express lowering the cost of metadata hiding
play

Express: Lowering the Cost of Metadata-hiding Communication with - PowerPoint PPT Presentation

Sep 04, 2023 •687 likes •1.35k views

Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy Saba Eskandarian, Henry Corrigan-Gibbs, Matei Zaharia, Dan Boneh Stanford MIT CSAIL Stanford Stanford Our Story Our Story How to Communicate

  1. Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy Saba Eskandarian, Henry Corrigan-Gibbs, Matei Zaharia, Dan Boneh Stanford MIT CSAIL Stanford Stanford

  2. Our Story

  3. Our Story

  4. How to Communicate Privately? Option 1: End to end encrypted messaging apps E.g. Signal, WhatsApp Problem: metadata

  5. How to Communicate Privately? Option 1: Option 2: End to end encrypted messaging apps Anonymizing proxy E.g. Signal, WhatsApp E.g. Tor, SecureDrop Problem: metadata Problem: global adversaries

  6. How to Communicate Privately? Option 3: Metadata-hiding communication systems with cryptographic privacy

  7. How to Communicate Privately? Option 3: Metadata-hiding communication systems with cryptographic privacy E.g. Riposte, Pung, Talek, Karaoke, Atom, XRD, Verdict, Dissent, ….

  8. How to Communicate Privately? Option 3: Metadata-hiding communication systems with cryptographic privacy E.g. Riposte, Pung, Talek, Karaoke, Atom, XRD, Verdict, Dissent, …. Drawback: heavy requirements placed on clients - Requirement to run in synchronized rounds - High communication costs

  9. How to Communicate Privately? Option 3: Metadata-hiding communication systems with cryptographic privacy E.g. Riposte, Pung, Talek, Karaoke, Atom, XRD, Verdict, Dissent, …. Drawback: heavy requirements placed on clients - Requirement to run in synchronized rounds - High communication costs Can we make metadata-hiding communication work for whistleblowing?

  10. Introducing Express Communication system designed for practical metadata-hiding whistleblowing

  11. Introducing Express Communication system designed for practical metadata-hiding whistleblowing Journalists can register mailboxes for sources to send messages/documents

  12. Introducing Express Communication system designed for practical metadata-hiding whistleblowing Journalists can register mailboxes for sources to send messages/documents Whistleblowers do not need to access the system in synchronized rounds

  13. Introducing Express Communication system designed for practical metadata-hiding whistleblowing Journalists can register mailboxes for sources to send messages/documents Whistleblowers do not need to access the system in synchronized rounds Asymptotic improvements: client computation costs O(1) communication costs O(1) (both previously O(√N))

  14. Introducing Express Communication system designed for practical metadata-hiding whistleblowing Journalists can register mailboxes for sources to send messages/documents Whistleblowers do not need to access the system in synchronized rounds Asymptotic improvements: Practical improvements: client computation costs O(1) 6x improvement in server computation time communication costs O(1) 8x improvement in client computation time (both previously O(√N)) >10x improvement in communication costs 6x reduction in dollar cost to run system

  15. Express Overview 2 server system, secure against: - Arbitrarily many corrupt users - Up to one corrupt server

  16. Express Overview 2 server system, secure against: - Arbitrarily many corrupt users - Up to one corrupt server Supported operations: Register mailbox (Private) write to mailbox Read from mailbox

  17. Express Overview 2 server system, secure against: - Arbitrarily many corrupt users - Up to one corrupt server Supported operations: Register mailbox (Private) write to mailbox Read from mailbox Security: can’t tell who the recipient of a message is

  18. Express Overview 2 server system, secure against: - Arbitrarily many corrupt users - Up to one corrupt server Supported operations: Register mailbox (Private) write to mailbox Read from mailbox Security: can’t tell who the recipient of a message is Assumption: user knows “address” of mailbox to which it sends message

  19. Tool: Private Writing with Distributed Point Functions Point function : a function that is zero everywhere, except at one point Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14.

  20. Tool: Private Writing with Distributed Point Functions Point function : a function that is zero everywhere, except at one point x f(x) 0 0 1 0 2 0 3 “Hi!” 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14.

  21. Tool: Private Writing with Distributed Point Functions Point function : a function that is zero everywhere, except at one point x f 1 (x) x f 2 (x) x f(x) 0 “abc” 0 “abc” 0 0 1 “xf$” 1 “xf$” 1 0 = ⊕ 2 “^tg” 2 “^tg” 2 0 3 “!7≈” 3 “‘2!)” 3 “Hi!” 4 “jhV” 4 “jhV” 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14.

  22. Tool: Private Writing with Distributed Point Functions Point function : a function that is zero everywhere, except at one point Distributed point function: technique for efficiently splitting a point function into two pieces, each a (non-point) function whose XOR is the original point function x f 1 (x) x f 2 (x) x f(x) Key features: 0 “abc” 0 “abc” 0 0 - concise 1 “xf$” 1 “xf$” 1 0 representation = ⊕ 2 “^tg” 2 “^tg” 2 0 - fast to generate 3 “!7≈” 3 “‘2!)” 3 “Hi!” 4 “jhV” 4 “jhV” 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14.

  23. Tool: Private Writing with Distributed Point Functions I want to write “Hi!” to address 3 Addr Data Addr Data 0 0 0 0 1 0 1 0 2 0 2 0 3 0 3 0 4 0 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  24. Tool: Private Writing with Distributed Point Functions x f(x) 0 0 1 0 Addr Data Addr Data 2 0 0 0 0 0 3 “Hi!” 1 0 1 0 4 0 2 0 2 0 3 0 3 0 4 0 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  25. Tool: Private Writing with Distributed Point Functions x f 1 (x) x f 2 (x) 0 “abc” 0 “abc” 1 “xf$” 1 “xf$” Addr Data Addr Data 2 “^tg” 2 “^tg” 0 0 0 0 3 “!7≈” 3 “‘2!)” 1 0 1 0 4 “jhV” 4 “jhV” 2 0 2 0 3 0 3 0 4 0 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  26. Tool: Private Writing with Distributed Point Functions f 1 f 2 Addr Data Addr Data 0 0 0 0 1 0 1 0 2 0 2 0 3 0 3 0 4 0 4 0 Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  27. Tool: Private Writing with Distributed Point Functions f 1 f 2 Addr Data Addr Data 0 f 1 (0) 0 f 2 (0) 1 f 1 (1) 1 f 2 (1) 2 f 1 (2) 2 f 2 (2) 3 f 1 (3) 3 f 2 (3) 4 f 1 (4) 4 f 2 (4) Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  28. Tool: Private Writing with Distributed Point Functions f 1 f 2 Addr Data Addr Data 0 “abc” 0 “abc” 1 “xf$” 1 “xf$” 2 “^tg” 2 “^tg” 3 “!7≈” 3 “‘2!)” 4 “jhV” 4 “jhV” Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  29. Tool: Private Writing with Distributed Point Functions f 1 f 2 Addr Data Addr Data 0 “abc” 0 “abc” 1 “xf$” 1 “xf$” ⊕ 2 “^tg” 2 “^tg” 3 “!7≈” 3 “‘2!)” “Hi!” 4 “jhV” 4 “jhV” Distributed Point Functions and their Applications, Niv Gilboa, Yuval Ishai, Eurocrypt’14. Private Information Storage, Rafail Ostrovsky, Victor Shoup, STOC’97

  30. Hiding Data How to prevent curious clients from reading others’ mailboxes? Addr Data Addr Data 0 “abc” 0 “abc” 1 “xf$” 1 “xf$” 2 “^tg” 2 “^tg” 3 “!7≈” 3 “‘2!)” 4 “jhV” 4 “jhV”

  31. Hiding Data How to prevent curious clients from reading others’ mailboxes? Encrypt each row with a different key held by the owner of the mailbox Addr Data Key Addr Data Key 0 “abc” k NYT 0 “abc” k NYT 1 “xf$” k WaPo 1 “xf$” k WaPo 2 “^tg” k WSJ 2 “^tg” k WSJ 3 “!7≈” k Buzzfeed 3 “‘2!)” k Buzzfeed 4 “jhV” k Inquirer 4 “jhV” k Inquirer

  32. Hiding Data How to prevent curious clients from reading others’ mailboxes? Encrypt each row with a different key held by the owner of the mailbox Different key sent to each server, encrypt in CTR mode to allow adding messages Addr Data Key Addr Data Key 0 “abc” k NYT1 0 “abc” k NYT2 1 “xf$” k WaPo1 1 “xf$” k WaPo2 2 “^tg” k WSJ1 2 “^tg” k WSJ2 3 “!7≈” k Buzzfeed1 3 “‘2!)” k Buzzfeed2 4 “jhV” k Inquirer1 4 “jhV” k Inquirer2

  33. Hiding Meta data Construction thus far vulnerable to polling attack: Attacker reads every row after each write to see which one was changed

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley

Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley

Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley End-to-end encrypted file sharing Academia: DepSky, M-Aegis, Mylar, Plutus, ShadowCrypt, Sieve, SiRiUS Industry: Encryption is not enough: Metadata still

1.17k views • 45 slides
Lowering Your Lead Generation Costs 1 Its Simply about Leads and Conversion 2 Budgets

Lowering Your Lead Generation Costs 1 Its Simply about Leads and Conversion 2 Budgets

Lowering Your Lead Generation Costs 1 Its Simply about Leads and Conversion 2 Budgets Aren't Getting Larger 3 Shift Balance to Reduce Cost Enterprise Cost per Lead ~ $65 Distribution Cost per Lead~ $22 4 The 5 Most Common Pitfalls of

488 views • 25 slides
Marine Energy Conversion Technologies: Lowering the Levelized Cost of Energy through Control

Marine Energy Conversion Technologies: Lowering the Levelized Cost of Energy through Control

Marine Energy Conversion Technologies: Lowering the Levelized Cost of Energy through Control Systems, Materials Research and Systems Engineering Peter H. Kobos, Vincent S. Neary, Ryan G. Coe, Bernadette A. Hernandez-Sanchez Sandia National

329 views • 31 slides
Prescription Drug Costs and Expenditures A Call For Action A prescription for lowering the cost

Prescription Drug Costs and Expenditures A Call For Action A prescription for lowering the cost

Prescription Drug Costs and Expenditures A Call For Action A prescription for lowering the cost of heath care Dramatically reduces prescription drug costs Significant savings for taxpayers and retirees Basic changes are common

294 views • 5 slides
m e t a d a t a how much of a difference does metadata really make to your bottom line?

m e t a d a t a how much of a difference does metadata really make to your bottom line?

it might be the giant in the room, but it doesnt ha ve t o be scary l e t s t a l k a b o u t What is metadata? What differentiates great metadata from merely good? Do you really need to worry about it? As a publisher, m

253 views • 6 slides
Tariff Application FY 2020/21 August 2019 Transnet Mandate Our Mandate Assist in lowering the

Tariff Application FY 2020/21 August 2019 Transnet Mandate Our Mandate Assist in lowering the

Tariff Application FY 2020/21 August 2019 Transnet Mandate Our Mandate Assist in lowering the cost of doing business in South Africa; Enable economic growth; and Ensure the security of supply by providing appropriate port, rail and pipelines

653 views • 54 slides
From SDTM to displays, through ADaM & Analyses Results Metadata, a flight on board METADATA

From SDTM to displays, through ADaM & Analyses Results Metadata, a flight on board METADATA

From SDTM to displays, through ADaM & Analyses Results Metadata, a flight on board METADATA Airlines Omar SEFIANI - Stphane BOUGET, Boehringer Ingelheim DH13, PhUSE Barcelona 2016, October, 12 th Outline Background Metadata Driven

683 views • 19 slides
Information hiding Information hiding Notice how a user of a service being provided by an

Information hiding Information hiding Notice how a user of a service being provided by an

Information hiding Information hiding Notice how a user of a service being provided by an object, need only know the name of the messages that the object will accept. They need not have any idea how the actions performed in response to

474 views • 34 slides
Metadata In ArcGIS 10.0 Jason Cupp Whats New In ArcGIS 10.0 New Metadata Editor for

Metadata In ArcGIS 10.0 Jason Cupp Whats New In ArcGIS 10.0 New Metadata Editor for

Esri International User Conference | San Diego, CA Technical Workshops | 2011-07-12 Metadata In ArcGIS 10.0 Jason Cupp Whats New In ArcGIS 10.0 New Metadata Editor for Multiple Standards New Tools and Workflows Metadata Editor

332 views • 22 slides
UNSD metadata template / SDMX Metadata Structure Definition Elena De Jess, UNSD Standardized

UNSD metadata template / SDMX Metadata Structure Definition Elena De Jess, UNSD Standardized

UNSD metadata template / SDMX Metadata Structure Definition Elena De Jess, UNSD Standardized metadata improves usability and comparability Metadata (and data) that follow specific standardized patterns: are easier for users to interpret

991 views • 19 slides
CSN08101 Digital Forensics Lecture 9: Data Analysis Lecture 9: Data Analysis Module Leader: Dr

CSN08101 Digital Forensics Lecture 9: Data Analysis Lecture 9: Data Analysis Module Leader: Dr

CSN08101 Digital Forensics Lecture 9: Data Analysis Lecture 9: Data Analysis Module Leader: Dr Gordon Russell Lecturers: Robert Ludwiniak Lecture Objectives File metadata Data hiding Data hiding Data recovery File

739 views • 44 slides
NPD Express Todays Agenda 9:10 - 9:50: Introduction & overview of NPD Express

NPD Express Todays Agenda 9:10 - 9:50: Introduction & overview of NPD Express

THE SCIENCE OF PRODUCT DEVELOPMENT MADE EASY NPD Express Todays Agenda 9:10 - 9:50: Introduction & overview of NPD Express Introduction & context - Pete Cooke, Head of Digital Overview of NPD Express - Debbie Senior,

666 views • 35 slides
DUNE Data Model Meeting: Metadata Metadata Needs And Considerations Steven Timm The following

DUNE Data Model Meeting: Metadata Metadata Needs And Considerations Steven Timm The following

DUNE Data Model Meeting: Metadata Metadata Needs And Considerations Steven Timm The following are design concerns for whatever new metadata system is written or adopted. They are written from the point of view of data management operations and

166 views • 4 slides
Temporary Seasonal Lake Lowering Overview Pertinent facts and details about Lake Conroe, Lake

Temporary Seasonal Lake Lowering Overview Pertinent facts and details about Lake Conroe, Lake

Temporary Seasonal Lake Lowering Overview Pertinent facts and details about Lake Conroe, Lake Houston, and the temporary Seasonal Lake Lowering initiative Summary of the 2018 and 2019 Seasonal Lake Lowering Status of downstream

479 views • 46 slides
FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar A Practical Approach To Lowering The Cost Of Solar Randy King Alex Afanasyev Jeff Thompson Jeff Burke Lixia Zhang Residential Solar Installer

153 views • 12 slides
Expanding Metadata Reuse with an Islandora Metadata Extraction Utility Serhiy Polyakov and

Expanding Metadata Reuse with an Islandora Metadata Extraction Utility Serhiy Polyakov and

Expanding Metadata Reuse with an Islandora Metadata Extraction Utility Serhiy Polyakov and William E. Moen University of North Texas International conference Open Repositories 2013 Charlottetown, Prince Edward Island, Canada Paper presented at

474 views • 25 slides
Green NLP Roy Schwartz AIlen Institute for AI/ Hebrew University University of Washington

Green NLP Roy Schwartz AIlen Institute for AI/ Hebrew University University of Washington

Green NLP Roy Schwartz AIlen Institute for AI/ Hebrew University University of Washington of Jerusalem Premise: Big Models T5 11b #parameters

510 views • 47 slides
Requirements Project overview and update TONY BREEDS PRINCIPAL SOFTWARE ENGINEER - REDHAT What

Requirements Project overview and update TONY BREEDS PRINCIPAL SOFTWARE ENGINEER - REDHAT What

2019-05-01 Requirements Project overview and update TONY BREEDS PRINCIPAL SOFTWARE ENGINEER - REDHAT What does Requirements do? Manages OpenStack wide python requirements Coordinating and converging the libraries used by OpenStack

371 views • 12 slides
#prep X Assembly 05: Wire Harness It is HIGHLY recommended to watch the video for this part. It's a

#prep X Assembly 05: Wire Harness It is HIGHLY recommended to watch the video for this part. It's a

#prep X Assembly 05: Wire Harness It is HIGHLY recommended to watch the video for this part. It's a better learning experience; the images can't easily convey how the wire slack should feel and what are the wire paths. PS: In the videos, we are

434 views • 15 slides
DDoS: Barbarians At The Gate(way) Examination of actors, tools and defenses #whoami Dave Lewis

DDoS: Barbarians At The Gate(way) Examination of actors, tools and defenses #whoami Dave Lewis

Text DDoS: Barbarians At The Gate(way) Examination of actors, tools and defenses #whoami Dave Lewis @gattaca dave@akamai.com It left me wanting Game Plan Actors Attacks Tools Trends Data Now what? Actors: For Hire Current(ish)

1.03k views • 77 slides
Android malware that wont make you fall asleep ukasz Siewierski lukasz.siewierski@cert.pl

Android malware that wont make you fall asleep ukasz Siewierski lukasz.siewierski@cert.pl

Android malware that wont make you fall asleep ukasz Siewierski lukasz.siewierski@cert.pl @maldr0id Hackito Ergo Sum 2015 Android malware is boring! ukasz Siewierski (@maldr0id) Android malware that wont make you fall asleep 2 / 24

535 views • 34 slides
What is RIOT? An operating system for IoT devices too small for Linux A free, open source

What is RIOT? An operating system for IoT devices too small for Linux A free, open source

What is RIOT? An operating system for IoT devices too small for Linux A free, open source software platform A community of developers Open source Free core Grassroots governance Since Summit 2016: RIOTs year in numbers

405 views • 9 slides
ECE 650 Systems Programming & Engineering Spring 2018 Introduction to SQL Tyler Bletsch

ECE 650 Systems Programming & Engineering Spring 2018 Introduction to SQL Tyler Bletsch

ECE 650 Systems Programming & Engineering Spring 2018 Introduction to SQL Tyler Bletsch Duke University Slides are adapted from Brian Rogers (Duke) SQL S tructured Q uery L anguage Major reason for commercial success of relational

570 views • 41 slides
& 1st large scale oauth stealing botnet & Secure delegation mechanism De-facto

& 1st large scale oauth stealing botnet & Secure delegation mechanism De-facto

& 1st large scale oauth stealing botnet & Secure delegation mechanism De-facto authentication standard & & Exploit server Play store fake install/comments Ads injection Repacked (non-google) app Registration

717 views • 55 slides

More recommend