data analysis in a privacy-preserving way.

In PUBA, users keep an unlinkable but authenticated cryptographic logbook containing their historic data on their device. This logbook can only be updated by the operator while its content is not revealed. Users can take part in a privacy-preserving analytics computation, where it is ensured that their logbook is up-to-date and authentic while the potentially secret analytics function is verified to be privacy-friendly. Taking constrained devices into account, users may also outsource analytic computations (to a potentially malicious proxy not colluding with the operator).

We model our novel building block in the Universal Composability framework and provide a practical protocol instantiation. To demonstrate the flexibility of PUBA, we sketch instantiations of privacy-preserving fraud detection and targeted advertising, although it could be used in many more scenarios, e.g. data analytics for multi-modal transportation systems. We implemented our bookkeeping protocols and an exemplary outsourced analytics computation based on logistic regression using the MP-SPDZ MPC framework. Performance evaluations using a smartphone as user device and more powerful hardware for operator and proxy suggest that PUBA for smaller logbooks can indeed be practical.

Category / Keywords: cryptographic protocols / MPC, Bookkeeping, Building-Block, Analytics, UC

Original Publication (in the same form): Proceedings on Privacy Enhancing Technologies

Date: received 22 Dec 2021

Contact author: andy rupp at uni lu, svmaier at ira uni-karlsruhe de, marcel keller at data61 csiro au, valerie fetzer at kit edu, markus raiber at kit edu, rebecca schwerdt at kit edu

Available format(s): PDF | BibTeX Citation

Version: 20211222:174624 (All versions of this report)

Short URL: ia.cr/2021/1683


[ Cryptology ePrint archive ]