Skip to content

ccuetoh/sriracha

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

100 Commits
.githooks
.githooks
 
 
.github
.github
 
 
examples
examples
 
 
fieldset
fieldset
 
 
mock
mock
 
 
normalize
normalize
 
 
session
session
 
 
test/bench
test/bench
 
 
testdata/corpus
testdata/corpus
 
 
token
token
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
.mockery.yml
.mockery.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CLAUDE.md
CLAUDE.md
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
Taskfile.yml
Taskfile.yml
 
 
codecov.yml
codecov.yml
 
 
doc.go
doc.go
 
 
fields.go
fields.go
 
 
fields_test.go
fields_test.go
 
 
fingerprint.go
fingerprint.go
 
 
fingerprint_test.go
fingerprint_test.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
recordmap.go
recordmap.go
 
 
recordmap_test.go
recordmap_test.go
 
 
types.go
types.go
 
 
types_test.go
types_test.go
 
 

Repository files navigation

sriracha_logo Sriracha

Privacy-preserving person record linkage (PPRL) library

CI codecov Go Report Card OpenSSF Best Practices pkg.go.dev License

API is unstable. Not production-ready.

Sriracha is a Go library for privacy-preserving record linkage. It enables institutions to share person records across organizational boundaries without transmitting raw PII. Sriracha provides the building blocks for building privacy-first transports. Records are normalized and tokenized with a shared secret, producing tokens that can be compared without exposing the underlying identifiers.

Features

  • Deterministic tokenization using HMAC-SHA256
  • Probabilistic tokenization with Sørensen–Dice matching
  • Optional BLIP and balanced filter defenses against frequency analysis
  • Unicode normalization pipeline
  • Canonical field set with support for extended schemas

Installation

Requires Go 1.24+

go get github.com/ccuetoh/sriracha@v0.1.0

Quickstart

package main

import (
	"fmt"

	"github.com/ccuetoh/sriracha"
	"github.com/ccuetoh/sriracha/fieldset"
	"github.com/ccuetoh/sriracha/session"
)

func main() {
	secret := []byte("super-secret-key")

	s, _ := session.New(secret, fieldset.DefaultFieldSet())
	defer s.Destroy()

	// Deterministic tokenization
	tokA, _ := s.TokenizeDeterministic(sriracha.RawRecord{
		sriracha.FieldNameGiven:  "Alice",
		sriracha.FieldNameFamily: "Smith",
	})

	tokB, _ := s.TokenizeDeterministic(sriracha.RawRecord{
		sriracha.FieldNameGiven:  "Alice",
		sriracha.FieldNameFamily: "Smith",
	})

	eq := s.Equal(tokA, tokB)
	fmt.Printf("match: %v\n", eq)

	// Probabilistic tokenization
	bloomA, _ := s.TokenizeProbabilistic(sriracha.RawRecord{
		sriracha.FieldNameGiven:  "Alice",
		sriracha.FieldNameFamily: "Smith",
	})

	bloomB, _ := s.TokenizeProbabilistic(sriracha.RawRecord{
		sriracha.FieldNameGiven:  "Alice",
		sriracha.FieldNameFamily: "Smyth", // typo
	})

	result, _ := s.Match(bloomA, bloomB, 0.85)
	fmt.Printf("match: %v (score: %.2f)\n", result.IsMatch, result.Score)
}

Benchmarks

Live history on Bencher.

Corpus Records Pairs AUROC Accuracy Recall
OpenSanctions 26 841 natural cross-source 0.93 0.91 0.87
FEBRL4 10 000 synthetic (FEBRL4 noise) 1.00 1.00 1.00
NCVR 8 848 synthetic (1–2 char edits) 1.00 1.00 1.00

About

Privacy-preserving person record linkage (PPRL) library

Topics

go pprl

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Contributors

Languages