masking proofs are tight
play

Masking Proofs are Tight (and How to Exploit it in Security - PowerPoint PPT Presentation

Oct 04, 2023 β€’249 likes β€’775 views

Masking Proofs are Tight (and How to Exploit it in Security Evaluations) Vincent Grosso, Franois-Xavier Standaert Radbout University Nijmegen (The Netherlands), UCL (Belgium) EUROCRYPT 2018, Tel Aviv, Israel Motivation (side-channel security

  1. Masking Proofs are Tight (and How to Exploit it in Security Evaluations) Vincent Grosso, François-Xavier Standaert Radbout University Nijmegen (The Netherlands), UCL (Belgium) EUROCRYPT 2018, Tel Aviv, Israel

  2. Motivation (side-channel security evaluation) 1 current practice (simplified) attack-based evaluations 2 128 computation 2 64 2 0 2 10 2 20 πŸ‘ πŸ’πŸ measurements

  3. Motivation (side-channel security evaluation) 1 current practice (simplified) > πŸ‘ πŸ’πŸ = πŸ‘ πŸ“πŸ ? = πŸ‘ πŸ—πŸ ? attack-based evaluations 2 128 computation 2 64 2 0 2 10 2 20 πŸ‘ πŸ’πŸ measurements

  4. Motivation (side-channel security evaluation) 1 current practice proposed approach (simplified) open designs ( Kerckhoffs ) attack-based evaluations proof-based evaluations 2 128 2 128 computation computation computation 2 64 2 64 2 0 2 0 2 10 2 20 2 30 2 60 πŸ‘ πŸ’πŸ πŸ‘ 𝟘𝟏 measurements measurements

  5. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) ?

  6. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) ? β€’ 𝑒 βˆ’ 1 probes do not reveal anything on 𝑧

  7. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) y β€’ But 𝑒 probes completely reveal 𝑧

  8. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) ? β€’ Noisy leakage security ( Prouff, Rivain 2013 )

  9. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) noise and independence (Duc, Dziemb., Faust 2014) β€’ Noisy leakage security ( Prouff, Rivain 2013 )

  10. Example: masked encoding 2 β€’ Probing security ( Ishai, Sahai, Wagner 2003 ) 𝑧 = 𝑧 1 βŠ• 𝑧 2 βŠ• β‹― βŠ• 𝑧(𝑒 βˆ’ 1) βŠ• 𝑧(𝑒) noise and independence (Duc, Dziemb., Faust 2014) β€’ Noisy leakage security ( Prouff, Rivain 2013 ) 𝑑 MI( 𝑍, 𝑴) < MI( 𝑍(π‘˜), 𝑴(π‘˜)) 𝑒 𝑂 ∝ and MI (𝑍;𝑴)

  11. Contributions 3 β€’ Previous work: masking proofs are tight for the encodings (Duc, Faust, Standaert, EC15/JoC18)

  12. Contributions 3 β€’ Previous work: masking proofs are tight for the encodings (Duc, Faust, Standaert, EC15/JoC18) β€’ This work: 1. The same holds for circuits (e.g., S-boxes) made from simple gadgets (e.g., add. & mult.)

  13. Contributions 3 β€’ Previous work: masking proofs are tight for the encodings (Duc, Faust, Standaert, EC15/JoC18) β€’ This work: 1. The same holds for circuits (e.g., S-boxes) made from simple gadgets (e.g., add. & mult.) 2. Proofs can considerably simplify evaluations β€’ Under noise & independence assumptions β€’ Limited to divide & conquer attacks

  14. Outline 1. Evaluation settings 2. Case studies w.c. eval. time complexity β€’ Case #1: low 𝑒 , one-tuple vs. multi-tuples β€’ Independent Operation’s Leakages (IOL) β€’ Case #2: higher 𝑒 , single-tuple β€’ Independent Shares Leakages (ISL), DFS bound β€’ Case #3: multiplication leakages β€’ ISL assumption + PR bound β€’ Case #4: higher 𝑒 , worst-case attacks β€’ Shares repetition, security graphs 3. Concrete attacks (i.e., why worst-case data comp. needed) 4. Conclusions & future research

  15. Outline 1. Evaluation settings 2. Case studies w.c. eval. time complexity β€’ Case #1: low 𝑒 , one-tuple vs. multi-tuples β€’ Independent Operation’s Leakages (IOL) β€’ Case #2: higher 𝑒 , single-tuple β€’ Independent Shares Leakages (ISL), DFS bound β€’ Case #3: multiplication leakages β€’ ISL assumption + PR bound β€’ Case #4: higher 𝑒 , worst-case attacks β€’ Shares repetition, security graphs 3. Concrete attacks (i.e., why worst-case data comp. needed) 4. Conclusions & future research

  16. Evaluation settings (I) 4 β€’ Target implementation:

  17. Evaluation settings (I) 4 β€’ Target implementation: β€’ C1 Adv: one 𝑒 -tuple, 𝑴 = 𝑀 10 = [𝑀 10 1 , … , 𝑀 10 𝑒 ] leakage matrix leakage vector leakage sample ( one 𝑒 -tuple ) ( all leaks ) ( one share )

  18. Evaluation settings (I) 4 β€’ Target implementation: β€’ C2 Adv: ten 𝑒 -tuples, 𝑴 = [𝑀 1 , 𝑀 2 , … , 𝑀 10 ]

  19. Evaluation settings (I) 4 β€’ Target implementation: C3 Adv: multiplication leaks, some β€’ 𝑀 𝑗 ’s become 𝑒 2 -tuples - or even 2 𝑒 2 -tuples ( log/alog tables ) compression 𝑑 1 𝑏 1 𝑐 1 𝑏 1 𝑐 2 𝑏 1 𝑐 3 0 𝑠 𝑠 1 2 𝑑 2 βˆ’π‘  0 𝑠 𝑏 2 𝑐 1 𝑏 2 𝑐 2 𝑏 2 𝑐 3 + β‡’ 1 3 𝑑 3 βˆ’π‘  𝑠 0 𝑏 3 𝑐 1 𝑏 3 𝑐 2 𝑏 3 𝑐 3 2 3 refreshing partial products

  20. Evaluation settings (I) 4 β€’ Target implementation: C3 Adv: multiplication leaks, some β€’ 𝑀 𝑗 ’s become 𝑒 2 -tuples - or even 2 𝑒 2 -tuples ( log/alog tables ) β€’ 8-bit 𝑧 = 𝑧(1) … 𝑧 𝑒 , π‘š(π‘˜) = HW 𝑧(π‘˜) + π‘œ 2 , SNR = 𝜏 2 (8βˆ’bit HW) = 2 β€’ Noise variance 𝜏 π‘œ 2 2 𝜏 π‘œ 𝜏 π‘œ β€’ ( Correlated noise analyzed in the paper )

  21. Evaluation settings (II) 5 β€’ Exact worst-case evaluations β‰ˆ computing: MI 𝐿; π‘Œ, 𝑴 = H 𝐿 + Pr[𝑙] βˆ™ Pr 𝑦 𝑙 𝑦 βˆ™ Pr[𝑧] βˆ™ Pr π’Ž 𝑙, 𝑦, 𝒛 βˆ™ log 2 (Pr 𝑙 𝑦, π’Ž ) 𝒛 π’Ž shares vectors πœ€ -dimension integral β‡’ 𝑃(2 𝑒 ) β€’ Which can be computationally hard…

  22. Outline 1. Evaluation settings 2. Case studies w.c. eval. time complexity β€’ Case #1: low 𝑒 , one-tuple vs. multi-tuples β€’ Independent Operation’s Leakages (IOL) β€’ Case #2: higher 𝑒 , single-tuple β€’ Independent Shares Leakages (ISL), DFS bound β€’ Case #3: multiplication leakages β€’ ISL assumption + PR bound β€’ Case #4: higher 𝑒 , worst-case attacks β€’ Shares repetition, security graphs 3. Concrete attacks (i.e., why worst-case data comp. needed) 4. Conclusions & future research

  23. Case #1 6 β€’ 𝑒 = 1,2 , C1 Adv β‡’ exhaustive analysis possible

  24. Case #1 6 β€’ 𝑒 = 1,2 , C2 Adv β‡’ exhaustive analysis possible

  25. Case #1 6 β€’ 𝑒 = 1,2 , C2 Adv β‡’ exhaustive analysis possible β€’ But IOL assumption leads to faster evaluation 𝑗 , β€’ i.e., MI 𝐿; π‘Œ, 𝑴 β‰ˆ 10 βˆ™ MI(𝑍 𝑀 𝑗 )

  26. Case #1 6 β€’ 𝑒 = 1,2 , C2 Adv β‡’ exhaustive analysis possible β€’ But IOL assumption leads to faster evaluation β€’ Conservative ( dependencies linearly decrease the MI )

  27. Case #2 7 β€’ Larger 𝑒 ’s, C1 Adv β‡’ exhaustive analysis hard

  28. Case #2 7 β€’ Larger 𝑒 ’s, C1 Adv β‡’ exhaustive analysis hard β€’ But ISL assumpt. leads to much faster eval. 𝑀 𝑗 (π‘˜)) 𝑒 [DFS15,18] 𝑗 , 𝑗 (π‘˜), β€’ i.e., MI( 𝑍 𝑀 𝑗 ) < MI( 𝑍

  29. Case #2 7 β€’ Larger 𝑒 ’s, C1 Adv β‡’ exhaustive analysis hard β€’ But ISL assumpt. leads to much faster eval. β€’ Critical ( dependencies exponentially increase the MI )

  30. Case #3 8 β€’ Mult. leaks β‡’ analysis even harder ( 2-bit example )

  31. Case #3 8 β€’ Mult. leaks β‡’ analysis even harder ( 2-bit example ) β€’ ISL assumpt. leads to much faster eval. [PR13] MI( 𝑒 2 partial prod.) β‰ˆ 1,72 βˆ™ 𝑒 βˆ™ MI(𝑒 -tuple) β€’

  32. Case #4: putting things together (I) 9 β€’ Full S-box analysis, large 𝑒 ’s, C1 & C3 Adv

  33. Case #4: putting things together (I) 9 β€’ Full S-box analysis, large 𝑒 ’s, C1 & C3 Adv β€’ C1 β†’ C3: MI increases linearly in # of tuples 𝑀 𝑗 (π‘˜)) 𝑒 β‰ˆ 𝑒 βˆ™ MI( 𝑍 𝑗 (π‘˜), 𝑗 (π‘˜), 𝑀 𝑗 (π‘˜)) 𝑒 β€’ i.e., MI( 𝑍

  34. Case #4: putting things together (I) 9 β€’ Full S-box analysis, large 𝑒 ’s, C1 & C3 Adv β€’ C1 β†’ C3: MI increases linearly in # of tuples β€’ ∝ β€œcircuit size” parameter of masking proofs

  35. Case #4: putting things together (II) 10 β€’ Things get (much) worse if shares re-used 𝑏 1 𝑐 1 𝑏 1 𝑐 2 𝑏 1 𝑐 3 β€’ e.g., ISW each share used 𝑒 times: 𝑏 2 𝑐 1 𝑏 2 𝑐 2 𝑏 2 𝑐 3 𝑏 3 𝑐 1 𝑏 3 𝑐 2 𝑏 3 𝑐 3

  36. Case #4: putting things together (II) 10 β€’ Things get (much) worse if shares re-used Adv. can average the β€’ 𝑀 𝑗 (π‘˜) ’s & increases MI exp. in 𝑒

  37. Case #4: putting things together (II) 10 β€’ Things get (much) worse if shares re-used Adv. can average the β€’ 𝑀 𝑗 (π‘˜) ’s & increases MI exp. in 𝑒 𝑀 𝑗 (π‘˜)) 𝑒 β‰ˆ (𝑒 βˆ™ MI( 𝑍 𝑗 (π‘˜), 𝑗 (π‘˜), 𝑀 𝑗 (π‘˜))) 𝑒 β€’ i.e., MI( 𝑍

  38. Case #4: putting things together (II) 10 β€’ Things get (much) worse if shares re-used Adv. can average the β€’ 𝑀 𝑗 (π‘˜) ’s & increases MI exp. in 𝑒 β€’ ∝ β€œnoise condition” of masking security proofs

  39. Case #4: putting things together (II) 10 β€’ Things get (much) worse if shares re-used Adv. can average the β€’ 𝑀 𝑗 (π‘˜) ’s & increases MI exp. in 𝑒 β€’ ∝ β€œnoise condition” of masking security proofs

  40. Link to the bigger picture 11 β€’ From MI 𝐿; π‘Œ, 𝑴 one can directly obtain a bound on the attack’s overall complexity β€’ Example for MI 𝐿; π‘Œ, 𝑴 = 10 βˆ’7

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan)

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan)

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan) 2017-09-29 1 quick intro to masking masking = countermeasure against DPA idea: secret sharing b = b 1 + b 2 individual shares tell you nothing

752 views β€’ 45 slides
Glitch-Resistant Masking Revisited or Why Proofs in the Robust Probing Model are Needed Thorben

Glitch-Resistant Masking Revisited or Why Proofs in the Robust Probing Model are Needed Thorben

Glitch-Resistant Masking Revisited or Why Proofs in the Robust Probing Model are Needed Thorben Moos 1 , Amir Moradi 1 , Tobias Schneider 2 and Franois-Xavier Standaert 2 Horst Grtz Institute for IT Security, Ruhr-Universitt Bochum,

694 views β€’ 46 slides
Short Proofs Are Narrow (Well, Sort of), But Are They Tight? Jakob Nordstr om jakobn@kth.se

Short Proofs Are Narrow (Well, Sort of), But Are They Tight? Jakob Nordstr om jakobn@kth.se

Short Proofs Are Narrow (Well, Sort of), But Are They Tight? Jakob Nordstr om jakobn@kth.se Theory Group KTH Computer Science and Communication PhD Student Seminar in Theoretical Computer Science April 3rd, 2006 Short Proofs Are Narrow

1.52k views β€’ 128 slides
On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1

On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1

On Tight Security Proofs for Schnorr Signatures Nils Fleischhacker 1 Tibor Jager 2 oder 1 Dominique Schr 1 Saarland University 2 Horst G ortz Institute for IT Security, Ruhr-University Bochum December 9, 2014 (Informal) main Result The

1.35k views β€’ 36 slides
Tight Private Circuits: Achieving Probing Security with the Least Refreshing Sonia Belaid,

Tight Private Circuits: Achieving Probing Security with the Least Refreshing Sonia Belaid,

Tight Private Circuits: Achieving Probing Security with the Least Refreshing Sonia Belaid, Dahmun Goudarzi, and Matthieu Rivain dahmun.goudarzi@pqshield.com 1 Side-Channel Attacks and Higher-Order Masking in 1 in 2 in 3

655 views β€’ 52 slides
Very High-Order Masking: Efficient Implementation and Security Evaluation Anthony Journault and

Very High-Order Masking: Efficient Implementation and Security Evaluation Anthony Journault and

Very High-Order Masking: Efficient Implementation and Security Evaluation Anthony Journault and Franois-Xavier Standaert UCL (Louvain-la-Neuve, Belgium) CHES 2017, Taipei, Taiwan Outline Background Masking Barthe et al. masking

614 views β€’ 48 slides
Proposal to add masking function to GFM Proposal part 1 Adding a masking reference attribute on

Proposal to add masking function to GFM Proposal part 1 Adding a masking reference attribute on

Proposal to add masking function to GFM Proposal part 1 Adding a masking reference attribute on the spatial attribute type. Proposal part 2 Details of the masking attribute addition. Table 3-13 - S100_GF_SpatialAttributeType Role Name

558 views β€’ 8 slides
Low Randomness Masking and Shulfifgn: An Evaluation Using Mutual Information Kostas

Low Randomness Masking and Shulfifgn: An Evaluation Using Mutual Information Kostas

Low Randomness Masking and Shulfifgn: An Evaluation Using Mutual Information Kostas Papagiannopoulos kostaspap88@gmail.com kpcrypto.net Radboud University Nijmegen Digital Security Department The Netherlands 1 Overview Masking,

785 views β€’ 46 slides
On the Multiplicative Complexity of Boolean Functions and Bitsliced Higher-Order Masking Dahmun

On the Multiplicative Complexity of Boolean Functions and Bitsliced Higher-Order Masking Dahmun

On the Multiplicative Complexity of Boolean Functions and Bitsliced Higher-Order Masking Dahmun Goudarzi and Matthieu Rivain CHES 2016, Santa-Barbara Higher-Order Masking x = x 1 + x 2 + + x d 2/28 Higher-Order Masking x = x 1 + x 2 +

855 views β€’ 42 slides
Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Proofs, Continued Today Proofs : A style guide Proofs should be easy to

Euclid (300 BC) Proofs, Continued Today Proofs : A style guide Proofs should be easy to verify. All the cleverness goes into finding/writing the proof, not reading/verifying it! P vs. NP (informally) : P =

682 views β€’ 21 slides
Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth

Welcome to PROOFS! PROOFS: Security Proofs for Embedded Systems Introduction to the fifth workshop Introduction to the workshop PROOFS: Security Proofs for Embedded Systems UCSB August 20, 2016 5th edition of PROOFS PROOFS 2012:

311 views β€’ 7 slides
Formal Analysis of the Entropy / Security Trade-off in First-Order Masking Countermeasures

Formal Analysis of the Entropy / Security Trade-off in First-Order Masking Countermeasures

Introduction RSM: Rotating Sboxes Masking Information Theoretic Evaluation of RSM Security Evaluation of RSM against CPA and 2O-CPA Conclusions and Perspectives Formal Analysis of the Entropy / Security Trade-off in First-Order Masking

539 views β€’ 38 slides
Disclosures Masking and Breast Density Volpare Health Solutions (Wellington, New Zealand) Can we

Disclosures Masking and Breast Density Volpare Health Solutions (Wellington, New Zealand) Can we

6/8/2017 Disclosures Masking and Breast Density Volpare Health Solutions (Wellington, New Zealand) Can we Quantify Masking Risk? co-founder and shareholder Qview Medical (Los Altos, CA) Nico Karssemeijer consultant, co-founder and

883 views β€’ 18 slides
SVMpAUC-tight: A new algorithm for optimizing partial AUC based on a tight convex upper bound

SVMpAUC-tight: A new algorithm for optimizing partial AUC based on a tight convex upper bound

SVMpAUC-tight: A new algorithm for optimizing partial AUC based on a tight convex upper bound Harikrishna Narasimhan and Shivani Agarwal Department of Computer Science and Automation Indian Institute of Science, Bangalore Receiver Operating

1.12k views β€’ 90 slides
Understanding the Masking-Shadowing Function INRIA ; CNRS ; Univ. Grenoble Alpes in

Understanding the Masking-Shadowing Function INRIA ; CNRS ; Univ. Grenoble Alpes in

Understanding the Masking-Shadowing Function in Understanding the Masking-Shadowing Function in Microfacet-Based BRDFs 2014-09-01 Microfacet-Based BRDFs Eric Heitz Understanding the Masking-Shadowing Function INRIA ; CNRS ; Univ. Grenoble

808 views β€’ 77 slides
Tight Gas in the Netherlands A Study Proposal EBN Exploration Day 23 May 2016 1 1 Why a

Tight Gas in the Netherlands A Study Proposal EBN Exploration Day 23 May 2016 1 1 Why a

Tight Gas in the Netherlands A Study Proposal EBN Exploration Day 23 May 2016 1 1 Why a Tight Gas Study Proposal The Netherlands contains circa 50 discoveries with about 100 200 bcm undevelopped gas in tight reservoirs Several

726 views β€’ 5 slides
By Paul Lamey 1. Unnecessary Divisions Interfere with the Focus of Discipleship (vv. 38 41) 1.

By Paul Lamey 1. Unnecessary Divisions Interfere with the Focus of Discipleship (vv. 38 41) 1.

Mark 9:38 50 By Paul Lamey 1. Unnecessary Divisions Interfere with the Focus of Discipleship (vv. 38 41) 1. Unnecessary Divisions Interfere with the Focus of Discipleship (vv. 38 41) 2. Unmortified Temptations Interfere with the Purity

603 views β€’ 5 slides
Devsigners Chimeras of the Web Wait, you know how to do that? Probably works as a

Devsigners Chimeras of the Web Wait, you know how to do that? Probably works as a

Devsigners and Unicorns Work, satisfaction, burnout and hero culture Chris Strahl, CEO, Basalt Digital agency focused on front-end development and design systems Chris Strahl CEO @chrisstrahl (pretty much everywhere) Builder Track

481 views β€’ 25 slides
THE ISLAMIC WORLD, TANG CHINA, THE MAYA Title : Islamic world; Tang China and east Asia; the Maya

THE ISLAMIC WORLD, TANG CHINA, THE MAYA Title : Islamic world; Tang China and east Asia; the Maya

THE ISLAMIC WORLD, TANG CHINA, THE MAYA Title : Islamic world; Tang China and east Asia; the Maya of Central America Source : OUP Medium : map Date : 600-800 Note: Ti e only part of Europe in this group of lectures is Iberia... Islam spread

496 views β€’ 20 slides
Water and Development Part 2c: Sub-surface and Groundwater Milind Sohoni www.cse.iitb.ac.in/

Water and Development Part 2c: Sub-surface and Groundwater Milind Sohoni www.cse.iitb.ac.in/

Water and Development Part 2c: Sub-surface and Groundwater Milind Sohoni www.cse.iitb.ac.in/ sohoni email: sohoni@cse.iitb.ac.in () August 12, 2017 1 / 29 Objectives Sub-surface and Groundwater: Stocks and Flows. How does GW and SSW

383 views β€’ 20 slides
A Framework for Automated Biclique Cryptanalysis of Block Ciphers F. Abed C. Forler E. List S.

A Framework for Automated Biclique Cryptanalysis of Block Ciphers F. Abed C. Forler E. List S.

Motivation Biclique Cryptanalysis Our Framework Results A Framework for Automated Biclique Cryptanalysis of Block Ciphers F. Abed C. Forler E. List S. Lucks J. Wenzel Bauhaus-Universit at Weimar FSE 2013, Singapore 13.03.2013 F.

633 views β€’ 31 slides
Building Complex Queries in Conversational Search Xiaoni Cai Advisor: Johannes Kiesel Referees:

Building Complex Queries in Conversational Search Xiaoni Cai Advisor: Johannes Kiesel Referees:

Bachelor Thesis Defense: Building Complex Queries in Conversational Search Xiaoni Cai Advisor: Johannes Kiesel Referees: Prof. Benno Stein, Jr. Prof. Jan Ehlers Bauhaus-Universitt Weimar, 12 October 2020 1 Build Queries Traditional Search

312 views β€’ 18 slides
Pipelineable On-Line Encryption with Tag (POET) Farzaneh Abed 2 Scott Fluhrer 1 John Foley 1

Pipelineable On-Line Encryption with Tag (POET) Farzaneh Abed 2 Scott Fluhrer 1 John Foley 1

Pipelineable On-Line Encryption with Tag (POET) Farzaneh Abed 2 Scott Fluhrer 1 John Foley 1 Christian Forler 2 Eik List 2 Stefan Lucks 2 David McGrew 1 Jakob Wenzel 2 1 Cisco Systems, 2 Bauhaus-Universitt Weimar DIAC 2014 Santa Barbara, CA

642 views β€’ 62 slides
Consolidating software variants into software product lines: a research outline Rainer Koschke

Consolidating software variants into software product lines: a research outline Rainer Koschke

Consolidating software variants into software product lines: a research outline Rainer Koschke University of Bremen, Germany Working Conference on Reverse Engineering 10th of October 2005 Motivation software product lines grow out of

129 views β€’ 9 slides

More recommend