MAster assignment
encrypting personal identifiable information at rdw
TYPE : MASTER M-CS
Period : Jan 2023 -
Student : Brattinga, M. (Martijn, Student M-CS)
Date Final project:
Thesis t.b.a.
Supervisor:
Description:
RDW is the Dutch Vehicle Authority in the mobility chain and stores privacy sensitive information of car owners as well as driving licenses; for these sensitive information RDW has taken extensive measures to prevent data breaches. Data is only provided to authorized parties such as the police and insurance companies. On a daily basis these requests add up to more than 5 million legitimated data accesses.
In order to further reduce the risk of data breaches, RDW envisions additionally encryption mechanisms for privacy sensitive information for various use-cases. One common process at RDW is the data sharing scenario for authorized organizations where data should remain protected during the complete process. Another common process that is performed over privacy sensitive information includes simple computational tasks such as increasing values and comparing them to a threshold. Promising techniques for these scenarios include recent cryptographic approaches such as proxy re-encryption, trusted execution environments and homomorphic encryption.
This project consists of two tasks:
- The first task is to compile a portfolio of possible cryptographic approaches and to identify the most promising method for the described context. The solution should also consider practical issues like key recovery, key roll over and practical usability.
- The second task is to identify and address the limitations caused by business operations within RDW. Who within RDW requires access to privacy sensitive information and how can the risk of a data breach be minimized for RDW considering these requirements? Is it possible for RDW to still claim plausible deniability in case of a data breach or trace the source of the data breach?
For this assignment the student will need to be partly at (in order of priority) the IT department in Groningen, the registration department in Venda and the main office of RDW in Zoetermeer. Of course some meetings can be digital.
Requirements:
- You have had prior contact with homomorphic encryption schemes
- Programming skills for a prototype to demonstrate feasibility
- Experience with C++ is a plus
References:
[1]: Ateniese, Giuseppe, et al. "Improved proxy re-encryption schemes with applications to secure distributed storage." ACM Transactions on Information and System Security (2006)
[2]: Acar, Abbas, et al. "A survey on homomorphic encryption schemes: Theory and implementation." ACM Computing Surveys (2018)
[3]: Fuhry, Benny, et al. "SeGShare: Secure group file sharing in the cloud using enclaves." 50th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (2020)