Abstract

While end-to-end encryption (E2EE) can prevent access to user data by unauthorized parties, E2EE is supported by a limited set of applications. Retrofitting existing applications and services to support E2EE is expensive. This disclosure describes techniques that provide E2EE for user personal data across applications and services at the level of the operating system of a user device by automatic detection and/or manual specification of such content. With user permission, personal data is detected automatically by the operating system, e.g., using on-device machine learning or heuristics. When such data is detected, prior to sharing the data with another user, the device OS provides features to enable the sender to encrypt it locally in memory with the recipient’s public key. Encryption is indicated visually prior to sharing the content. The recipient can decrypt the received E2EE content in place on the recipient device. By providing personal data detection and E2EE capabilities as part of the device operating system, the described techniques enable secure sharing of content even when an application used to share the content does not include encryption functionality.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.

Download

Share

COinS