Researches On Privacy-preserving Infectious Disease Contact Tracing Protocols

Infectious Disease Contact Tracing(IDCT)is an important part of the public health field.It can quickly trace the close contacts of an infected person and effectively control the spread of infectious diseases such as COVID-19.Traditional infectious disease contact tracing protocols are based on friendly assumptions,and do not consider that illegal attackers can identify infected individuals and obtain personal privacy data(such as user identity information,information about whether to contact an infected person,user location information).However,in reality,illegal attackers can obtain personal privacy information through reverse analysis when acquiring a large amount of interactive data,thereby knowing and identifying the infected person,so that many originally designed protocols are no longer safe in the face of malicious and illegal attacks..In order to fundamentally protect users’ private information,researchers have proposed a privacy-protected infectious disease contact tracing concept and designed a privacy-protected infectious disease contact tracing protocol.However,these existing protocols still have the following shortcomings and deficiencies:(1)The existing privacy-protected infectious disease tracking protocol has a complicated design and low efficiency;(2)The existing infectious disease contact tracking protocol does not take into account the protection of user privacy data and location information.In response to these problems,this paper proposes a privacyprotected infectious disease contact tracing protocol,and carries out the realization of the protocol and the development of the actual application system.Specifically include the following two aspects of work:(1)Using pseudo-random function and El Gamal variant encryption algorithm,a privacy-protected infectious disease contact tracing protocol is designed.First,the health management center distributes an identification code to each user.In order to protect the real identity,each user uses a pseudo-random function to generate a pseudo-identity code;then,in order to protect the user’s location privacy,wireless short-range Bluetooth devices are used to connect and connect to each other.Transfer data;then,assuming a user is diagnosed as an infected person,he needs to upload his stored data to the health management center;finally,the user sends a tracking request to protect the privacy of the infected person and prevent the infected person from being identified,the health management center Using the El Gamal variant encryption algorithm to calculate the data,it can be known whether the user has had close contact with the infected person.In the same experimental environment,we use Miracl,GMP,Open SSL and other libraries to implement privacy-protected infectious disease contact tracking protocols and other related protocols.Through the experimental results and performance analysis,it can be seen that compared with the infectious disease contact program such as the Trace Together protocol,our protocol not only meets all the security goals and only adds a small amount of calculation;compared to the privacy-protected infectious disease contact program such as the Altwaiyan protocol,we The agreement also satisfies all security goals,and has the highest computational efficiency.(2)Combining the background of the pandemic of the new crown pneumonia in the world today,using the privacy-protected infectious disease contact tracking protocol,a privacy-protected new crown pneumonia contact tracking system was designed and developed.The system includes client App and health management center server.The Android Studio platform is used to develop the client of the new crown pneumonia contact tracking system,and the server uses the web application framework Spring Boot for development.After the user installs and registers the client App,he uses the Bluetooth device in the mobile smart phone to perform data transfer and interaction between users,so as to record the contact history between users.The server-side health management center can store data uploaded by patients diagnosed with new coronary pneumonia,and accept requests from other users,request to determine whether they have had contact with people infected with new coronary pneumonia in the past,and track the contacts of the confirmed person.The system has been developed and tested in the actual environment,and the test results meet the design requirements.