Open AccessOn the Privacy of Multi-Versioned Approximate Membership Check Filters
Author(s) -
Pedro Reviriego,
Alfonso Sanchez-Macian,
Peter C. Dillinger,
Stefan Walzer
Publication year - 2023
Publication title -
ieee transactions on dependable and secure computing
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 1.274
H-Index - 79
eISSN - 1941-0018
pISSN - 1545-5971
DOI - 10.1109/tdsc.2023.3298967
Subject(s) - computing and processing
Approximate membership filters are increasingly used in many computing and networking applications and new filter designs are being continuously presented to improve one or more performance metrics. Therefore, understanding their security and privacy is an important issue. Previous works have considered attackers that only have access to an individual filter in isolation. For applications that generate many related filters, such as a filter for a deny list that evolves over time, that analysis is insufficient. This article considers an attacker with access to several versions of a filter that share most of the same input elements. We find that for typical implementations of Bloom, cuckoo, and quotient filters, the attacker gains little or no advantage with access to multiple versions of a filter. However, typical xor filters do reveal more information about their input elements by querying multiple versions of a filter, and we propose techniques to enhance the privacy of xor filters and others.