Scientific knowledge map · Paper #21
5PM: Secure Pattern Matching
2013 · Journal of Computer Security, Volume 21, Number 5
- Theory
- protocol
- primitive
Research question
What does the paper try to establish?
Can two parties securely evaluate expressive pattern matching over a client's private pattern and a server's private text, including nonbinary alphabets, wildcards, substring/Hamming-distance matching, and optional pattern-length hiding, with malicious security and communication sublinear in the corresponding circuit size?
Central answer
What is the proposed answer?
5PM converts pattern matching into linear operations over text and character-delay matrices, evaluates those operations with additively homomorphic encryption, and adds threshold encryption plus zero-knowledge consistency arguments for static malicious security; the paper proves two-round honest-but-curious and eight-round malicious variants and reports an implementation of the honest-but-curious variant.
Evidence profile
Six dimensions, kept separate
The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.
LowMediumHighN/A = not assessed
A smaller value means less documented support for that dimension, not that the paper is false or unimportant.
- Epistemic evidence Medium
-
The source gives complete protocol specifications, simulation arguments, asymptotic analysis, and HBC timing measurements. The proofs were not mechanically checked and the implementation evidence was not reproduced; the malicious construction was not benchmarked.
HBC and malicious realization theorems Implementation platform and timing table - Auditability High
-
A complete author-hosted full version is mirrored locally with page count and SHA-256, so assumptions, protocols, proofs, and reported measurements are directly inspectable. Journal-version identity and empirical reproduction remain unchecked.
Problem, functionality, complexity, and round claims Official journal record - Production provenance Medium
-
Named authorship, funding acknowledgements, an author-hosted version, archive record, and journal record establish a publication trail. Contributor roles, revision history, code lineage, and production effort are not documented in this map.
Problem, functionality, complexity, and round claims Official journal record - External scrutiny Medium
-
The paper has a journal publication record, but reviews, independent replications, later attacks, and correction history were not audited.
Official journal record - Reception High
-
OpenAlex reports 17 located citations as of 2026-07-11, meeting the site's 11+ high threshold. The count is index-specific and does not itself establish correctness or adoption.
Dated OpenAlex citation snapshot - Contribution significance Medium
-
The paper presents a specific protocol family with expressive functionality and explicit malicious security/round claims; priority and field-level impact were not independently evaluated.
Problem, functionality, complexity, and round claims
Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.
Top-down and bottom-up view
Hierarchical knowledge map
Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.
5PM: Secure Pattern Matching
A two-party secure pattern-matching protocol family for exact matching, single-character wildcards, nonbinary Hamming distance, and substring matching, with explicit honest-but-curious and static-malicious constructions.
Problem, functionality, complexity, and round claims-
question Research question
research questionCan expressive private pattern matching obtain malicious security, bounded rounds, O(m+n) ciphertext-scale communication, and optional hiding of the pattern length?
Problem, functionality, complexity, and round claims -
contribution Central answer
source assertedEncode the server text and client pattern as matrices, reduce matching to linear operators, evaluate one encrypted operand homomorphically, and enforce well-formedness and consistent computation with threshold decryption and zero-knowledge arguments in the malicious variant.
Cryptographic tools and linear-algebra operators Eight-round malicious protocol and consistency subprotocols -
scope Functionality, parties, and adversary defined
Server holds text T of length n over alphabet Sigma; Client holds pattern p of length m, optionally containing wildcards, and learns either matching locations or a decision while Server learns no output.
Pattern-matching inputs, outputs, wildcards, and substring semantics Ideal functionality, static corruption model, and simulators-
definition Matching semantics
definedThe same activation-vector construction supports exact matches, single-character wildcards, nonbinary Hamming distance, and thresholded substring matching; multiple distance thresholds can reuse one protocol execution.
Pattern-matching inputs, outputs, wildcards, and substring semantics Honest-but-curious protocol and Theorem 1 -
threat model Static two-party corruption
definedThe formal analyses treat one statically corrupted party in either the honest-but-curious or malicious stand-alone setting; the malicious proof is simulation-based for the stated ideal functionality.
Ideal functionality, static corruption model, and simulators HBC and malicious realization theorems -
assumption Cryptographic assumptions
assumedThe HBC theorem assumes semantically secure additive homomorphic encryption over a prime-order cyclic group; the concrete malicious construction uses threshold ElGamal and assumes DDH hardness plus the specified commitment and zero-knowledge machinery.
Cryptographic tools and linear-algebra operators HBC and malicious realization theorems
-
-
method Construction path specified
5PM transforms the insecure character-delay-vector algorithm into matrix multiplication, Stretch, Cut, and column-sum operations that remain computable when one operand is encrypted.
Pattern-matching inputs, outputs, wildcards, and substring semantics Cryptographic tools and linear-algebra operators-
component Two-round HBC protocol
specified and provedClient encrypts its character-delay matrix and threshold; Server forms and blinds an encrypted activation vector; Client decrypts zero entries to identify matches.
Honest-but-curious protocol and Theorem 1 -
component Eight-round malicious protocol
specified and provedBoth parties independently derive encrypted activation vectors, compare affine hashes, and prove matrix formation, partial decryption, randomization, and final-decryption consistency through interleaved zero-knowledge arguments.
Eight-round malicious protocol and consistency subprotocols
-
-
claim group Principal claims mixed
The paper makes functionality, round/complexity, simulation-security, and implementation-performance claims.
Problem, functionality, complexity, and round claims HBC and malicious realization theorems Implementation platform and timing table-
claim Rounds and asymptotic cost
analytically supportedThe paper reports two one-way rounds for HBC and eight for malicious security; the malicious construction uses O((m+n)k^2) bandwidth and O(m+n) encryptions, while pattern-length hiding adds no asymptotic computation or bandwidth.
Problem, functionality, complexity, and round claims Eight-round malicious protocol and consistency subprotocols -
claim Simulation security
proved conditionalTheorems 4 and 5 state realization of the specified pattern-matching functionality for static HBC corruption under semantic security and static malicious corruption under DDH, respectively.
HBC and malicious realization theorems -
claim HBC implementation
experimentally supportedA Paillier-based HBC prototype is timed on one dual-quad-core 2.93 GHz Ubuntu 10.10 machine for DNA and alphanumeric alphabets, text lengths through 100,000, and 1024/2048-bit keys.
Implementation platform and timing table
-
-
evidence group Evidence chain documented
Support consists of explicit protocols, ideal-world simulations, asymptotic accounting, and a timing table for an HBC prototype.
Ideal functionality, static corruption model, and simulators Implementation platform and timing table-
evidence Formal proof path
paper proof not machine checkedThe full version specifies ideal functionalities and simulators for corrupted Client and Server; this map records the theorem boundaries but has not mechanically checked every hybrid and extractor argument.
Ideal functionality, static corruption model, and simulators HBC and malicious realization theorems -
evidence Benchmark evidence
reported not reproducedTable 13 decomposes search, blinding, and decryption time across parameter choices, but supplies neither source code nor repeated-run uncertainty in the audited full version.
Implementation platform and timing table
-
-
limitation group Boundaries and limitations material
The strongest statements are conditional on a static two-party model and cryptographic assumptions; empirical evidence covers only the HBC prototype.
Ideal functionality, static corruption model, and simulators Implementation platform and timing table-
limitation Unmodeled deployment risks
out of scopeThe proofs do not cover adaptive corruption, multi-session/composable deployment, leakage through repeated queries, implementation side channels, key compromise, or denial of service.
Ideal functionality, static corruption model, and simulators -
limitation No malicious-protocol benchmark
explicitly limitedThe performance section evaluates the honest-but-curious implementation; it does not report an implementation or benchmark of the eight-round malicious protocol.
Implementation platform and timing table
-
-
artifact group Artifacts and resources
full text availableA fixed local mirror of the 51-page author version, its public UCLA origin, an IACR ePrint record, and the journal DOI are available; no code repository was identified in the audited paper.
Problem, functionality, complexity, and round claims Official journal record -
scrutiny External scrutiny
publication recordedThe work has a Journal of Computer Security publication record; review reports, correction history, independent reproduction, and later cryptanalysis were not audited.
Official journal record -
lineage Research lineage
source asserted5PM extends secure exact matching toward nonbinary wildcards and substring/Hamming-distance functionality by exploiting a linear-algebra formulation rather than generic circuit evaluation.
Problem, functionality, complexity, and round claims Cryptographic tools and linear-algebra operators
Audit trail
Source index
Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.
- Problem, functionality, complexity, and round claims Abstract and Section 1.1, PDF pages 1-3
- Pattern-matching inputs, outputs, wildcards, and substring semantics Sections 1 and 2.1, PDF pages 1-7
- Cryptographic tools and linear-algebra operators Sections 2.2-2.3, PDF pages 7-10
- Honest-but-curious protocol and Theorem 1 Sections 3.1-3.2, PDF pages 10-12
- Eight-round malicious protocol and consistency subprotocols Section 3.3, PDF pages 12-17; exact interleaving in Section 6
- Ideal functionality, static corruption model, and simulators Section 7, PDF pages 29-44
- HBC and malicious realization theorems Theorems 4 and 5, PDF pages 31 and 37
- Implementation platform and timing table Section 8 and Table 13, PDF pages 48-49
- Official journal record Journal of Computer Security, volume 21, number 5
- Dated OpenAlex citation snapshot cited_by_count = 17, accessed 2026-07-11