System and method for providing private inference control
First Claim
1. A system for providing private inference control, comprising:
- a central processing unit; and
a memory coupled to the central processing unit;
the system further comprising;
a secure database comprising a plurality of records with each record comprising a plurality of attributes;
a plurality of queries that each comprises encrypted indices, which identify one such record and attribute by homomorphic encryption;
a query count of the queries;
an authorization generator configured to generate a secret key upon reaching the query count, to divide the secret key into randomly generated key shares and to provide a sequence of the key shares encrypted by homomorphic encryption;
a query processor configured to form a table of entries by encrypting the indices, the secret key and each of the attributes for each of the records of the database;
a query generator configured to execute a Symmetric Private Information Retrieval (SPIR) protocol on the table of entries, and to provide a plurality of query responses, which each comprise the attributes for each of the records of the table entries; and
a reconstructor configured to decrypt a plurality of the key shares comprising a number of the key shares sufficient to recover the secret key subject to a non-inference enabling query.
9 Assignments
0 Petitions
Accused Products
Abstract
Records in a secure database include attributes. A query homomorphically encrypts indices identifying one record and attribute. A secret key is generated at a certain query count and is divided into randomly generated key shares. A key share sequence is homomorphically encrypted. A table is formed by encrypting the indices, secret key and attributes. The key shares are decrypted sufficient to recover the secret key subject to a non-inference enabling query. In a further embodiment, a query count is maintained. Records in a secure database include attributes, with an attributes set forming inference channels. A data structure includes ciphertext keys. A pseudorandom function seed and non-malleable encryption secret key are chosen. A query provides indices identifying one record and attribute. A secure function evaluation is executed. A table combines the attributes with the pseudorandom function applied to the seed and indices. A table entry for the indices is provided.
-
Citations
15 Claims
-
1. A system for providing private inference control, comprising:
-
a central processing unit; and
a memory coupled to the central processing unit;
the system further comprising;a secure database comprising a plurality of records with each record comprising a plurality of attributes; a plurality of queries that each comprises encrypted indices, which identify one such record and attribute by homomorphic encryption; a query count of the queries; an authorization generator configured to generate a secret key upon reaching the query count, to divide the secret key into randomly generated key shares and to provide a sequence of the key shares encrypted by homomorphic encryption; a query processor configured to form a table of entries by encrypting the indices, the secret key and each of the attributes for each of the records of the database; a query generator configured to execute a Symmetric Private Information Retrieval (SPIR) protocol on the table of entries, and to provide a plurality of query responses, which each comprise the attributes for each of the records of the table entries; and a reconstructor configured to decrypt a plurality of the key shares comprising a number of the key shares sufficient to recover the secret key subject to a non-inference enabling query. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for providing private inference control, comprising:
-
maintaining a secure database comprising a plurality of records with each record comprising a plurality of attributes; specifying a plurality of queries by encrypting indices identifying one such record and attribute for each query, by homomorphic encryption; maintaining a query count of the queries; generating a secret key upon reaching the query count; dividing the secret key into randomly generated key shares and providing a sequence of the key shares, which are each encrypted by homomorphic encryption; forming a table of entries by encrypting the indices, the secret key and each of the attributes for each of the records of the database; executing a Symmetric Private Information Retrieval (SPIR) protocol on the table of entries; providing a plurality of query responses which each comprises the attributes for each of the records of the table of entries; and decrypting a plurality of the key shares comprising a number of the key shares sufficient to recover the secret key subject to a non-inference enabling query. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
Specification