Presentation is loading. Please wait.

Presentation is loading. Please wait.

Using Secret Key to Foil an Eavesdropper

Published byAubrey Nelson Modified over 5 years ago

Similar presentations

Presentation on theme: "Using Secret Key to Foil an Eavesdropper"— Presentation transcript:

1 Using Secret Key to Foil an Eavesdropper
Paul Cuff Electrical Engineering Princeton University

2 Main Idea Secrecy for distributed systems
Historic Cryptography Results New Metric for Secrecy Distributed System Action Node B Message Information Node A Attack Adversary Special Cases: rate-distortion theory (no adversary); lossless (Globecom); unlimited secret key; unlimited communication; seperability of nodes B and C.

3 Cipher Plaintext: Source of information:
Example: English text: Allerton Conference Ciphertext: Encrypted sequence: Example: Non-sense text: Encipherer Decipherer Ciphertext Key Plaintext

4 Example: Substitution Cipher
Simple Substitution Example: Plaintext: …RANDOMLY GENERATE A CODEB… Ciphertext: …DFLAUIPV WRLRDFNR F SXARQ… Caesar Cipher Alphabet A B C D E … Mixed Alphabet F Q S A R … Julius Caesar used this cipher, with a shift of 3. His nephew, Augustus, used a shift of 1. Alphabet A B C D E … Mixed Alphabet D E F G H …

5 Shannon Model Schematic Assumption Requirement
Enemy knows everything about the system except the key Requirement The decipherer accurately reconstructs the information Key Key Plaintext Ciphertext Plaintext Encipherer Decipherer Adversary 26! Is about 4 x 10^26 (the number of atoms in my chair) bits Redundancy of English is about bits per letter. (without spaces it’s 3.7) About 25 letters needed to decode For simple substitution: C. Shannon, "Communication Theory of Secrecy Systems," Bell Systems Technical Journal, vol. 28, pp , Oct

6 Shannon Analysis Perfect Secrecy
Adversary learns nothing about the information Only possible if the key is larger than the information C. Shannon, "Communication Theory of Secrecy Systems," Bell Systems Technical Journal, vol. 28, pp , Oct

7 Shannon Analysis Equivocation vs Redundancy
Equivocation is conditional entropy: Redundancy is lack of entropy of the source: Equivocation reduces with redundancy: C. Shannon, "Communication Theory of Secrecy Systems," Bell Systems Technical Journal, vol. 28, pp , Oct

8 Computational Secrecy
Some imperfect secrecy is difficult to crack Public Key Encryption Trapdoor Functions Difficulty not proven Often “cat and mouse” game Vulnerable to quantum computer attack  834 689 524287 X W. Diffie and M. Hellman, “New Directions in Cryptography,” IEEE Trans. on Info. Theory, 22(6), pp , 1976.

9 Information Theoretic Secrecy
Achieve secrecy from randomness (key or channel), not from computational limit of adversary. Physical layer secrecy Wyner’s Wiretap Channel [Wyner 1975] Partial Secrecy Typically measured by “equivocation:” Other approaches: Error exponent for guessing eavesdropper [Merhav 2003] Cost inflicted by adversary [this talk] A couple of aspects have been integrated in the study of information theoretic secrecy. One observation is that channel noise can be used, as the key is, to hide the information from an eavesdropper. The other development has been the study of partial secrecy. Insert a diagram if I have time.

10 Competitive Distributed System
Decoder: Encoder: Node A Node B Message Key Information Action Adversary Attack Jam a communication channel; break into a network, counter a military attack; overload a power grid. System payoff: Adversary:

11 Zero-Sum Game Value obtained by system: Objective Maximize payoff Key
Jam a communication channel; break into a network, counter a military attack; overload a power grid. Information Message Action Node A Node B Attack Adversary

12 Payoff-Rate Function Theorem: Maximum achievable average payoff
Markov relationship: Theorem:

13 Encoding Scheme Coordination Strategies [Cuff-Permuter-Cover 10]
K Coordination Strategies [Cuff-Permuter-Cover 10] Empirical coordination for U Strong coordination for Y

14 Lossless Case Theorem: Require Y=X Related to Yamamoto’s work [97]
Assume a payoff function Related to Yamamoto’s work [97] Very different result Theorem: [Cuff 10] Also required:

15 Binary-Hamming Case Binary Source: Hamming Distortion Naïve approach
Random hashing or time-sharing Optimal approach Reveal excess 0’s or 1’s to condition the hidden bits (black line) (orange line) Source 1 * Public message

16 What the Adversary doesn’t know can hurt him.
Knowledge of Adversary: [Yamamoto 97] [Yamamoto 88]:

17 No Causal Information (Prior Work)
[Theorem 3, Yamamoto 97] Theorem: Choose yields

18 Summary Framework for Encryption Average cost inflicted by adversary
Dynamic settings where information is available causally No use of “equivocation” Optimal performance uses both “strong” and “empirical” coordination.

Download ppt "Using Secret Key to Foil an Eavesdropper"

Similar presentations

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY Causal Secrecy: An Informed Eavesdropper.

PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY Causal Secrecy: An Informed Eavesdropper.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
Cryptology  Terminology  plaintext - text that is not encrypted.  ciphertext - the output of the encryption process.  key - the information required.

Cryptology  Terminology  plaintext - text that is not encrypted.  ciphertext - the output of the encryption process.  key - the information required.
Paul Cuff THE SOURCE CODING SIDE OF SECRECY TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: AA.

Paul Cuff THE SOURCE CODING SIDE OF SECRECY TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: AA.
PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY Information Theory for Secrecy and Control.

PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY Information Theory for Secrecy and Control.
Enhancing Secrecy With Channel Knowledge

Enhancing Secrecy With Channel Knowledge
Equivocation A Special Case of Distortion-based Characterization.

Equivocation A Special Case of Distortion-based Characterization.
251959084756578934940271832400483985714 292821262040320277771378360436620207075 955562640185258807844069182906412495150 821892985591491761845028084891200728449.

CMSC 414 Computer and Network Security Lecture 3 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 3 Jonathan Katz.
PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY A Framework for Partial Secrecy.

PAUL CUFF ELECTRICAL ENGINEERING PRINCETON UNIVERSITY A Framework for Partial Secrecy.
CS470, A.SelcukIntroduction1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukIntroduction1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
CryptographyPerfect secrecySlide 1 Today What does it mean for a cipher to be: –Computational secure? Unconditionally secure? Perfect secrecy –Conditional.

CryptographyPerfect secrecySlide 1 Today What does it mean for a cipher to be: –Computational secure? Unconditionally secure? Perfect secrecy –Conditional.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
CS426Fall 2010/Lecture 21 Computer Security CS 426 Lecture 2 Cryptography: Terminology & Classic Ciphers.

CS426Fall 2010/Lecture 21 Computer Security CS 426 Lecture 2 Cryptography: Terminology & Classic Ciphers.
Xiaohua (Edward) Li1 and E. Paul Ratazzi2

Xiaohua (Edward) Li1 and E. Paul Ratazzi2
Presentation Layer Network Format Local Format Information Transformation “few standards, but a lot of ideas”

Presentation Layer Network Format Local Format Information Transformation “few standards, but a lot of ideas”
CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.

CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)
Computer Security CS 426 Lecture 3

Computer Security CS 426 Lecture 3

Similar presentations

Ads by Google