Privacy-Preserving Contact Discovery / ARKE - PoC
This is an improved version of the work I submitted as part of my masters degree dissertation at UCL. The (not so great) original can be found here.
As is written in the code, I present:
"PoC for the privacy preserving contact discovery service. In this demo you will be prompted to sign up to the service by using a username and entering some contacts. You may enter any identifiers you desire. To test the functionality, some users have already been built in to the platform and are expecting the arrival of one special guest, can you find who it is?"
System Requirements
Application has only been tested on Linux. Requires Go v1.14 or later.
This PoC is built on top of the dedis/kyber library. Note however that this library only allows BLS signatures where messages are points on G1 and public keys are points on G2. In the case of our contact discovery scheme, we need to perform BLS signatures in both groups of our asymmetric pairing. The package crypto written as part of the original project implements the missing functionality.
Current Functionnality
nservers are initialised, of which at leasttare assumed to be honest- users sign up with an identifier and enter their contacts
- the user's identifier is blinded and sent to
tservers to obtain constraining keys (blind threshold BLS signature) - the constraining keys are used to derive unique key material for each contact (left-right constrained PRFs)
- steps 2-4 are repeated for each user
- users make sue of the derived key material to establish a meeting point on an "online" cache
TODO
- prevent impersonation: currently users can claim any identifier they want, even if it does not belong to them. In the ARKE construction, a mechanism is designed to avoid this (see write-up)
- use key material to establish a secure meeting point, ideally truly online (IPFS)
Running the application
There are two ways to run this applications:
- run tests to verify that it works (
go test) - run the binary to play around inputting different users and contacts. As mentioned above, some users are initialised and are expecting a relative to join the service!
To download and run the source code:
$ go get github.com/nmohnblatt/contact_discovery2
$ cd /go/src/github.com/nmohnblatt/
$ go build
$ ./contact_discovery2
