In this page

On the Privacy of Counting Bloom Filters Under a Black-Box Attacker

Galán, Sergio, Reviriego Vasallo, Pedro ORCID: https://orcid.org/0000-0003-2273-1341, Walzer, Stefan, Sánchez Macian, Alfonso, Liu, Shanshan and Lombardi, Fabrizio (2023). On the Privacy of Counting Bloom Filters Under a Black-Box Attacker. "IEEE Transactions on Dependable and Secure Computing", v. 20 (n. 5); pp. 4434-4440. https://doi.org/10.1109/TDSC.2022.3217115.

Description

Title: On the Privacy of Counting Bloom Filters Under a Black-Box Attacker
Author/s:
  • Galán, Sergio
  • Reviriego Vasallo, Pedro https://orcid.org/0000-0003-2273-1341
  • Walzer, Stefan
  • Sánchez Macian, Alfonso
  • Liu, Shanshan
  • Lombardi, Fabrizio
Item Type: Article
Título de Revista/Publicación: IEEE Transactions on Dependable and Secure Computing
Date: 2023
Volume: 20
Subjects:
Faculty: E.T.S.I. Telecomunicación (UPM)
Department: Ingeniería de Sistemas Telemáticos
UPM's Research Group: Internet de Nueva Generación
Creative Commons Licenses: None

Full text

[thumbnail of Black_Box_Counting_Bloom_Filters.pdf] PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (3MB)

Abstract

Counting Bloom Filters (CBFs) are \emph{approximate} membership checking data structures, and it is normally believed that at most an \emph{approximate} reconstruction of the underlying set can be derived when interacting with a CBF. This paper decisively refutes this assumption. In a recent paper, we considered the privacy of CBFs when the attacker has access to the implementation details and thus, it sees the filter as a white-box. In that setting, we showed that the attacker may be able to extract the elements stored in the filter when the number of false positives over the entire universe is not significantly larger than the number of elements stored in the filter. In this work, we consider a black-box attacker that can only perform user interactions on the CBF to insert, remove and query elements with no knowledge of the filter implementation details. We show that even in this case, an attacker may be able to extract information from the filter at the cost of using more complex and time-consuming attack algorithms. The proposed algorithms have been implemented and compared with the white-box attack, showing that in most cases, almost the same information can be extracted from the filter.

Funding Projects

Type
Code
Acronym
Leader
Title
Government of Spain
PID2019-104207RB-I00
ACHILLES
Unspecified
Unspecified
Government of Spain
RED2018-102585-T
Go2Edge
Unspecified
Unspecified

More information

Item ID: 76679
DC Identifier: https://oa.upm.es/76679/
OAI Identifier: oai:oa.upm.es:76679
DOI: 10.1109/TDSC.2022.3217115
Official URL: https://ieeexplore.ieee.org/document/9928581
Deposited by: Profesor Pedro Reviriego
Deposited on: 20 Nov 2023 07:30
Last Modified: 20 Nov 2023 07:30
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM

Archivo Digital UPM is the institutional digital repository maintained by the Library at the Universidad Politécnica de Madrid. Developed and maintained in EPrints.

Syndication: Atom, RSS 2.0 and RSS 1.0 (HTML)
Harvesting: OAI 2.0