Skip to Main content Skip to Navigation
Preprints, Working Papers, ...

DESIRE: A Third Way for a European Exposure Notification System Leveraging the best of centralized and decentralized systems

Claude Castelluccia 1 Nataliia Bielova 1 Antoine Boutet 1 Mathieu Cunche 1 Cédric Lauradoux 1 Daniel Le Métayer 1 Vincent Roca 1
1 PRIVATICS - Privacy Models, Architectures and Tools for the Information Society
Inria Grenoble - Rhône-Alpes, CITI - CITI Centre of Innovation in Telecommunications and Integration of services
Abstract : This document presents an evolution of the ROBERT protocol that decentralizes most of its operations on the mobile devices 1. DESIRE is based on the same architecture than ROBERT but implements major privacy improvements. In particular, it introduces the concept of Private Encounter Tokens, that are secret and cryptographically generated, to encode encounters. In the DESIRE protocol, the temporary Identifiers that are broadcast on the Bluetooth interfaces are generated by the mobile devices providing more control to the users about which ones to disclose. The role of the server is merely to match P ET s generated by diagnosed users with the P ET s provided by requesting users. It stores minimal pseudonymous data. Finally, all data that are stored on the server are encrypted using keys that are stored on the mobile devices, protecting against data breach on the server. All these modifications improve the privacy of the scheme against malicious users and authority. However, as in the first version of ROBERT , risk scores and notifications are still managed and controlled by the server of the health authority, which provides high robustness, flexibility, and efficacy.
Complete list of metadatas

Cited literature [20 references]  Display  Hide  Download

https://hal.inria.fr/hal-02570382
Contributor : Claude Castelluccia <>
Submitted on : Tuesday, May 12, 2020 - 9:01:49 AM
Last modification on : Saturday, July 18, 2020 - 3:12:21 AM

File

DESIRE-specification-EN-v1_0.p...
Files produced by the author(s)

Identifiers

  • HAL Id : hal-02570382, version 1

Collections

Citation

Claude Castelluccia, Nataliia Bielova, Antoine Boutet, Mathieu Cunche, Cédric Lauradoux, et al.. DESIRE: A Third Way for a European Exposure Notification System Leveraging the best of centralized and decentralized systems. 2020. ⟨hal-02570382⟩

Share

Metrics

Record views

254

Files downloads

3206