Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up
for free
Hash Range Queries
luke crouch
December 18, 2018
Technology
0
23
Hash Range Queries
For simple, privacy-preserving data-sharing.
luke crouch
December 18, 2018
Tweet
Share
More Decks by luke crouch
See All by luke crouch
groovecoder
0
35
groovecoder
0
9
groovecoder
0
160
groovecoder
0
180
groovecoder
0
24
groovecoder
0
70
groovecoder
0
29
groovecoder
1
300
groovecoder
0
59
Other Decks in Technology
See All in Technology
u1nakayama
0
340
sansanbuildersbox
PRO
0
200
hcrane
3
280
ishiayaya
0
180
mrtc0
2
250
lmt_swallow
4
1k
sshota0809
2
260
miso
0
110
nakamuuu
2
140
serinuntius
0
370
nyoho
0
420
cygames
2
1.6k
Featured
See All Featured
kneath
224
15k
dougneiner
56
5.6k
mza
82
4.4k
jcasabona
10
730
cromwellryan
107
6.5k
paulrobertlloyd
74
1.6k
reverentgeek
34
2.4k
holman
451
140k
lynnandtonic
277
17k
jonyablonski
36
1.7k
denniskardys
222
120k
kastner
56
2k
Transcript
Hash Range Queries For simple, privacy-preserving data-sharing
https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/ https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2/ Not my original idea
https://api.pwnedpasswords.com/pwnedpassword/password A request for a single password reveals who is
interested in this password. Maybe not that interesting for a widely-used value …
https://api.pwnedpasswords.com/pwnedpassword/p1nkyp13 But how many people would use their favorite my
little pony character with vowels replaced with numbers?
Do you trust the person operating the service? • Are
they doing something else with the data? • Are they securing the data?
None
How can a client get a single record from a
server without revealing the record identifier to the server?
The Easiest Way: Hashed Identifiers
None
None
But rainbow tables exist
None
The Hard Way: Private Set Intersection
None
None
The Middle Way: k-Anonymity
https://en.wikipedia.org/wiki/K-anonymity Every record is unique
https://en.wikipedia.org/wiki/K-anonymity k-Anonymity: 2 for any combination of Age + Gender
+ State found in any row of the table there are always at least 2 rows with those exact attributes Suppression Suppression Generalization
https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/ By using this property, we are able to seperate
hashes into anonymized "buckets".
https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/ A client is able to anonymize the user-supplied hash
…
https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/ … and then download all hashes in the same
anonymized "bucket" as that hash … {
https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/ { 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 5baa61f4c0b12f0a6691121c7de9420c8ff12c1f 5baa61aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa 5baa61bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb 5baa61cccccccccccccccccccccccccccccccccc 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 5baa61f4c0b12f0a6691121c7de9420c8ff12c1f 5baa61aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
5baa61bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb 5baa61cccccccccccccccccccccccccccccccccc … then do an offline check to see if the user- supplied hash is in that breached bucket.
groovecoder
u1nakayama
sansanbuildersbox
hcrane
ishiayaya
mrtc0
lmt_swallow
sshota0809
miso
nakamuuu
serinuntius
nyoho
cygames
kneath
dougneiner
mza
jcasabona
cromwellryan
paulrobertlloyd
reverentgeek
holman
lynnandtonic
jonyablonski
denniskardys
kastner
