the rise and fall of de centralized automatic contact
play

The Rise (and Fall?) of (De)Centralized Automatic Contact Tracing - PowerPoint PPT Presentation

Jan 19, 2024 •6 likes •226 views

The Rise (and Fall?) of (De)Centralized Automatic Contact Tracing Gennaro Avitabile, Vincenzo Botta, Vincenzo Iovino, Ivan Visconti (DIEM - University of Salerno) How to Notify Risks of Infection? Matthew Green on March 19: (more or less)

  1. The Rise (and Fall?) of (De)Centralized Automatic Contact Tracing Gennaro Avitabile, Vincenzo Botta, Vincenzo Iovino, Ivan Visconti (DIEM - University of Salerno)

  2. How to Notify Risks of Infection? Matthew Green on March 19: (more or less) just use rotating pseudonyms as identifier beacons using Bluetooth-Low-Energy, like in Apple's "Find my" system... the solution is already there IDs of infected citizens can then be sent to a server that sends them back to everyone interested in checking recent proximity to them it is simple, efficient, seemingly decentralized/privacy preserving …then…. DP3T, PACT -MIT, PACT-UW... and Apple-Google APIs.... …the rise of so called "decentralized contact tracing"... Severe criticism for PEPP-PT and ROBERT that proposed a centralized version where pseudonyms are generated by the server

  3. How to Notify Risks of Infection? Matthew Green on March 19: (more or less) just use rotating pseudonyms as identifier beacons using Bluetooth-Low-Energy, like in Apple's "Find my" system... the solution is already there IDs of infected citizens can then be sent to a server that sends them back to everyone interested in checking recent proximity to them it is simple, efficient, seemingly decentralized/privacy preserving …then…. DP3T, PACT -MIT, PACT-UW... and Apple-Google APIs.... …the rise of so called "decentralized contact tracing"... Severe criticism for PEPP-PT and ROBERT that proposed a centralized version where pseudonyms are generated by the server

  4. How to Notify Risks of Infection? Matthew Green on March 19: (more or less) just use rotating pseudonyms as identifier beacons using Bluetooth-Low-Energy, like in Apple's "Find my" system... the solution is already there IDs of infected citizens can then be sent to a server that sends them back to everyone interested in checking recent proximity to them it is simple, efficient, seemingly decentralized/privacy preserving …then…. DP -3T, PACT-... and Apple-Google APIs.... …the rise of so called "decentralized contact tracing"... severe criticism against PEPP-PT and ROBERT that propose a centralized version where pseudonyms are generated by the server

  5. How to Notify Risks of Infection? Matthew Green on March 19: (more or less) just use rotating pseudonyms as identifier beacons using Bluetooth-Low-Energy, like in Apple's "Find my" system... the solution is already there IDs of infected citizens can then be sent to a server that sends them back to everyone interested in checking recent proximity to them it is simple, efficient, seemingly decentralized/privacy preserving …then…. DP -3T, PACT-... and Apple-Google APIs.... …the rise of so called "decentralized contact tracing"... severe criticism against PEPP-PT and ROBERT that proposed a centralized version where pseudonyms are generated by the server

  6. Serge Vaudenay: Paparazzi Attack! https://eprint.iacr.org/2020/399 Evil Corp.

  7. Paparazzi Attack: Passive and Undetectable, Very Hard to Mitigate!! Evil Corp.

  8. Paparazzi Attack: Private data of Citizens directly exposed to Unknown Entities!!! SK A , SK B , SK C SK B, Auth B

  9. and then....

  10. Mass Surveillance!!!! This is very scary!!!!! SK A SK B SK C

  11. Paparazzi Attack - Mass Surveillance • DP-3T low-cost design is affected by this attack https://github.com/DP-3T/documents

  12. Paparazzi Attack - Mass Surveillance • DP-3T low-cost design is affected by this attack https://github.com/DP-3T/documents • Otto Seiskari showed a PoC implementation of the attack to DP-3T https://github.com/oseiskar/corona-sniffer

  13. Paparazzi Attack - Mass Surveillance • DP-3T low-cost design is affected by this attack https://github.com/DP-3T/documents • Otto Seiskari showed a PoC implementation of the attack to DP-3T https://github.com/oseiskar/corona-sniffer • Surprise: ROBERT instead withstands this attack https://github.com/ROBERT-proximity-tracing/documents

  14. Paparazzi Attack - Mass Surveillance • DP-3T low-cost design is affected by this attack https://github.com/DP-3T/documents • Otto Seiskari showed a PoC implementation of the attack to DP-3T https://github.com/oseiskar/corona-sniffer • Surprise: ROBERT instead withstands this attack https://github.com/ROBERT-proximity-tracing/documents • DP-3T unlinkable design withstands this attack... but...

  15. DP-3T Unlinkable Design IDs B, Auth B Unlinked Data

  16. Orwell Attack - Mass Surveillance!!!! IDs B, Auth B Linked Data!!!!

  17. Orwell Attack - Mass Surveillance – Passive BLE receivers – Hard to Mitigate!!!!! SK A SK B SK C

  18. Brutus Attack - Mass Surveillance AUTH CODE

  19. Brutus Attack + Orwell Attack!!!!!! SK ALICE SK BOB SK CHARLIE

  20. Contact Tracing: Decentralization? Privacy? • DP-3T: Low-cost design: decentralized, but with serious privacy issues w.r.t. hard-to-mitigate attacks (i.e., Paparazzi, Orwell, Brutus attacks) • DP-3T: Unlinkable design: semi-centralized, with serious privacy issues w.r.t. hard-to-mitigate government attacks (i.e., Orwell, Brutus attacks) • Robert: centralized, with very serious privacy issues w.r.t. government attacks (i.e., Orwell Attack) • Serge Vaudenay: "We should look for a third way" https://eprint.iacr.org/2020/531

  21. Pronto-C2 (https://eprint.iacr.org/2020/493) Anonymous Calls Features Pronto-C2 Low-cost DP-3T UnlinkableDP-3T Endorsedby A&G Resilience to Paparazzi Atk 70’s Crypto Resilience to Orwell Atk Resilience to Brutus Atk Pointers Decentralized

  22. Edward Snowden, about 5 weeks ago • Do you truly believe that when the first wave, the second wave, the 16th wave of the coronavirus is a long-forgotten memory, that these capabilities will not be kept, that these data sets will not be kept? Will those capabilities begin to be applied to small-time criminality? Will they begin to be applied to political analysis? Will they begin to be applied for doing things like performing a census? Will they be used for political polling? No matter how it is being used, what is being built is the architecture of oppression. And you might trust who is dealing with it , you might trust who runs it. You might go, "You know, I don't care about Mark Zuckerberg." But someone else will have this data eventually . Some other country will have this data eventually. In your country, a different president will have control of this data eventually, and someone will abuse it . • https://www.youtube.com/watch?v=k5OAjnveyJo Thanks a lot for your attention! Work done with our very limited but valuable resources.... our time.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Rise-fall-rise intonation and secondary QUDs Matthijs Westera Institute for Logic, Language and

Rise-fall-rise intonation and secondary QUDs Matthijs Westera Institute for Logic, Language and

Rise-fall-rise intonation and secondary QUDs Matthijs Westera Institute for Logic, Language and Computation University of Amsterdam DGfS AG3: Secondary Information & Linguistic Encoding Saarbr ucken, March 2017 Rise-fall-rise and

1.31k views • 113 slides
The Rise and Fall and Rise (Hopefully) d Ri (H f ll ) of Standard Mumps Arthur B. Smith Chair,

The Rise and Fall and Rise (Hopefully) d Ri (H f ll ) of Standard Mumps Arthur B. Smith Chair,

The Rise and Fall and Rise (Hopefully) d Ri (H f ll ) of Standard Mumps Arthur B. Smith Chair, Mumps Development Committee Fifteenth Vista Community Meeting June 1517, 2007 University of Washington, Seattle The The Rise R ise

707 views • 23 slides
A unifying understanding of rise-fall-rise, topics and non-at-issue meaning Matthijs Westera

A unifying understanding of rise-fall-rise, topics and non-at-issue meaning Matthijs Westera

A unifying understanding of rise-fall-rise, topics and non-at-issue meaning Matthijs Westera Institute for Logic, Language and Computation University of Amsterdam GLOW: Compositionality at the Interfaces Leiden, March 2017 Outline 1. Aims of

1.74k views • 143 slides
The Rise and Fall and Rise of Salmonella Serotype Enteritidis (SE) Infections Patricia M. Griffin,

The Rise and Fall and Rise of Salmonella Serotype Enteritidis (SE) Infections Patricia M. Griffin,

The Rise and Fall and Rise of Salmonella Serotype Enteritidis (SE) Infections Patricia M. Griffin, MD Chief, Enteric Diseases Epidemiology Branch Division of Foodborne, Waterborne, and Environmental Diseases National Center for Emerging and

852 views • 45 slides
Banking on the Future: The Fall and Rise of Central Banking Lord Burns David Green Chair, LSE

Banking on the Future: The Fall and Rise of Central Banking Lord Burns David Green Chair, LSE

LSE public lecture Banking on the Future: The Fall and Rise of Central Banking Lord Burns David Green Chair, LSE Former Head of International Policy, FSA Howard Davies Director, LSE Banking on the Future - the fall and rise of Central

1.3k views • 24 slides
Cellular Exploita.on on a Global Scale: The Rise and Fall

Cellular Exploita.on on a Global Scale: The Rise and Fall

Cellular Exploita.on on a Global Scale: The Rise and Fall of the Control Protocol Mathew Solnik Breakpoint 2014 Focus of This Talk Analyzing the

896 views • 57 slides
Blood-Based Biospecimen Training Slides Contact I Information Questions? Please contact

Blood-Based Biospecimen Training Slides Contact I Information Questions? Please contact

Neurodegeneration in Aging Down Syndrome: A Longitudinal Study of Cognition and Biomarkers of Alzheimer's Disease in collaboration with The National Centralized Repository for Alzheimers Disease and Related Dementias (NCRAD) Blood-Based

472 views • 46 slides
Blood-Based Biospecimen Training Slides Contact I Information Questions? Please contact

Blood-Based Biospecimen Training Slides Contact I Information Questions? Please contact

Alzheimers Disease in Down Syndrome (ADDS) in collaboration with The National Centralized Repository for Alzheimers Disease and Related Dementias (NCRAD) Blood-Based Biospecimen Training Slides Contact I Information Questions?

747 views • 43 slides
RISE: Educators Rise for Racial Equity Webinar 2 Inquiry and Self- awareness to RISE

RISE: Educators Rise for Racial Equity Webinar 2 Inquiry and Self- awareness to RISE

RISE: Educators Rise for Racial Equity Webinar 2 Inquiry and Self- awareness to RISE program is brought to you by.. v Barat Education Foundation and Citizen U in partnership with the Library of Congress Teaching with Primary Sources

766 views • 44 slides
The Rise and Fall of Periphrastic Do in Affirmative Declaratives Relja Vulanovi c Department

The Rise and Fall of Periphrastic Do in Affirmative Declaratives Relja Vulanovi c Department

The Rise and Fall of Periphrastic Do in Affirmative Declaratives Relja Vulanovi c Department of Mathematical Sciences Kent State University Stark Campus 6000 Frank Ave. NW Canton, OH 44720, USA rvulanovic@stark.kent.edu

156 views • 14 slides
Fall of Rome Rise of Byzantium 3rd c. AD - Roman Empire declines Many sources diminish

Fall of Rome Rise of Byzantium 3rd c. AD - Roman Empire declines Many sources diminish

Fall of Rome Rise of Byzantium 3rd c. AD - Roman Empire declines Many sources diminish Roman power: Too large Huge militia, expensive to maintain Discontent, treason Barbarian invasions Christianity rising Rome

727 views • 53 slides
The fall and rise of XForms @StianSigvartsen http://metaphorm.wordpress.com Overview A

The fall and rise of XForms @StianSigvartsen http://metaphorm.wordpress.com Overview A

The fall and rise of XForms @StianSigvartsen http://metaphorm.wordpress.com Overview A history of W3C XForms specifications XForms explained by example The future of XForms W3C XForms 1.0 August 2000 Working Draft for 2 years

262 views • 14 slides
Changes in families and the rise of inequality Joelle Spotswood Fall 2018 The uneven spread of

Changes in families and the rise of inequality Joelle Spotswood Fall 2018 The uneven spread of

Changes in families and the rise of inequality Joelle Spotswood Fall 2018 The uneven spread of single-parent families: What do we know? Where do we look for answers? Ellwood, D.T., & Jencks, C. (2004). Basically an extended and very

702 views • 25 slides
THE LORDSHIP OF BOWLAND RISE, FALL AND RENEWAL OVER NINE CENTURIES Browsholme Hall, 4 October

THE LORDSHIP OF BOWLAND RISE, FALL AND RENEWAL OVER NINE CENTURIES Browsholme Hall, 4 October

THE LORDSHIP OF BOWLAND RISE, FALL AND RENEWAL OVER NINE CENTURIES Browsholme Hall, 4 October 2011 Before the lordship Rheged Northumbria Amounderness Bowland Origins of the lordship Domesday Lords of the Fells Honor

292 views • 16 slides
Centralized Customer Service System Update Centralized Customer Service System (CCSS) C a p t u r

Centralized Customer Service System Update Centralized Customer Service System (CCSS) C a p t u r

Centralized Customer Service System Update Centralized Customer Service System (CCSS) C a p t u r e P r o c e s s Lane R e c o r d Customer Account Industry Forum April 25 th 26 th Marriott Hotel, Tampa International Airport Agenda April

517 views • 15 slides
The Financial Origins of the Rise and Fall of American Inflation Itamar Drechsler 1 Alexi Savov 2

The Financial Origins of the Rise and Fall of American Inflation Itamar Drechsler 1 Alexi Savov 2

The Financial Origins of the Rise and Fall of American Inflation Itamar Drechsler 1 Alexi Savov 2 Philipp Schnabl 2 1 Wharton and NBER 2 NYU Stern and NBER October 2020 The Great Inflation (19651982) 1. A very influential period for the

718 views • 34 slides
Why Phishing Works Rachna Dhamija, J.D. Tygar, Marti Hearst Presented By: Vince Zanella

Why Phishing Works Rachna Dhamija, J.D. Tygar, Marti Hearst Presented By: Vince Zanella

Why Phishing Works Rachna Dhamija, J.D. Tygar, Marti Hearst Presented By: Vince Zanella Motivation To shield users from fraudulent websites, website designers must know which attack strategies work and why Hypotheses exist, but no

537 views • 15 slides
Step by step guide Step 1: Purchasing a RSTickets!Pro membership Step 2: Downloading

Step by step guide Step 1: Purchasing a RSTickets!Pro membership Step 2: Downloading

Step by step guide Step 1: Purchasing a RSTickets!Pro membership Step 2: Downloading RSTickets!Pro 2.1 Downloading the component 2.2 Downloading the plugins/modules 2.3 Downloading additional language packs Step 3: Installing RSTickets!Pro

548 views • 44 slides
User Guide CofaNet V 2.21 November 22nd 2015 1. INTRODUCTION

User Guide CofaNet V 2.21 November 22nd 2015 1. INTRODUCTION

User Guide CofaNet V 2.21 November 22nd 2015 1. INTRODUCTION ................................................................................................................ 11 1.1 T ECHNICAL S PECIFICATIONS R EQUIRED

1.4k views • 125 slides
Improving Optimization Bounds using Machine Learning: Decision Diagrams meet Deep Reinforcement

Improving Optimization Bounds using Machine Learning: Decision Diagrams meet Deep Reinforcement

Improving Optimization Bounds using Machine Learning: Decision Diagrams meet Deep Reinforcement Learning Quentin Cappart , Emmanuel Goutierre, David Bergman, Louis-Martin Rousseau 1 Research question Bounding mechanisms are critical in the

449 views • 24 slides
Bufetes Article. Michael DeMarco A cyber attack implies a huge legal risk for companies.

Bufetes Article. Michael DeMarco A cyber attack implies a huge legal risk for companies.

Bufetes Article. Michael DeMarco A cyber attack implies a huge legal risk for companies. U.S. attorney Michael DeMarco, a partner at the international law firm K & L Gates LLP, specialist in international disputes and criminal

246 views • 3 slides
WELCOME TO F- SECURES ANNUAL GENERAL MEETING 1 MATTERS ON THE AGENDA 1. Opening of the

WELCOME TO F- SECURES ANNUAL GENERAL MEETING 1 MATTERS ON THE AGENDA 1. Opening of the

WELCOME TO F- SECURES ANNUAL GENERAL MEETING 1 MATTERS ON THE AGENDA 1. Opening of the meeting 2. Calling the meeting to order 3. Election of persons to scrutinize the minutes and to supervise the counting of votes 4. Recording the

650 views • 35 slides
Future of DDoS Attacks Mitigation in Software Defined Networks Martin Vizvry, Jan Vykopal AIMS

Future of DDoS Attacks Mitigation in Software Defined Networks Martin Vizvry, Jan Vykopal AIMS

Future of DDoS Attacks Mitigation in Software Defined Networks Martin Vizvry, Jan Vykopal AIMS 2014, Brno, July, 1st 2014 Current and Future Networking Traditional networking principles remain mostly unchanged over the past decades.

446 views • 18 slides
s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space:

s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space:

s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space: time vs distance Remote key brute software protocol force relay attack side Fast Slow mitm channel Hardware attacks require: Hardware

360 views • 24 slides

More recommend