| Public Title | Privacy-Preserving Verification Software Framework | | Division | | | Lead Inventor | Bertino, Elisa | | Public Description | The protocols and algorithms developed as part of this software allow users to prove their knowledge of attributes to a service provider. The main feature of the protocols and algorithms is that they assure privacy of user data and security and protect the user data from malicious parties which may try to steal financial information from users or determine information about the user. Our protocols and algorithms make it possible to prove information from between devices by using Wi-Fi, Ethernet, and Bluetooth. Our framework is medium independent; it can easily be extended to work across a new communication medium. All of our software is written in Java and C++ allowing the software to run on multiple platforms.
Our framework combines a number of protocols and uses the correct scheme for the current task. For example if a comparison condition is specified in a policy, the framework can use oblivious transfer techniques, or when privacy-preserving authentication is encountered the zero knowledge proof of knowledge protocols can be used. The framework is modularized giving more flexibility to the developer working on an application. For example if an application would never encounter conditional policies, this module of the framework would not need to be included. Our software includes the actual core framework, efficiency testing, and specific application implementations using the framework. The core framework includes zero knowledge proof of knowledge protocols, oblivious transfer protocols, aggregation of commitments and digital signatures, secret key splitting and sharing, and a database backend using oracle. Our testing code includes testing signature aggregation schemes using bilinear maps implemented with elliptic curve pairings and batch RSA signatures. The testing code includes testing the efficiency of attribute verification and aggregated attribute verification for zero knowledge proof of knowledge and oblivious commitment-based envelope protocols on both the PC and mobile devices.
Our health care demo is specific application scenario that uses our core framework. It includes code for the Nokia 6131 phone using the zero knowledge proof of knowledge protocols to preserve a doctor's identity during an electronic prescription scenario. | | Patent Status | | | Public References | | | Key Words | |
| | Manager | Karen White | | Email | kfwhite@prf.org | | Telephone | 765-588-3486 | | Fax | 765-463-3486 |
| | | Back to List |
|