1. BurnBox: Self-Revocable Encryption in a World Of Compelled Access 2018 Censorship Surveillance Usenix
    Nirvan Tyagi, Muhammad Haris Mughees, Thomas Ristenpart and Ian Miers
    [View PDF on usenix.org]
    [Show BibTex Citation]

    @inproceedings {217646,
    author = {Nirvan Tyagi and Muhammad Haris Mughees and Thomas Ristenpart and Ian Miers},
    title = {BurnBox: Self-Revocable Encryption in a World Of Compelled Access},
    booktitle = {27th {USENIX} Security Symposium ({USENIX} Security 18)},
    year = {2018},
    isbn = {978-1-939133-04-5},
    address = {Baltimore, MD},
    pages = {445--461},
    url = {https://www.usenix.org/conference/usenixsecurity18/presentation/tyagi},
    publisher = {{USENIX} Association},
    month = aug,

Dissidents, journalists, and others require technical means to protect their privacy in the face of compelled access to their digital devices (smartphones, laptops, tablets, etc.). For example, authorities increasingly force disclosure of all secrets, including passwords, to search devices upon national border crossings. We therefore present the design, implementation, and evaluation of a new system to help victims of compelled searches. Our system, called BurnBox, provides self-revocable encryption: the user can temporarily disable their access to specific files stored remotely, without revealing which files were revoked during compelled searches, even if the adversary also compromises the cloud storage service. They can later restore access. We formalize the threat model and provide a construction that uses an erasable index, secure erasure of keys, and standard cryptographic tools in order to provide security supported by our formal analysis. We report on a prototype implementation, which showcases the practicality of BurnBox.