cryptography
play

Cryptography Seny Kamara Cryptography Group Microsoft Research - PowerPoint PPT Presentation

Nov 22, 2023 •282 likes •637 views

Cloud Cryptography Seny Kamara Cryptography Group Microsoft Research Outline Cloud Architecture What is cloud computing? o Cloud Ecosystem Who provides and who consumes cloud services? o Cloud Cryptography What are the security

  1. Cloud Cryptography Seny Kamara Cryptography Group Microsoft Research

  2. Outline • Cloud Architecture What is cloud computing? o • Cloud Ecosystem Who provides and who consumes cloud services? o • Cloud Cryptography What are the security concerns & how can cryptography help? o 2/24/11 2

  3. Computing as a Service • Computing is a vital resource Enterprises, governments, scientists, consumers, … o • Computing is manageable at small scales… e.g., PCs, laptops, smart phones o • …but becomes hard to manage at large scales build and manage infrastructure, schedule backups, hardware o maintenance, software maintenance, security, trained workforce, … • Why not outsource it? 2/24/11 3

  4. Computing Architecture Email, WWW, DBs,… Applications Windows, Linux, MacOSX ,… Platform memory, disk, network, Infrastructure 2/24/11 4

  5. Cloud Services • Infrastructure as a service Service: customer can store data in the cloud o Customer: enterprise, developers o e.g., MS Azure storage, Amazon S3 o • Platform as a service Service: customer can run its apps in the cloud o Customer: developers o e.g., MS Azure, Amazon EC2, Google AppEngine, o • Software as a service Service: customer makes use of app in the cloud o Customer: consumers & enterprise o e.g., web-based email, Flickr, delicious, Facebook, Office Web, Google o Docs, … 2/24/11 5

  6. Cloud Deployment Models Public Private 2/24/11 6

  7. The Cloud Ecosystem 2/24/11 7

  8. Who Provides Cloud Services? 2/24/11 8

  9. Cloud Infrastructure Providers • Provide access to infrastructure e.g., Amazon, Microsoft, Google, IBM, EMC, Equinix, AT&T, Verizon o • Characteristics Requires very large investments o • build data centers • acquire expertise • provide physical security • energy consumption • … Large (often) publicly traded companies o Have a reputation to uphold o 2/24/11 9

  10. Cloud Service Companies • Provide cloud-based applications e.g., Salesforce, GoGrid, NetSuite o • Characteristics Requires small investment o • developers • Platform/infrastructure services from larger cloud providers Startups (often) privately held o 2/24/11 10

  11. Who Consumes Cloud Services? • Consumers e.g., Facebook (500+ M), Web-based email (840 M), Flickr, Dropbox , … o • Enterprise E.g., Amazon EC2/S3, MS Azure, Google AppEngine, Google Apps o • Governments 120,000 US Dept. of Agriculture employees will move to MS cloud services o 17,000 Gen. Serv. Admin. Employees will move to Google cloud services o • Local Governments 100,000 NYC emplyees will move to MS cloud services o 34,000 L.A. emplyees will move to Google cloud services o 2/24/11 11

  12. Cloud Cryptography 2/24/11 12

  13. Concerns • Outsider security Can other tenants, hackers, competitors access my data? o • Insider security Can the cloud operator (and its employees) access my data? o • Intellectual property Can outsiders or insiders see my code and algorithms? o • Compliance Can I remain compliant if I move to the cloud? o • Availability Can I access my data or service at all times? o 2/24/11 13

  14. Modern Cryptography • Primitives e.g., encryption, digital signatures, hash functions, pseudo-random o generators, … • Protocols e.g., key agreement, zero-knowledge proofs, multi-party computation o • Security definitions Formal definition of what it means to be secure o • “Proofs” of security Proof that primitive/protocol meets security definition o Unconditional security (e.g., one-time pad) o Conditional security (e.g., RSA, El Gamal ,…) o • Leads to very strong security guarantees e.g., digital signatures are widely accepted in court o SHA-2, AES, ECC are certified for government use by NIST & NSA o 2/24/11 14

  15. Modern Cryptography Encryption Signatures No! EncK ( ) Secure Comp. $5B $45B   2/24/11 15

  16. Cloud Cryptography • Current crypto tools are inappropriate for the cloud Due to assumptions about how tools will be used o Results in efficiency loss & insecurity o • New tools Homomorphic encryption o Searchable/Structured encryption o Proofs of storage o Server-aided secure computation o 2/24/11 16

  17. [ …, G09,… ] Homomorphic Encryption • Encryption that supports comp. on encrypted data Fully homomorphic [G09, DGHV10] o Partially homomorphic [SYY99, BGN05, IP07,GHV10a,GHV10b,KR11] o • Guarantees that Cloud never sees plaintext/message o • Pros FHE is general-purpose o Partial & parallel HE can be efficient o • Cons FHE is inefficient (but improvements are being made rapidly) o 2/24/11 17

  18. Homomorphic Encryption K EncK , F EncK F 2/24/11 18

  19. [ SWP01 ] Searchable Encryption • Encryption that supports search on encrypted text Symmetric key [SWP01,Goh03,CM05,CGKO06] o Public key [BDOP06, BKOS07,…] o • Guarantees that Cloud never sees documents o Cloud never sees search keywords o • Pros Symmetric variant is very efficient! o • Cons Reveals access and search patterns o [GO96] shows how to hide this but it is expensive o 2/24/11 19

  20. Searchable (Symm.) Encryption EncK K t w EncK EncK 2/24/11 20

  21. [ CK10 ] Structured Encryption • Encryption that supports queries on encrypted data Query over encrypted graphs [CK10] o Query over encrypted web graphs [CK10] o • Guarantees that Cloud never sees data o Cloud never sees queries o • Pros Symmetric variant is very efficient! o • Cons Reveals access and search patterns o 2/24/11 21

  22. Structured Encryption EncK K t EncK EncK 2/24/11 22

  23. [ JK07, ABC+07 ] Proofs of Storage • Tamper detection without knowing original file Symmetric-key [JK07, SW08, DVW10] o Public-key [ABC+07, SW08, AKK10] o • Guarantees that Cloud will be caught if it tampers with data o • Pros Symmetric variant is efficient! o Verification does not require copy of original data o • Cons -- o 2/24/11 23

  24. Proofs of Storage Petabytes K ? proof O(1) ≈ 200 bits 2/24/11 24

  25. [ KMR11 ] Server-Aided Secure Comp. • Joint computation w/o revealing inputs (plain) secure computation [Yao82,GMW87,…] o • Guarantees that Parties will not learn each other’s inputs o Cloud will not learn parties’ inputs o • Pros General- purpose (e.g., data mining, voting, negotiations,…) o Efficient o • Cons -- o 2/24/11 25

  26. Server-Aided Secure Comp. x y f(x,y) 2/24/11 26

  27. Questions? 2/24/11 27

  28. References [MG09] • The NIST Definition of Cloud Computing o http://csrc.nist.gov/groups/SNS/cloud-computing/cloud-def-v15.doc o [G09] • Craig Gentry o Fully Homomorphic Encryption from Ideal Lattices. o ACM Symposium on Theory of Computing, 2009. o [DGHV10] • Martin van Dijk, Craig Gentry, Shai Halevi and Vinod Vaikuntanathan o Fully Homomorphic Encryption Over the Integers o [SYY99] • Tomas Sanders, Adam Young and Moti Yung o Non-interactive Cryptocomputing for NC1 o IEEE Symposium on the Foundations of Computer Science, 1999 o 2/24/11 28

  29. References [BGN05] • Dan Boneh, Eu-Jin Goh and Kobi Nissim o Evaluating 2-DNF Formulas on Ciphertexts o Theory of Cryptography Conference, 2005 o [IP07] • Yuval Ishai and Anat Paskin o Evaluating branching programs on encrypted data o Theory of Cryptography Conference, 2007 o [GHV10a] • Craig Gentry, Shai Halevi and Vinod Vaikuntanathan o A Simple BGN-style Encryption Scheme from LWE o Advances in Cryptology – Eurocrypt, 2010 o 2/24/11 29

  30. References [GHV10b] • Craig Gentry, Shai Halevi and Vinod Vaikuntanathan o i-hop Homomorphic Encryption Schemes o Advances in Cryptology – CRYPYO, 2010 o [KR11] • Seny Kamara and Mariana Raykova o Parallel Homomorphic Encryption o Under submission o [SWP01] • Dawn Song, David Wagner and Adrian Perrig o Practical Techniques for Searches on Encrypted Data o IEEE Security and Privacy Symposium, 2000 o 2/24/11 30

  31. References [Goh03] • Eu-Jin Goh o Secure Indexes o http://eprint.iacr.org/2003/216 o [CM05] • Yang-Chen Chang and Michael Mitzenmacher o Privacy preserving keyword searches on remote encrypted data o Conference on Applied Cryptography and Network Security, 2005 o [CGKO06] • Reza Curtmola, Juan Garay, Seny Kamara and Rafail Ostrovsky o Symmetric Searchable Encryption: Improved Definitions and Efficient o Constructions. ACM Conference on Computer & Communication Security, 2006 o 2/24/11 31

  32. References [BDOP04] • Dan Boneh, Giovanni di Crescenzo, Rafail Ostrovsky and Giuseppe o Persiano Public-Key Encryption with Keyword Search o Advances in Cryptology – Eurocrypt, 2004 o [BKOS07] • Dan Boneh, Eyal Kushilevitz, Rafail Ostrovsky, William E. Skeith III o Public Key Encryption That Allows PIR Queries o Advances in Cryptology – CRYPTO, 2007 o [CK10] • Melissa Chase and Seny Kamara o Structured Encryption and Controlled Disclosure o Advances in Cryptology – Asiacrypt, 2010 o 2/24/11 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -> C enciphering functions D: C x K

446 views • 40 slides
Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY Plaintext Cyphertext More definitions block cipher stream cipher hash function shared key public key digital signature

383 views • 16 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides
Uses of Cryptography What can we use cryptography for? Lots of things Secrecy

Uses of Cryptography What can we use cryptography for? Lots of things Secrecy

Uses of Cryptography What can we use cryptography for? Lots of things Secrecy Authentication Prevention of alteration Lecture 4 Page 1 CS 236 Online Cryptography and Secrecy Pretty obvious Only those knowing the

303 views • 15 slides
Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but

Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but

Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but hard-to-solve problems were discovered. Computational Complexity, by Fu Yuxi Cryptography 1 / 75 Cryptography is closely related to some

785 views • 76 slides
Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information

1.95k views • 154 slides
Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography Symmetric cryptography DES 3DES AES Asymmetric cryptography Diffie-Hellman key exchange 2 Modern cryptography Moving into

338 views • 16 slides
Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is cryptography? Related fields: Cryptography ("secret writing"): Making secret messages Turning plaintext (an ordinary readable message)

1.2k views • 57 slides
Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9

Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9

Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9 CCA Security SIM-CCA Security (PKE) Recv Send PK/Enc SK/Dec Replay Filter Secure (and correct) if: s.t. output of is distributed

1.26k views • 101 slides
Public Key Cryptography Cryptography School of Engineering and Technology CQUniversity Australia

Public Key Cryptography Cryptography School of Engineering and Technology CQUniversity Australia

Cryptography Public Key Cryptography Concepts of Public Key Cryptography Public Key Cryptography Cryptography School of Engineering and Technology CQUniversity Australia Prepared by Steven Gordon on 20 Feb 2020, public.tex, r1803 1

421 views • 7 slides
Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography

Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography

Homomorphic Cryptography & Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography Bike lock of Internet Provides many important building blocks for security For example, encryption or

699 views • 31 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 19th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security fail?

758 views • 72 slides
Handout 8 Summary of this handout: Asymmetric Cryptography Public Key Cryptography

Handout 8 Summary of this handout: Asymmetric Cryptography Public Key Cryptography

06-20008 Cryptography The University of Birmingham Autumn Semester 2012 School of Computer Science Eike Ritter 15 November, 2012 Handout 8 Summary of this handout: Asymmetric Cryptography Public Key Cryptography Diffie-Hellman Key

207 views • 8 slides
Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University

Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University

Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University Bochum Wikipedia: Hoover became a controversial figure as evidence of his secretive abuses of power began to surface. He was found to have

1.21k views • 103 slides
Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn

Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn

Computer Security Course. Dawn Song Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn Overview Cryptography: secure communication over insecure communication channels Three goals

475 views • 30 slides
Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh,

Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh,

CSE 484 / CSE M 584: Computer Security and Privacy Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Ada Lerner, John Manferdelli, John Mitchell, Franziska Roesner,

445 views • 25 slides
Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and Pr Preliminaries 1 Cryp Cr yptography The word cryptography comes from the Greek words (hidden or secret) and

670 views • 37 slides
Enc Encryp ypted Sear ed Search h Seny Kamara Brown University 2 3 4 Q: Why is this

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University 2 3 4 Q: Why is this

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University 2 3 4 Q: Why is this happening? 5 Big Data Industry and Governments want more data NaDonal security Machine learning Business analyDcs NLP

431 views • 30 slides
1 Diffie-Hellman exponential key exchange Diffie-Hellman exponential key exchange Alice has

1 Diffie-Hellman exponential key exchange Diffie-Hellman exponential key exchange Alice has

Symmetric cryptography Both parties must agree on a secret key, K message is encrypted, sent, decrypted at other side E K (P) D K (C) Secure Communication Bob Alice Key distribution must be secret otherwise messages can be

553 views • 10 slides
Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR The Connected World CR 2 Information Storage CR 3 Increased Security Breaches 81% more in 2015 CR

1.46k views • 29 slides
Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink

Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink

Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink July 1st, 2019 July 1st, 2019 1 / 27 Lattice-based cryptography II In this talk: Introduction to (ring-)LWE Lattice-based key-exchange and

1.44k views • 80 slides

More recommend