privacy preserving payment splitting
play

Privacy-Preserving Payment Splitting Saba Eskandarian Mihai - PowerPoint PPT Presentation

Jul 25, 2023 •260 likes •685 views

Privacy-Preserving Payment Splitting Saba Eskandarian Mihai Christodorescu Payman Mohassel Stanford University Visa Research Facebook Payment Splitting Apps Splitwise, Receipt Ninja, Billpin, SpotMe, Conmigo, Settle Up, Convenient way to

  1. Privacy-Preserving Payment Splitting Saba Eskandarian Mihai Christodorescu Payman Mohassel Stanford University Visa Research Facebook

  3. Payment Splitting Apps Splitwise, Receipt Ninja, Billpin, SpotMe, Conmigo, Settle Up, … Convenient way to keep track of costs and debts between groups of friends or colleagues

  4. Payment Splitting Apps Privacy Policy – Data We Collect: Splitwise, Receipt Ninja, Billpin, SpotMe, Conmigo, Settle Up, … “This data includes, for example, group names, expense descriptions and amounts, payments and their confirmation numbers, comments and reminders, receipt images, Convenient way to keep track of costs and debts between groups of friends or colleagues notes, and memos, in addition to any other information that you attach or share while using … ” “ … the types of expenses you add, the features you use, the actions you take, and the time, frequency and duration of your activities”

  5. Payment Splitting Apps Privacy Policy – Data We Collect: Splitwise, Receipt Ninja, Billpin, SpotMe, Conmigo, Settle Up, … “This data includes, for example, group names, expense descriptions and amounts, payments and their confirmation numbers, comments and reminders, receipt images, Convenient way to keep track of costs and debts between groups of friends or colleagues notes, and memos, in addition to any other information that you attach or share while using … ” “Personal Information collected may include your name, age, gender, zip code, e-mail address, cell phone number, occupation, hometown, “ … the types of expenses you add, the features you use, the actions you take, and the college, personal interests, nickname, friend's list and information time, frequency and duration of your activities” about personal finances” “ … we may collect and process information about your actual location, like GPS signals sent by a mobile device. We may also use various technologies to determine location, such as sensor data … ” “We also use this information to offer you tailored content – like giving you more relevant search results and ads.”

  6. Payment Splitting Apps Privacy Policy – Data We Collect: Splitwise, Receipt Ninja, Billpin, SpotMe, Conmigo, Settle Up, … “This data includes, for example, group names, expense descriptions and amounts, payments and their confirmation numbers, comments and reminders, receipt images, Convenient way to keep track of costs and debts between groups of friends or colleagues notes, and memos, in addition to any other information that you attach or share while using … ” “Personal Information collected may include your name, age, gender, zip code, e-mail address, cell phone number, occupation, hometown, “ … the types of expenses you add, the features you use, the actions you take, and the college, personal interests, nickname, friend's list and information time, frequency and duration of your activities” about personal finances” “ … we may collect and process information about your actual location, like GPS signals sent by a mobile device. We may also use various technologies to determine location, such as sensor data … ” “We also use this information to offer you tailored content – like giving you more relevant search results and ads.” “The app does use third party services that may collect information used to identify you.”

  7. Goal: cash-like privacy for payment splitting

  8. Generic Solutions Homomorphic encryption based solutions [e.g. Gen09, BGV11, GSW13] Server-aided MPC solutions [e.g. FKN94, KMR11/12, HLP11] Zero-Knowledge Log Server [e.g. zkLedger (NVV’18)] Metadata-hiding anonymous group messaging? [e.g. Riposte, Vuvuzela, Stadium, Pung, Atom]

  9. Generic Solutions Homomorphic encryption based solutions [e.g. Gen09, BGV11, GSW13] Server-aided MPC solutions [e.g. FKN94, KMR11/12, HLP11] Zero-Knowledge Log Server [e.g. zkLedger (NVV’18)] Metadata-hiding anonymous group messaging? [e.g. Riposte, Vuvuzela, Stadium, Pung, Atom] Goal 2: Strong performance and scalability

  10. Our Solution Same functionality as today’s payment splitting apps Hides user data from provider Runs very fast: <50ms/round on phone <300 𝜈 s/round on server (for realistic group sizes) Consists mainly of AES and addition

  11. Informal User Survey Sent to ~250 employees in Visa Palo Alto office, got 51 responses Some takeaways: • Groups tend to be small • Groups have only a few transactions a day • Transaction amounts are usually fairly small amounts of money (Dramatization, it was an online survey)

  12. Architecture Overview Group members connect to server via app

  13. Architecture Overview Group members connect to server via app Group members share secret key during setup

  14. Architecture Overview Group members connect to server via app Group members share secret key during setup System proceeds in a series of rounds

  15. Architecture Overview Group members connect to server via app Group members share secret key during setup System proceeds in a series of rounds Users send vectors of encrypted data each round – either transactions or cover traffic

  16. Architecture Overview Group members connect to server via app Group members share secret key during setup System proceeds in a series of rounds Users send vectors of encrypted data each round – either transactions or cover traffic Server blindly sums values and sends results (New balance, charger identity, integrity check)

  17. Security Properties Server Privacy: any two sets of transactions indistinguishable to server Debtor Privacy: transaction hides who it puts into debt to others

  18. Security Properties Server Privacy: any two sets of transactions indistinguishable to server Debtor Privacy: transaction hides who it puts into debt to others User Integrity: 1) No user can create or destroy money (assume >0 honest users) 2) No user can undetectably frame an honest user for making a charge Server Integrity: Malicious server can only cause denial of service

  19. Security Properties Server Privacy: any two sets of transactions indistinguishable to server Debtor Privacy: transaction hides who it puts into debt to others User Integrity: 1) No user can create or destroy money (assume >0 honest users) 2) No user can undetectably frame an honest user for making a charge Server Integrity: Malicious server can only cause denial of service Limitations: We do not hide group membership from the server We do not protect against collusion between a malicious user and server

  20. Making a Request Example: Alice requests $1 from Bob in their friend group Faces from sweetclipart.com

  21. Making a Request Example: Alice requests $1 from Bob in their friend group Alice sets her vector to all 0s except a 1 in Bob’s position 0 1 0 0 Faces from sweetclipart.com

  22. Making a Request Example: Alice requests $1 from Bob in their friend group Alice sets her vector to all 0s except a 1 in Bob’s position 0 1 0 0 Anyone not making a charge puts a 1 in their own position 0 1 0 0 0 0 1 0 0 0 0 1 Faces from sweetclipart.com

  23. Making a Request Example: Alice requests $1 from Bob in their friend group Each user encrypts his/her vector and Alice sets her vector to all 0s except a 1 in Bob’s position sends the result to 0 1 0 0 the server Anyone not making a charge puts a 1 in their own position Faces from sweetclipart.com

  24. Making a Request Example: Alice requests $1 from Bob in their friend group We’ll start by showing the Alice sets her vector to all 0s except a 1 in Bob’s position protocol without 0 1 0 0 encryption Anyone not making a charge puts a 1 in their own position 0 1 0 0 0 0 1 0 0 0 0 1 Faces from sweetclipart.com

  25. Making a Request The server adds up everyone’s values and subtracts 1 0 1 0 0 0 1 0 0 0 0 1 0 0 0 0 1 + -1 -1 -1 -1 -1 1 0 0

  26. Making a Request The server adds up everyone’s values and subtracts 1 0 1 0 0 The result is added to users’ existing balances 0 1 0 0 0 0 1 0 -1 1 0 0 0 1 + -1 -1 -1 -1 Note: server tracks debt , so negative is less debt -1 1 0 0

  27. Tracing Charges How does Bob know it was Alice who charged him?

  28. Tracing Charges How does Bob know it was Alice who charged him? For each user, server takes “(input in user’s own position) – 1” ⟶ 0 ⟶ 0 ⟶ 0 ⟶ -1 0 1 1 1

  29. Tracing Charges How does Bob know it was Alice who charged him? For each user, server takes “(input in user’s own position) – 1” ⟶ 0 ⟶ 0 ⟶ 0 ⟶ -1 0 1 1 1 Multiplies by a power of 2 assigned to that user x1 = -1 + x2 = 0 + x4 = 0 + x8 = 0

  30. Tracing Charges How does Bob know it was Alice who charged him? For each user, server takes “(input in user’s own position) – 1” ⟶ 0 ⟶ 0 ⟶ 0 ⟶ -1 0 1 1 1 Multiplies by a power of 2 assigned to that user x1 = -1 + x2 = 0 + x4 = 0 + x8 = 0 And sums up the results to identify the charger(s) ⟶ = -1

  31. Tracing Charges For each user, server takes “(input in user’s own position) – 1” Multiplies by a power of 2 assigned to that user And sums up the results to identify the charger(s) Examples -1 0 0 0 -1 0 0 -1 x1 + x2 + x4 + x8 = -1 ⟶ x1 + x2 + x4 + x8 = -9 ⟶

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

P 4 PCN: Privacy-Preserving Path Probing for Ruozhou Yu , Yinxin Wan, Vishnu Teja Kilari, Guoliang Xue, Jian Tang, Dejun Yang Payment Channel Networks P 4 PCN: Privacy-Preserving Path Probing for Payment Channel Networks Ruozhou Yu, Assistant

197 views • 5 slides
Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
AN ABSTRACT OF A THESIS PRIORITY-BASED AND PRIVACY-PRESERVING ELECTRIC VEHICLE DYNAMIC CHARGING

AN ABSTRACT OF A THESIS PRIORITY-BASED AND PRIVACY-PRESERVING ELECTRIC VEHICLE DYNAMIC CHARGING

AN ABSTRACT OF A THESIS PRIORITY-BASED AND PRIVACY-PRESERVING ELECTRIC VEHICLE DYNAMIC CHARGING SYSTEM WITH DIVISIBLE E-PAYMENT Surya Teja Gunukula Master of Science in Electrical and Computer Engineering The future transportation systems will

1.35k views • 106 slides
Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro University College London (UCL) https://emilianodc.com Privacy-preserving what ? Parties with limited mutual trust willing or required to share

1.1k views • 66 slides
New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of California, San Diego Sensitive Data Medical Records Genetic Data Search Logs AOL Violates Privacy AOL Violates Privacy Netflix Violates Privacy [NS08]

957 views • 92 slides
Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

477 views • 34 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes Ben-Gurion University, Israel This talk presents joint work with Boris Rozenberg Talk Outline Motivation for Privacy-Preserving Distributed Data

1.48k views • 68 slides
Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong CS573 Data Privacy and Anonymity Partial slides credit: W. Du, Syracuse University, Y. Gao, Peking University Privacy Preserving Data Mining

659 views • 39 slides
Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My experience with biometrics and privacy Academic background on privacy Gradiants goal: transfer of knowledge to industry We bring state of

193 views • 6 slides
S &amp; P SECURITY &amp; PRIVACY GROUP Security and Privacy for Payment Channel Networks

S &amp; P SECURITY &amp; PRIVACY GROUP Security and Privacy for Payment Channel Networks

FAKULTT FR !NFORMATIK Faculty of Informatics S &amp; P SECURITY &amp; PRIVACY GROUP Security and Privacy for Payment Channel Networks Pedro Moreno-Sanchez Blockchain Summer School BDLT19 Vienna, Sep 2nd 2019 Blockchain Research

1.41k views • 73 slides
Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start with encryption With good encryption, data values not readable So whats the problem? Lecture 17 Page 1 CS 236 Online Traffic Analysis

532 views • 21 slides
On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph Geumlek,* Max Welling, + Kamalika Chaudhuri* + University of Amsterdam *University of California, San Diego Overview Bayesian Privacy-preserving

878 views • 75 slides
Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Motivation Two-Cloud Setting PP k NN Classification Conclusion and Future Research Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security Yousef M. Elmehdwi Department of Mathematics and Computer

919 views • 19 slides
DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining &amp; Information Privacy:

DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining &amp; Information Privacy:

DIMACS/PORTIA Workshop on Privacy Preserving Data Mining Data Mining &amp; Information Privacy: New Problems and the Search for Solutions March 15 th , 2004 Tal Zarsky The Information Society Project, Yale Law School Introduction: Various

273 views • 25 slides
Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath,

Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath,

Privacy-Preserving DNS Analysis of Broadcast, Range Queries and Mixes Hannes Federrath, Karl-Peter Fuchs, Dominik Herrmann , Christopher Piosecny University of Hamburg (Germany) 1 Agenda Missing Privacy in DNS Characteristics of DNS Traffic

559 views • 24 slides
WELCOME: OHC ADMIN TRAINING NEW FOR 2018! Dashboard Email confirmation to parents

WELCOME: OHC ADMIN TRAINING NEW FOR 2018! Dashboard Email confirmation to parents

WELCOME: OHC ADMIN TRAINING NEW FOR 2018! Dashboard Email confirmation to parents Confirm enrollment w/ camps directly through the system Update statuses in bulk! Smoother system work flow (less work for you!) OHC

696 views • 32 slides
SPONSOR/CANDIDATE ORIENTATION OCTOBER 2017 2 Gathering Prayer Presider: The Lord be with you

SPONSOR/CANDIDATE ORIENTATION OCTOBER 2017 2 Gathering Prayer Presider: The Lord be with you

1 CONFIRMATION SPONSOR/CANDIDATE ORIENTATION OCTOBER 2017 2 Gathering Prayer Presider: The Lord be with you All: And with your spirit All: Lord bless our coming together and the work to which we are committed in Your name in this place.

771 views • 30 slides
Resolving Malpractice Claims after Tort Reform: Experience in a Self-Insured Texas Public

Resolving Malpractice Claims after Tort Reform: Experience in a Self-Insured Texas Public

Resolving Malpractice Claims after Tort Reform: Experience in a Self-Insured Texas Public Academic Health System William M. Sage, MD, JD School of Law and Dell Medical School, UT Austin Molly Colvard Harding, JD Georgetown University Eric J.

578 views • 19 slides
Introduction 3 Purpose and Application of Course Book and Training Train Public Housing

Introduction 3 Purpose and Application of Course Book and Training Train Public Housing

CHAPTER 1 Introduction 3 Purpose and Application of Course Book and Training Train Public Housing Agencies (PHAs) on procurement practices Applies to general PHA staff and leadership Procurement professionals required to become

246 views • 9 slides
Your Contract in Litigation You Negotiated and Executed a Contract and Now that Contract is in

Your Contract in Litigation You Negotiated and Executed a Contract and Now that Contract is in

From Boardroom to Courtroom: Your Contract in Litigation You Negotiated and Executed a Contract and Now that Contract is in Litigation, What Does that Mean for Your Company? Michelle D. Gambino | Greenberg Traurig, LLP | GambinoM@gtlaw.com

445 views • 25 slides
Implementing Dodd-Frank: The CFTCs Moderating Actions, as of December 16, 2012 ISDAs

Implementing Dodd-Frank: The CFTCs Moderating Actions, as of December 16, 2012 ISDAs

Implementing Dodd-Frank: The CFTCs Moderating Actions, as of December 16, 2012 ISDAs Requests Joshua Cohn, Partner Curtis Doty, Counsel Mayer Brown LLP [Month Year] Mayer Brown is a global legal services organization comprising legal

415 views • 13 slides
Brought to You By 2 1 9/3/2020 The CARES Act and Mortgage Forbearance 3 The CARES Act and

Brought to You By 2 1 9/3/2020 The CARES Act and Mortgage Forbearance 3 The CARES Act and

9/3/2020 1 Brought to You By 2 1 9/3/2020 The CARES Act and Mortgage Forbearance 3 The CARES Act and Mortgage Forbearance On March 27, 2020, President Trump signed into law H.R. 748, the Coronavirus Aid, Relief, and Economic Security

578 views • 34 slides
Cycle 1 2019: Treatment for Anxiety Disorders in Children, Adolescents, and/or Young Adults Town

Cycle 1 2019: Treatment for Anxiety Disorders in Children, Adolescents, and/or Young Adults Town

Cycle 1 2019: Treatment for Anxiety Disorders in Children, Adolescents, and/or Young Adults Town Hall January 22, 2019 Agenda Welcome and Introductions PFA overview Submit questions via the questions box in Patient and Stakeholder

620 views • 50 slides

More recommend