Abstract
Systems for enterprise security may rely on high (fidelity) logging, which can involve collecting and storing large volumes of sensitive event metadata, creating security and privacy liabilities. A cryptographic auditing framework may be utilized where, instead of storing raw event data, a system can generate and store a succinct cryptographic proof, such as a zero-knowledge proof. This proof can serve as a mathematical attestation that a permitted action occurred in compliance with a governing policy, potentially without revealing the specific details of the user or the action. This approach can be used to generate a tamper-evident, privacy-preserving, and space-efficient audit record, helping to address risks associated with centralized log storage while supporting data minimization principles.
Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 License.
Recommended Citation
N/A, "System for Privacy-Preserving Cryptographic Auditing Using Zero-Knowledge Proofs", Technical Disclosure Commons, ()
https://www.tdcommons.org/dpubs_series/10775