Privacy-Preserving Verifiability - A Case for an Electronic Exam Protocol

Rosario Giustolisi, Vincenzo Iovino, Gabriele Lenzini

Abstract

We introduce the notion of privacy-preserving verifiability for security protocols. It holds when a protocol admits a verifiability test that does not reveal, to the verifier that runs it, more pieces of information about the protocol’s execution than those required to run the test. Our definition of privacy-preserving verifiability is general and applies to cryptographic protocols as well as to human security protocols. In this paper we exemplify it in the domain of e-exams. We prove that the notion is meaningful by studying an existing exam protocol that is verifiable but whose verifiability tests are not privacy-preserving. We prove that the notion is applicable: we review the protocol using functional encryption so that it admits a verifiability test that preserves privacy according to our definition. We analyse, in ProVerif, that the verifiability holds despite malicious parties and that the new protocol maintains all the security properties of the original protocol, so proving that our privacy-preserving verifiability can be achieved starting from existing security.

Download


Paper Citation


in Harvard Style

Giustolisi R., Iovino V. and Lenzini G. (2017). Privacy-Preserving Verifiability - A Case for an Electronic Exam Protocol . In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017) ISBN 978-989-758-259-2, pages 139-150. DOI: 10.5220/0006429101390150


in Bibtex Style

@conference{secrypt17,
author={Rosario Giustolisi and Vincenzo Iovino and Gabriele Lenzini},
title={Privacy-Preserving Verifiability - A Case for an Electronic Exam Protocol},
booktitle={Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)},
year={2017},
pages={139-150},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006429101390150},
isbn={978-989-758-259-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)
TI - Privacy-Preserving Verifiability - A Case for an Electronic Exam Protocol
SN - 978-989-758-259-2
AU - Giustolisi R.
AU - Iovino V.
AU - Lenzini G.
PY - 2017
SP - 139
EP - 150
DO - 10.5220/0006429101390150