Karim Eldefrawy

Cryptography, Cybersecurity, Privacy

Co-founder and CTO at Confidencial.io
2017-2021: SRI
2011-2016: HRL Laboratories
2006-2010: PhD@UC Irvine

Scientific curiosity

Scientific knowledge map · Paper #21

5PM: Secure Pattern Matching

Joshua Baron, Karim Eldefrawy, Kirill Minkovich, Rafail Ostrovsky, and Eric Tressler

2013 · Journal of Computer Security, Volume 21, Number 5

  • Theory
  • protocol
  • primitive

What does the paper try to establish?

Can two parties securely evaluate expressive pattern matching over a client's private pattern and a server's private text, including nonbinary alphabets, wildcards, substring/Hamming-distance matching, and optional pattern-length hiding, with malicious security and communication sublinear in the corresponding circuit size?

What is the proposed answer?

5PM converts pattern matching into linear operations over text and character-delay matrices, evaluates those operations with additively homomorphic encryption, and adds threshold encryption plus zero-knowledge consistency arguments for static malicious security; the paper proves two-round honest-but-curious and eight-round malicious variants and reports an implementation of the honest-but-curious variant.

Six dimensions, kept separate

The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.

The visual spider chart requires JavaScript. The complete values and rationales follow in text.

LowMediumHighN/A = not assessed

A smaller value means less documented support for that dimension, not that the paper is false or unimportant.

Epistemic evidence Medium

The source gives complete protocol specifications, simulation arguments, asymptotic analysis, and HBC timing measurements. The proofs were not mechanically checked and the implementation evidence was not reproduced; the malicious construction was not benchmarked.

HBC and malicious realization theorems Implementation platform and timing table
Auditability High

A complete author-hosted full version is mirrored locally with page count and SHA-256, so assumptions, protocols, proofs, and reported measurements are directly inspectable. Journal-version identity and empirical reproduction remain unchecked.

Problem, functionality, complexity, and round claims Official journal record
Production provenance Medium

Named authorship, funding acknowledgements, an author-hosted version, archive record, and journal record establish a publication trail. Contributor roles, revision history, code lineage, and production effort are not documented in this map.

Problem, functionality, complexity, and round claims Official journal record
External scrutiny Medium

The paper has a journal publication record, but reviews, independent replications, later attacks, and correction history were not audited.

Official journal record
Reception High

OpenAlex reports 17 located citations as of 2026-07-11, meeting the site's 11+ high threshold. The count is index-specific and does not itself establish correctness or adoption.

Dated OpenAlex citation snapshot
Contribution significance Medium

The paper presents a specific protocol family with expressive functionality and explicit malicious security/round claims; priority and field-level impact were not independently evaluated.

Problem, functionality, complexity, and round claims

Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.

Hierarchical knowledge map

Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.

paper

5PM: Secure Pattern Matching

A two-party secure pattern-matching protocol family for exact matching, single-character wildcards, nonbinary Hamming distance, and substring matching, with explicit honest-but-curious and static-malicious constructions.

Problem, functionality, complexity, and round claims
  1. question

    Research question

    research question

    Can expressive private pattern matching obtain malicious security, bounded rounds, O(m+n) ciphertext-scale communication, and optional hiding of the pattern length?

    Problem, functionality, complexity, and round claims
  2. scope Functionality, parties, and adversary defined

    Server holds text T of length n over alphabet Sigma; Client holds pattern p of length m, optionally containing wildcards, and learns either matching locations or a decision while Server learns no output.

    Pattern-matching inputs, outputs, wildcards, and substring semantics Ideal functionality, static corruption model, and simulators
  3. method Construction path specified

    5PM transforms the insecure character-delay-vector algorithm into matrix multiplication, Stretch, Cut, and column-sum operations that remain computable when one operand is encrypted.

    Pattern-matching inputs, outputs, wildcards, and substring semantics Cryptographic tools and linear-algebra operators
    1. component

      Two-round HBC protocol

      specified and proved

      Client encrypts its character-delay matrix and threshold; Server forms and blinds an encrypted activation vector; Client decrypts zero entries to identify matches.

      Honest-but-curious protocol and Theorem 1
    2. component

      Eight-round malicious protocol

      specified and proved

      Both parties independently derive encrypted activation vectors, compare affine hashes, and prove matrix formation, partial decryption, randomization, and final-decryption consistency through interleaved zero-knowledge arguments.

      Eight-round malicious protocol and consistency subprotocols
  4. claim group Principal claims mixed

    The paper makes functionality, round/complexity, simulation-security, and implementation-performance claims.

    Problem, functionality, complexity, and round claims HBC and malicious realization theorems Implementation platform and timing table
    1. claim

      Simulation security

      proved conditional

      Theorems 4 and 5 state realization of the specified pattern-matching functionality for static HBC corruption under semantic security and static malicious corruption under DDH, respectively.

      HBC and malicious realization theorems
    2. claim

      HBC implementation

      experimentally supported

      A Paillier-based HBC prototype is timed on one dual-quad-core 2.93 GHz Ubuntu 10.10 machine for DNA and alphanumeric alphabets, text lengths through 100,000, and 1024/2048-bit keys.

      Implementation platform and timing table
  5. evidence group Evidence chain documented

    Support consists of explicit protocols, ideal-world simulations, asymptotic accounting, and a timing table for an HBC prototype.

    Ideal functionality, static corruption model, and simulators Implementation platform and timing table
    1. evidence

      Benchmark evidence

      reported not reproduced

      Table 13 decomposes search, blinding, and decryption time across parameter choices, but supplies neither source code nor repeated-run uncertainty in the audited full version.

      Implementation platform and timing table
  6. limitation group Boundaries and limitations material

    The strongest statements are conditional on a static two-party model and cryptographic assumptions; empirical evidence covers only the HBC prototype.

    Ideal functionality, static corruption model, and simulators Implementation platform and timing table
    1. limitation

      No malicious-protocol benchmark

      explicitly limited

      The performance section evaluates the honest-but-curious implementation; it does not report an implementation or benchmark of the eight-round malicious protocol.

      Implementation platform and timing table
  7. scrutiny

    External scrutiny

    publication recorded

    The work has a Journal of Computer Security publication record; review reports, correction history, independent reproduction, and later cryptanalysis were not audited.

    Official journal record

Source index

Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.

  1. Problem, functionality, complexity, and round claims Abstract and Section 1.1, PDF pages 1-3
  2. Pattern-matching inputs, outputs, wildcards, and substring semantics Sections 1 and 2.1, PDF pages 1-7
  3. Cryptographic tools and linear-algebra operators Sections 2.2-2.3, PDF pages 7-10
  4. Honest-but-curious protocol and Theorem 1 Sections 3.1-3.2, PDF pages 10-12
  5. Eight-round malicious protocol and consistency subprotocols Section 3.3, PDF pages 12-17; exact interleaving in Section 6
  6. Ideal functionality, static corruption model, and simulators Section 7, PDF pages 29-44
  7. HBC and malicious realization theorems Theorems 4 and 5, PDF pages 31 and 37
  8. Implementation platform and timing table Section 8 and Table 13, PDF pages 48-49
  9. Official journal record Journal of Computer Security, volume 21, number 5
  10. Dated OpenAlex citation snapshot cited_by_count = 17, accessed 2026-07-11