Description:
As an initial step to implement Privacy Enhancing Technologies (PETs) in MISP, we are starting with a Private Set Intersection (PSI) workflow. This allows for getting the intersection of event attributes on separate MISP instances, without having to share the possibly sensitive event data.
To achieve this MISP acts as a PSI client, while the PSI server runs as a separate container using GitHub - OpenMined/PSI: Private Set Intersection Cardinality protocol based on ECDH and Bloom Filters ยท GitHub .
Progress:
- psi client action module
- misp module results and workflow environment variables: Misp-module results in MISP Workflows
- ad-hoc workflow adding PSI results as note in original event
- ad-hoc workflow adding PSI results to new misp event
Next Steps:
- test with more data, filtering etc
- add other PETs
- approval mechanism for PSI runs