its applications
play

Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 - PowerPoint PPT Presentation

Nov 16, 2022 •386 likes •699 views

Homomorphic Cryptography & Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography Bike lock of Internet Provides many important building blocks for security For example, encryption or

  1. Homomorphic Cryptography & Its Applications Aaram Yun, UNIST FIF presentation, 2015 1

  2. Cryptography 2

  3. Cryptography » Bike lock of Internet » Provides many important building blocks for security » For example, encryption or authentication 3

  4. Very secure 4

  5. Using data Eventually, crypto-protected data should be used somewhere 5

  6. Using data However, this usually means removing cryptographic protection Often makes it hard to apply crypto in designing secure systems 6

  7. Homomorphic cryptography » Computation using cryptographically protected data » While maintaining security » Many potential applications, for example, secure cloud computing 7

  8. RSA Encryption » » » » 'Homomorphism' in mathematics » From and , can be computed by anybody 8

  9. Homomorphic encryption » E.g., from , compute a ciphertext , such that, » ' can be homomorphically evaluated using ciphertexts' » What kind of function can be computed like this? » Any function, if you don't care about security » Just use the identity function as Enc() 9

  10. It remains to be seen whether it is possible to have a [homomorphic encryption] with a large set of operations which is highly secure. — Rivest, Adleman, and Dertouzos, 1978 10

  11. Fully homomorphic encryption » Craig Gentry, "Fully Homomorphic Encryption Using Ideal Lattices" , STOC 2009 » Any polynomial-time algorithm can be homomorphically evaluated 11

  12. Homomorphic encryption » ' Somewhat homomorphic': can handle low-degree polynomial functions mod » ' Fully homomorphic': can handle arbitrary polynomial-sized polynomial functions mod » When , it can handle practically any boolean functions, so, any practical algorithms 12

  13. 'Gentry's blueprint' 13

  14. Somewhat homomorphic encryption (SHE) » Each ciphertext has its 'noise level' » Freshly encrypted ciphertext has low loise level » Adding ciphertexts: noises are added » Multiplying ciphertexts: noises are multiplied 14

  15. Somewhat homomorphic encryption (SHE) » If the noise level is above certain threshold, correct decryption is not guaranteed » Addition is okay: 1-bit increment » Multiplication is the problem: noise level is doubled » Relatively efficient, but only 'somewhat homomorphic' 15

  16. Refreshing the ciphertext » There is a way to reduce the noise level of a 'noisy', but yet correctly decryptable ciphertext » Idea: decrypt to get the plaintext , then encrypt again to obtain the refreshed ciphertext » Problem: can be done only by the owner of the decryption key 16

  17. Bootstrapping » Gentry's solution: can be done if SHE can homomorphically evaluate its own decryption circuit » This is called 'bootstrapping' » 'SHE + bootstrapping' gives you a FHE 17

  18. Efficiency of HE » Slower, with larger ciphertext expansion » Still, if your application requires only SHE, it is relatively efficient » FHE is the problem 18

  19. Efficiency of FHE » First FHEs were s..l..o..w.. » About 6-30 minutes to refresh one bit! » Many improvements made afterwards » Better noise management » Parallelization 19

  20. AES evaluation » Can evaluate AES homomorphically » About 180 blocks in 1050 sec. (Eurocrypt 2015) 20

  21. In comparision... » Native evaluation of AES: » About 18 cycles/ block » Roughly 10,000,000,000 blocks during the same time » About 10 8 times faster 21

  22. Efficiency of FHE » Still a long way to go » Perhaps completely different paradigm needed for drastic speedup » Everything still within Gentry's blueprint » I am optimistic... » If bootstrapping is not needed, already somewhat usable 22

  23. Homomorphic signature » Each block of data is signed: » When computing using , anyone can homomorphically evaluate the signature for using corresponding signatures » Given and , anyone can check if » Even when you don't have 23

  24. Applications 24

  25. Private cloud computing » Storage is outsourced » No local copy » Computation is outsourced » Only receive the output » Data is sensitive, private » E.g., medical, or genomic data 25

  26. 26

  27. FHE is not always needed » Some of the previous conditions are not needed » Conventional encryption is enough » Your application may not require evaluating any circuit » SHE would be enough » Also, conventionally encrypted data can be turned into FHE encrypted data when necessary » Homomorphically evaluate the decryption circuit, later 27

  28. Veri fj able cloud computing » Storage is outsourced » No local copy » Computation is outsourced » Only receive the output » You want guarantee that the output is correct 28

  29. Secure cloud computing » Right now not very realistic economically, for general computation » In the future, when FHE becomes practically practical, not theoretically practical, ... » That's what we are doing: ' Future Internet' » After Snowden's revelation about NSA surveillance, perhaps secure cloud makes more sense already 29

  30. Questions » Imagine very practical homomorphic crypto in the future » What other new Internet applications can we build out of it? » Can we use it even in building services on lower layers? » What can we do with SHE right now? 30

  31. Conclusions » In homomorphic cryptography, it is possible to provide rich functionality without sacrificing security » This is a promising, relatively new area with big dreams and many applications » Still a long way to go, but progresses are being actively made 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

OpenStack Workload Reference Architecture: Web Applications Web applications are the most

OpenStack Workload Reference Architecture: Web Applications Web applications are the most

OpenStack Workload Reference Architecture: Web Applications Web applications are the most prevalent Apache, MySQL, and PHP/Python/Perl and is applications in business today. They are driven considered by many as the platform of choice by user

106 views • 9 slides
Applications of AMS There is a rich field of applications for AMS due to the increased efficiency

Applications of AMS There is a rich field of applications for AMS due to the increased efficiency

Applications of AMS There is a rich field of applications for AMS due to the increased efficiency and accuracy of radiocarbon dating. It ranges from geology, hydrology, oceanology, climatology, and a wide range of environmental applications

338 views • 29 slides
New Directions for Web Applications Dave Raggett, Canon, TV Raman, IBM 1/11 Web Applications

New Directions for Web Applications Dave Raggett, Canon, TV Raman, IBM 1/11 Web Applications

Canon New Directions for Web Applications Dave Raggett, Canon, TV Raman, IBM 1/11 Web Applications Workshop, San Jose, June 2004 Canon Goals Break Web applications out of the browser! Freedom to build wider variety of applications

612 views • 18 slides
Multimedia Applications Multimedia Applications Srinidhi Varadarajan Multimedia Applications

Multimedia Applications Multimedia Applications Srinidhi Varadarajan Multimedia Applications

Multimedia Applications Multimedia Applications Srinidhi Varadarajan Multimedia Applications Multimedia Applications Multimedia requirements Streaming Phone over IP Recovering from Jitter and Loss RTP Diff-serv, Int-serv,

483 views • 27 slides
Network Applications Network Applications There are many network applications Network

Network Applications Network Applications There are many network applications Network

Network Applications Network Applications There are many network applications Network applications involve the cooperation Client Server Programming Client Server Programming of processes running on different hosts connected by a

323 views • 7 slides
Web applications are used extensively in many areas: We will rely on web applications more in

Web applications are used extensively in many areas: We will rely on web applications more in

Muath Alkhalaf 1 Shauvik Roy Choudhary 2 Mattia Fazzini 2 Tevfik Bultan 1 Alessandro Orso 2 Christopher Kruegel 1 1 UC Santa Barbara 2 Georgia Tech Web applications are used extensively in many areas: We will rely on web applications more in

872 views • 47 slides
Topic 10: Applications of Holography Aim: To review a range of applications of holography,

Topic 10: Applications of Holography Aim: To review a range of applications of holography,

E I H T Y T Modern Optics O H F G R E U D B I N Topic 10: Applications of Holography Aim: To review a range of applications of holography, including holo- graphic lenses and commercial holographic applications. Contents:

298 views • 14 slides
MY IPHONE APPLICATIONS - 2018 S U P P O R T I N G M E A N D O T H E R S W I T H A D H D

MY IPHONE APPLICATIONS - 2018 S U P P O R T I N G M E A N D O T H E R S W I T H A D H D

MY IPHONE APPLICATIONS - 2018 S U P P O R T I N G M E A N D O T H E R S W I T H A D H D TODAYS AGENDA Top 20 Applications on my Iphone Additional assorted applications you may find useful Format: Combination of screen

859 views • 56 slides
Applications of Immune System Computing Ricardo Hoar What kind of applications? l Computer

Applications of Immune System Computing Ricardo Hoar What kind of applications? l Computer

Applications of Immune System Computing Ricardo Hoar What kind of applications? l Computer Security l Pattern Recognition l Data Mining and Retrieval l Multi-Agent Systems l Design Optimization l Control Applications l Robotics l A

414 views • 28 slides
BFS/DFS Applications BFS and DFS applications Tyler Moore Shortest path between two nodes in a

BFS/DFS Applications BFS and DFS applications Tyler Moore Shortest path between two nodes in a

BFS/DFS Applications BFS and DFS applications Tyler Moore Shortest path between two nodes in a graph CSE 3353, SMU, Dallas, TX Topological sorting Lecture 7 Finding connected components Some slides created by or adapted from Dr. Kevin Wayne.

366 views • 7 slides
New Applications for Graphene Electronics New Applications for Graphene Electronics Han Wang,

New Applications for Graphene Electronics New Applications for Graphene Electronics Han Wang,

New Applications for Graphene Electronics New Applications for Graphene Electronics Han Wang, Daniel Nezich, Jing Kong and Tomas Palacios Department of Electrical Engineering and Computer Science Massachusetts Institute of Technology

421 views • 10 slides
Chapter 2: outline 2.5 P2P applications 2.1 principles of network applications 2.6 video

Chapter 2: outline 2.5 P2P applications 2.1 principles of network applications 2.6 video

Chapter 2: outline 2.5 P2P applications 2.1 principles of network applications 2.6 video streaming and content distribution 2.2 Web and HTTP networks 2.3 electronic mail 2.7 socket programming SMTP, POP3, IMAP with UDP and TCP 2.4 DNS

648 views • 53 slides
Applets and Applications Developing Applets and Applications Application run by user,

Applets and Applications Developing Applets and Applications Application run by user,

Applets and Applications Developing Applets and Applications Application run by user, double-clickable/command-line Create a JPanel with the guts of the GUI/logic No restrictions on access, reads files, URLS, What will be in the

256 views • 6 slides
New Real-time Applications PhD Peter Idestam-Almquist Starcounter AB New real time applications

New Real-time Applications PhD Peter Idestam-Almquist Starcounter AB New real time applications

NewSQL Database for New Real-time Applications PhD Peter Idestam-Almquist Starcounter AB New real time applications Millions of simultaneous online users. High degree of concurrency. Interactive applications (95% reads; 5% writes). 2

700 views • 38 slides
Com paring W eb Applications w ith Desktop Applications: An Em pirical Study Paul Pop

Com paring W eb Applications w ith Desktop Applications: An Em pirical Study Paul Pop

Com paring W eb Applications w ith Desktop Applications: An Em pirical Study Paul Pop paupo@ida.liu.se Department of Computer and Information Science Linkping University Sweden 1 of 13 May 26, 20 0 0 Motivation and Objective Draw

519 views • 13 slides
Maximum Flow Applications Max flow extensions and applications. Disjoint paths and network

Maximum Flow Applications Max flow extensions and applications. Disjoint paths and network

Maximum Flow Applications Contents Maximum Flow Applications Max flow extensions and applications. Disjoint paths and network connectivity. Bipartite matchings. Circulations with upper and lower bounds. Census tabulation (matrix

492 views • 20 slides
Com 2 MaC Workshop on Cryptography 26-28 june 2000 - Pohang - South Korea Secure Designs for

Com 2 MaC Workshop on Cryptography 26-28 june 2000 - Pohang - South Korea Secure Designs for

Com 2 MaC Workshop on Cryptography 26-28 june 2000 - Pohang - South Korea Secure Designs for Public-Key Cryptography based on the Discrete Logarithm David Pointcheval Dpartement d Informatique ENS - CNRS David.Pointcheval@ens.fr

660 views • 28 slides
Chapter3 Public-Key Cryptography and Message Authentication Henric Johnson/jme 1 OUTLINE

Chapter3 Public-Key Cryptography and Message Authentication Henric Johnson/jme 1 OUTLINE

Chapter3 Public-Key Cryptography and Message Authentication Henric Johnson/jme 1 OUTLINE Approaches to Message Authentication Secure Hash Functions (SHA) and Keyed- Hash Message Authentication Code (HMAC) Public-Key Cryptography

458 views • 29 slides
Lecture 10: Encryption CIS 1.0 Lecture 10, by Yuqing Tang How messages being sent? Packet

Lecture 10: Encryption CIS 1.0 Lecture 10, by Yuqing Tang How messages being sent? Packet

Lecture 10: Encryption CIS 1.0 Lecture 10, by Yuqing Tang How messages being sent? Packet switching via many routers. Routers sitting between source and destination computers can access the content of the packets. To ensure the

434 views • 18 slides
Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson

Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson

Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson (recommended) 1 Encryption Principles A cryptosystem has (at least) five ingredients: 1. Plaintext 2. Secret Key 3. Ciphertext 4. Encryption algorithm 5.

657 views • 12 slides
Participant Roles Conversational Roles 2 participants: Speaker Addressee 3+

Participant Roles Conversational Roles 2 participants: Speaker Addressee 3+

M ULTIPARTY D IALOGS John Riebold Participant Roles Conversational Roles 2 participants: Speaker Addressee 3+ participants: Speaker Addressee Auditor (known, ratified) Overhearer (known, non-ratified)

403 views • 16 slides
Changing the Conversation Vision Statement The FMCC is the resource and voice for Facility

Changing the Conversation Vision Statement The FMCC is the resource and voice for Facility

ISO 55000 Changing the Conversation Vision Statement The FMCC is the resource and voice for Facility Management Consultants worldwide to leverage our collective expertise to benefit IFMA members, and the Facility Management profession.

680 views • 42 slides
Talking TIM Webinar Series Bringing to your desk the great and varied work happening on the ground

Talking TIM Webinar Series Bringing to your desk the great and varied work happening on the ground

The Future of Transportation - 2010 APWA Annual Congress and Exposition Talking TIM Webinar Series Bringing to your desk the great and varied work happening on the ground and around the country in Traffic Incident Management (TIM) Hosted by

571 views • 17 slides
Strategies for Infantile Epilepsy A PCORI Virtual Multi-Stakeholder Workshop October 8, 2020

Strategies for Infantile Epilepsy A PCORI Virtual Multi-Stakeholder Workshop October 8, 2020

Systematic Review: Management Strategies for Infantile Epilepsy A PCORI Virtual Multi-Stakeholder Workshop October 8, 2020 Welcome And thank you for participating! Agenda Agenda Housekeeping Introductions Background and Your

620 views • 29 slides

More recommend