PyFind: Privacy-Preserving Device Tracking

PyFind is a privacy-preserving device tracking system using elliptic curve cryptography to enable location sharing without exposing raw coordinates. Research publication: arXiv:2103.02282.

What It Does

Rather than sharing exact GPS coordinates, PyFind uses cryptographic commitments and zero-knowledge proofs to allow location-based applications (finding nearby friends, location services) while maintaining privacy. Users can prove they’re in a geographic region without revealing exact position.

Technologies Used

  • Cryptography: Elliptic curve cryptography (ECC), Pedersen commitments, zero-knowledge proofs
  • Languages: Python (primary implementation), C++ (performance-critical sections)
  • Libraries: cryptography.io, libsodium bindings
  • Protocols: Privacy-preserving spatial indexing, commitment schemes

Key Achievements

  • Mathematical soundness: Formal verification of zero-knowledge proof properties
  • Practical performance: Sub-second proof generation on consumer hardware
  • User experience: Simple API hiding cryptographic complexity
  • Academic publication: Peer-reviewed research contribution

Why It Matters

Privacy and surveillance are increasingly critical concerns. Standard location-based services require sharing exact coordinates with centralized servers—creating privacy risks and single points of failure.

Cryptographic approaches like PyFind enable:

  • Server transparency: Servers can verify claims without learning exact positions
  • User control: Users decide granularity of location sharing
  • Decentralization: Reduced need for trusted central authority
  • Forward security: Historical data remains private even if servers are breached

Research Impact

This work contributes to the broader field of privacy-preserving computation, demonstrating practical deployment of advanced cryptography in mobile/IoT contexts.

Academic References