Protecting identity in the Internet age requires the ability to go beyond the identification of explicitly identifying information like social security numbers, to also find the broadly-held attributes that, when taken together, are identifying. We present a system that can work in conjunction with natural language processing algorithms or user-generated tags, to protect identifying attributes in text. The system uses a new attribute-based encryption protocol to control access to such identifying attributes and thus protects identity. The system supports the definition of user access rights based on role or identity. We extend the existing model of attribute-based encryption to support threshold access rights and provide a heuristic instantiation of revocation.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	AreteQ. http://www.areteq.com
	2	Josh Cohen Benaloh , Jerry Leichter, Generalized Secret Sharing and Monotone Functions, Proceedings of the 8th Annual International Cryptology Conference on Advances in Cryptology, p.27-35, August 21-25, 1988
	3	E. Bier, E. Ishak and E. Chi. Entity Workspace: an evidence file that aids memory, inference and reading. Intelligence and Security Informatics, 2006
	4	Eric A. Bier , Edward W. Ishak , Ed Chi, Entity quick click: rapid text copying based on automatic entity extraction, CHI '06 extended abstracts on Human factors in computing systems, April 22-27, 2006, Montréal, Québec, Canada  [doi>10.1145/1125451.1125570]
	5	I. Blake, V. Murty and G. Xu. Refinements of Miller's algorithm for computing Weil/Tate pairing. Cryptology ePrint Archive, report 2004/065.
	6	D. Boneh and X. Boyen. Efficient selective-ID secure identity-based encryption without random oracles. Advances in Cryptology -- Eurocrypt 2004.
	7	Dan Boneh , Matthew Franklin, Identity-Based Encryption from the Weil Pairing, SIAM Journal on Computing, v.32 n.3, p.586-615, 2003  [doi>10.1137/S0097539701398521]
	8	D. Boneh, C. Gentry and B. Waters. Collusion resistant broadcast encryption with short cipertexts and private keys. Advances in Cryptology -- Crypto 2005.
	9	R. Canetti, S. Halevi and J. Katz. A forward-secure public key encryption scheme. Advances in Cryptology -- Eurocrypt 2003.
	10	R. Canetti, S. Halevi and J. Katz. Chosen-ciphertext security from identity based encryption. Advances in Cryptology -- Eurocrypt 2004.
	11	F. Chen, A. Farahat and T. Brants. Multiple similarity measures and source-pair information in story link detection. Human Language Technology Conference, North American Chapter of the Association for Computational Linguistics Annual Meeting (HLT/NAACL 2004); 2004 May 2--7; Boston; MA; USA. East Stroudsburg PA: ACL: 2004; 313--320.
	12	Y. Dodis and N. Fazio. Public-key broadcast encryption for stateless receivers. ACM CCS Workshop of Digital Rights Management, 2002.
	13	Enron Email Dataset. http://www.cs.cmu.edu/enron/
	14	D. Ferraiolo and R. Kuhn. Role-based access control. Proceedings of the 15th National Security Conference, 1992.
	15	The 2007 Florida Statutes, 119.0714 Court files, court records; official records.
	16	Amos Fiat , Moni Naor, Broadcast encryption, Proceedings of the 13th annual international cryptology conference on Advances in cryptology, p.480-491, January 1994, Santa Barbara, California, United States
	17	GATE: General Architecture for Text Engineering. http://gate.ac.uk/
	18	Philippe Golle, Revisiting the uniqueness of simple demographics in the US population, Proceedings of the 5th ACM workshop on Privacy in electronic society, October 30-30, 2006, Alexandria, Virginia, USA  [doi>10.1145/1179601.1179615]
	19	Vipul Goyal , Omkant Pandey , Amit Sahai , Brent Waters, Attribute-based encryption for fine-grained access control of encrypted data, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA  [doi>10.1145/1180405.1180418]
	20	Daniel Lopresti , A. Lawrence Spitz, Quantifying information leakage in document redaction, Proceedings of the 1st ACM workshop on Hardcopy document processing, p.63-69, November 12-12, 2004, Washington, DC, USA  [doi>10.1145/1031442.1031452]
	21	MortgageGrader. http://www.mortgagegrader.com
	22	Dalit Naor , Moni Naor , Jeffrey B. Lotspiech, Revocation and Tracing Schemes for Stateless Receivers, Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology, p.41-62, August 19-23, 2001
	23	Moni Naor , Benny Pinkas, Efficient Trace and Revoke Schemes, Proceedings of the 4th International Conference on Financial Cryptography, p.1-20, February 20-24, 2000
	24	Redact-It. http://www.redact-it.com
	25	A. Sahai and B. Waters. Fuzzy Identity-Based Encryption. In Advances in Cryptology -- Eurocrypt 2005, pp. 457--473.
	26	Douglas R. Stinson, Cryptography: Theory and Practice, CRC Press, Inc., Boca Raton, FL, 1995
	27	L. Sweeney. Uniqueness of simple demographics in the US population. LIDAPWP4. Carnegie Mellon University, Laboratory for International Data Privacy, Pittsburgh, PA, 2000.
	28	Jessica Staddon , Philippe Golle , Bryce Zimny, Web-based inference detection, Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium, p.1-16, August 06-10, 2007, Boston, MA
	29	Vontu. http://www.vontu.com