When doing statistical analysis of data between multiple stakeholders, it is sometimes difficult to get access to the data itself that should be included in the data. This can be because of legislation, such as GDPR, privacy concerns, or for other reasons. Drynx solves this problem by keeping the data encrypted at all times, in particular when performing computation. Only the final result is decrypted.
This procedure is called homomorphic encryption, and up to recently, it has been synonymous with slow calculations. Drynx uses a novel approach that is much faster. It prevents malicious stakeholders to modify the statistics by manipulating the raw data. It also proves that all operations have been done correctly.
Drynx is currently evaluated using medical data, where the privacy constraints are very high. C4DT is preparing a demonstrator that shows how it can be applied to data used in the re-insurance business where different stakeholders cannot share data in plain text because of legal reasons.
Calypso & DARCs
As soon as different data owners who don’t trust each other want to share data, a blockchain can bring the necessary trust between the different partners. However, first generation blockchains couldn’t handle sensitive data, as every node has the full view of all data. The OmniLedger / Calypso blockchain from Prof. Bryan Ford’s lab at EPFL enables data owners to share their data in an encrypted way and to maintain control over who has access to which data. Using a blockchain means that there is no single point of failure which would allow to access the documents in a fraudulent manner.
Another challenge when sharing data is who has access to which data. In practice this means who manages the access rights to your data. At all times you will be able to trace who accessed the data. As the access to your data is based on blockchain technology, the audit trail is immutable, so that misbehaving users can be held accountable.
The challenge with decryption is that one compromised keypair can lead to the decryption of all stored data. This is why Calypso uses multiple decentralized keypairs to secure the data. An attacker must get access to all keypairs before he can fraudulently decrypt the data. At C4DT we run a public installation of the OmniLedger blockchain and use it for access control to our website and chat system.