TL;DR
This paper formalizes controlled query evaluation (CQE) for data privacy, introduces desirable properties, and proves that some property combinations are impossible to achieve simultaneously.
Contribution
It provides a high-level formalization of CQE and establishes no-go theorems showing the limitations of certain property combinations.
Findings
Certain desirable properties of CQE systems are mutually incompatible.
Formalization clarifies the theoretical boundaries of data privacy mechanisms.
No-go theorems guide future design of privacy-preserving data systems.
Abstract
Controlled query evaluation (CQE) is an approach to guarantee data privacy for database and knowledge base systems. CQE-systems feature a censor function that may distort the answer to a query in order to hide sensitive information. We introduce a high-level formalization of controlled query evaluation and define several desirable properties of CQE-systems. Finally we establish two no-go theorems, which show that certain combinations of these properties cannot be obtained.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsCryptography and Data Security · Distributed systems and fault tolerance · Access Control and Trust