Inventor(s)

Abstract

Systems for enterprise security may rely on high (fidelity) logging, which can involve collecting and storing large volumes of sensitive event metadata, creating security and privacy liabilities. A cryptographic auditing framework may be utilized where, instead of storing raw event data, a system can generate and store a succinct cryptographic proof, such as a zero-knowledge proof. This proof can serve as a mathematical attestation that a permitted action occurred in compliance with a governing policy, potentially without revealing the specific details of the user or the action. This approach can be used to generate a tamper-evident, privacy-preserving, and space-efficient audit record, helping to address risks associated with centralized log storage while supporting data minimization principles.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.

Share

COinS