1. Asymmetric Message Franking: Content Moderation for Metadata-Private End-to-End Encryption 2019 Crypto SecureMessaging
    Nirvan Tyagi and Paul Grubbs and Julia Len and Ian Miers and Thomas Ristenpart
    [View PDF on eprint.iacr.org]
    [Show BibTex Citation]

    @misc{cryptoeprint:2019:565,
    author = {Nirvan Tyagi and Paul Grubbs and Julia Len and Ian Miers and Thomas Ristenpart},
    title = {Asymmetric Message Franking: Content Moderation for Metadata-Private End-to-End Encryption},
    howpublished = {Cryptology ePrint Archive, Report 2019/565},
    year = {2019},
    note = {\url{https://eprint.iacr.org/2019/565}},
    }

Content moderation is crucial for stopping abuse and harassment via messaging on online platforms. Existing moderation mechanisms, such as message franking, require platform providers to see user identifiers on encrypted traffic. These mechanisms cannot be used in messaging systems in which users can hide their identities, such as Signal. The key technical challenge preventing moderation is in simultaneously achieving cryptographic accountability while preserving deniability. In this work, we resolve this tension with a new cryptographic primitive: asymmetric message franking schemes (AMFs). We define strong security notions for AMFs, including the first formal treatment of deniability in moderation settings. We then construct, analyze, and implement an AMF scheme that is fast enough for deployment. We detail how to use AMFs to build content moderation for metadata-private messaging.

  1.