Open Source Summit Europe 2022

Append-only transparency logs have become more prominent in infrastructure over the last few years. Certificate authorities include issued certificates in transparency logs for public auditability. Sigstore, a standard for signing and verifying digital artifacts, uses a transparency log to record signing events. Blockchains are built on top of immutable logs. Append-only logs can raise interesting questions, particularly around a right to erasure. Log entries cannot be mutated or removed without impacting the integrity of the log. When an entry in a log contains personally identifiable information and a user requests that information be removed, how can a log operator handle this request? In this talk, we will discuss the technical details of append-only logs and issues around persisting PII in a transparency log, and compare and contrast techniques to provide immutable, auditable logs while preserving users' rights.