Skip to content

Commit aada152

Browse files
mspornymsporny
committed
Warn about using too many decoys.
1 parent 6c661b0 commit aada152

File tree

1 file changed

+20
-12
lines changed

1 file changed

+20
-12
lines changed

index.html

+20-12
Original file line numberDiff line numberDiff line change
@@ -1168,18 +1168,26 @@ <h3>Content Distribution Networks</h3>
11681168
<h3>Decoy Values</h3>
11691169

11701170
<p>
1171-
The use of decoy values in status lists by <a>issuers</a> can increase the
1172-
privacy of <a>subjects</a> by further hiding the size of the group associated
1173-
with a status list as well as when values in the list change. When employing
1174-
decoy values, it is important to ensure that the decoys behave like real
1175-
entries in the group. For example, if a decoy is used for revocation, it would
1176-
be strange to flip the decoy value to "unrevoked" when that is not how the
1177-
rest of the revocation values associated with real entries behave. Similarly,
1178-
changing the decoy values at times and numbers that do not align with the way
1179-
real entries behave can enable statistical analysis to separate the real
1180-
entries from the decoy entries. While algorithms for employing decoy values
1181-
are out of scope for this specification, the usage of decoy values is an
1182-
important part of an <a>issuer's</a> privacy protections for their
1171+
The use of decoy values in status lists by <a>issuers</a> can, when used
1172+
properly, increase the privacy of <a>subjects</a> by further hiding the size of
1173+
the group associated with a status list as well as when values in the list
1174+
change. It is also possible to use too many decoys, thus reducing the group
1175+
privacy size by the number of decoys added to a group. The proper number of
1176+
decoys to use is a function of the desired group privacy size, the randomness
1177+
of the distribution of entries in the set, and ensuring that entities watching
1178+
the list cannot determine which entries are real and which ones are decoys as
1179+
they change throughout time.
1180+
</p>
1181+
<p>
1182+
When employing decoy values, it is important to ensure that the decoys
1183+
behave like real entries in the group. For example, if a decoy is used for
1184+
revocation, it would be strange to flip the decoy value to "unrevoked" when that
1185+
is not how the rest of the revocation values associated with real entries
1186+
behave. Similarly, changing the decoy values at times and numbers that do not
1187+
align with the way real entries behave can enable statistical analysis to
1188+
separate the real entries from the decoy entries. While algorithms for employing
1189+
decoy values are out of scope for this specification, the usage of decoy values
1190+
can be an important part of an <a>issuer's</a> privacy protections for their
11831191
<a>subjects</a>.
11841192
</p>
11851193
</section>

0 commit comments

Comments
 (0)