on the bit security of cryptographic primitives
play

On the Bit Security of Cryptographic Primitives M E T R A S 7 - PowerPoint PPT Presentation

Apr 27, 2023 •464 likes •883 views

On the Bit Security of Cryptographic Primitives M E T R A S 7 . 7 M Daniele Micciancio Michael Walter UCSD IST Austria eprint.iacr.org/2018/077 Security Security Adversary Game 1 Security Security Adversary Game

  1. On the Bit Security of Cryptographic Primitives M E T R A S 7 . 7 M Daniele Micciancio Michael Walter UCSD IST Austria eprint.iacr.org/2018/077

  2. Security Security Adversary Game 1

  3. Security Security Adversary Game 1

  4. Security Security Adversary Game A's resources and advantage 1

  5. Proofs of Security Precision Simplicity 2

  6. Proofs of Security Asymptotic Proofs Precision Simplicity 2

  7. Proofs of Security Concrete Asymptotic Security Proofs Precision Simplicity 2

  8. Proofs of Security Concrete Asymptotic Security Proofs Bit Security Precision Simplicity 2

  9. Proofs of Security Concrete Asymptotic Security Proofs Bit Security Precision Simplicity A's resources A's advantage 2

  10. Adversarial Advantage 3

  11. Adversarial Advantage 1) Search game: 3

  12. Adversarial Advantage 1) Search game: 2) Decision game: 3

  13. Adversarial Advantage 1) Search game: A's resources constant A's advantage 2) Decision game: 3

  14. Adversarial Advantage 1) Search game: A's resources constant A's advantage 2) Decision game: A's resources not constant A's advantage 3

  15. Adversarial Advantage 1) Search game: A's resources constant A's advantage 2) Decision game: A's resources not constant A's advantage no bit secure PRG: 3

  16. Adversarial Advantage, contd. 4

  17. Adversarial Advantage, contd. [HILL'99] 4

  18. Adversarial Advantage, contd. [HILL'99] 4

  19. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  20. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  21. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  22. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  23. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  24. Adversarial Advantage, contd. [HILL'99] [GL'89,L'93] 4

  25. General De fi nition 5

  26. General De fi nition - unify search and decision games 5

  27. General De fi nition - unify search and decision games - characterize information gain of A 5

  28. General De fi nition - unify search and decision games - characterize information gain of A - specialize to search and decision games 5

  29. General De fi nition - unify search and decision games - characterize information gain of A - specialize to search and decision games "right" advantage: 5

  30. General De fi nition - unify search and decision games - characterize information gain of A - specialize to search and decision games "right" advantage: Search 5

  31. General De fi nition - unify search and decision games - characterize information gain of A - specialize to search and decision games "right" advantage: Search Decision 5

  32. Security Reductions: One-Way vs Pseudorandom OW PR 6

  33. Security Reductions: One-Way vs Pseudorandom OW PR 6

  34. Security Reductions: One-Way vs Pseudorandom bit secure OWF implies GL hardcore bit is bit pseudorandom [L'93] OW PR 6

  35. Security Reductions: One-Way vs Pseudorandom bit secure OWF implies GL hardcore bit is bit pseudorandom [L'93] OW PR 6

  36. Security Reductions: One-Way vs Pseudorandom bit secure OWF implies GL hardcore bit is bit pseudorandom [L'93] OW PR bit secure PRG is also bit secure OWF 6

  37. Security Reductions: Further Results 7

  38. Security Reductions: Further Results - Encryption: IND implies OW 7

  39. Security Reductions: Further Results - Encryption: IND implies OW - Hybrid Argument 7

  40. Security Reductions: Further Results - Encryption: IND implies OW - Hybrid Argument - Security for Approximate Samplers with Less Precision 7

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Theoretical Background on Cryptographic Primitives Bogdan Groza This material intends to be a

Theoretical Background on Cryptographic Primitives Bogdan Groza This material intends to be a

Theoretical Background on Cryptographic Primitives Bogdan Groza This material intends to be a brief introduction to symmetric and asymmetric cryptographic primitives, pointing out some relevant design principles and security properties.

532 views • 26 slides
Computer Aided Security : Cryptographic Primitives, Voting protocols, and Wireless Sensor

Computer Aided Security : Cryptographic Primitives, Voting protocols, and Wireless Sensor

Computer Aided Security: Cryptographic Primitives, Voting protocols, and Wireless Sensor Networks Computer Aided Security : Cryptographic Primitives, Voting protocols, and Wireless Sensor Networks Pascal Lafourcade November 6, 2012

624 views • 44 slides
Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

CS573 Data Privacy and Security Cryptographic Primitives and Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric Encryption Public Key Encryption Secure Multiparty Computation Problem and

779 views • 47 slides
Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction

Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction

Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction to cryptographic protocols communication (various security goals) Bruno Blanchet use cryptographic primitives (e.g. encryption, hash function,

451 views • 14 slides
Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness

Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness

Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness Extractors Story So Far Basic primitives for secure communication: Shared-Key Public-Key SKE PKE Encryption MAC

498 views • 17 slides
Key-Robustness for Cryptographic Primitives ie 1 R azvan Ros 1 ENS, CNRS, INRIA & PSL

Key-Robustness for Cryptographic Primitives ie 1 R azvan Ros 1 ENS, CNRS, INRIA & PSL

Key-Robustness for Cryptographic Primitives ie 1 R azvan Ros 1 ENS, CNRS, INRIA & PSL Research University, Paris, France ECRYPT-NET Summer School, Crete, Greece 12 th October 2017 R azvan Ros ie Key-Robustness for Cryptographic

949 views • 48 slides
Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef

Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef

Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef @vanhoefm USENIX WOOT, Baltimore, US, 14 August 2018 Overview Symbolic Execution 4-way handshake Handling Crypto Results 2 Overview Symbolic

446 views • 41 slides
Towards Standardization of Threshold Schemes for Cryptographic Primitives at NIST Lu s

Towards Standardization of Threshold Schemes for Cryptographic Primitives at NIST Lu s

Towards Standardization of Threshold Schemes for Cryptographic Primitives at NIST Lu s Brand ao Joint work with: Apostol Vassilev, Nicky Mouha, Michael Davidson The red dancing devil is from clker.com/clipart-13643.html National

2.04k views • 175 slides
Toward Criteria for Standardization of Multi-Party Threshold Schemes for Cryptographic Primitives

Toward Criteria for Standardization of Multi-Party Threshold Schemes for Cryptographic Primitives

Toward Criteria for Standardization of Multi-Party Threshold Schemes for Cryptographic Primitives Lus T. A. N. Brando* Cryptographic Technology Group National Institute of Standards and Technology (Gaithersburg, USA) Presentation on August

828 views • 63 slides
Verified Security Where are we and where should we go? Paul Vines Outline 1. Overview of

Verified Security Where are we and where should we go? Paul Vines Outline 1. Overview of

Verified Security Where are we and where should we go? Paul Vines Outline 1. Overview of Existing Security Verification Projects 2. Discussion 3. The State of Side-channels 4. Conclusion Current Works Cryptographic Primitives Protocols

239 views • 19 slides
Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems Benny Applebaum, David Cash, Chris Peikert, Amit Sahai Princeton University, Georgia Tech, SRI international, UCLA CRYPTO 2009 Learning Noisy Linear

352 views • 33 slides
Good Practices for Designing Cryptographic Primitives in Hardware Miroslav Kne evi NXP

Good Practices for Designing Cryptographic Primitives in Hardware Miroslav Kne evi NXP

Good Practices for Designing Cryptographic Primitives in Hardware Miroslav Kne evi NXP Semiconductors miroslav.knezevic@nxp.com January 25, 2016 School on Design for a Secure IoT, Tenerife, 2016 THINGS Smart Plugs 3. January 28, 2016

1.09k views • 86 slides
Open-Source FPGA Implementation of Post-Quantum Cryptographic Hardware Primitives Rashmi Agrawal

Open-Source FPGA Implementation of Post-Quantum Cryptographic Hardware Primitives Rashmi Agrawal

Open-Source FPGA Implementation of Post-Quantum Cryptographic Hardware Primitives Rashmi Agrawal , Bu Lake, Alan Ehret, and Michel Kinsy Adaptive & Secure Computing Systems Lab Department of Electrical & Computer Engineering Boston

964 views • 48 slides
NEW NUMBER-THEORETIC CRYPTOGRAPHIC PRIMITIVES ric Brier Houda Ferradi Marc Joye David

NEW NUMBER-THEORETIC CRYPTOGRAPHIC PRIMITIVES ric Brier Houda Ferradi Marc Joye David

Innovation Centre NEW NUMBER-THEORETIC CRYPTOGRAPHIC PRIMITIVES ric Brier Houda Ferradi Marc Joye David Naccache NutMiC 2019 Paris, June 2427, 2019 THE ZOOLOGICAL COLLECTION OF SIGNATURE SCHEMES (1) The oldest and most known

592 views • 28 slides
Constructions of feebly secure cryptographic primitives Olga Melanich Steklov Institute of

Constructions of feebly secure cryptographic primitives Olga Melanich Steklov Institute of

Constructions of feebly secure cryptographic primitives Olga Melanich Steklov Institute of Mathematics at St. Petersburg 3.10.2009 1 / 12 Basic definitions Notation B n , m = { f : B n B m } , where B = { 0 , 1 } . 2 / 12 Basic

605 views • 39 slides
CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools Cryptographic Tools Cryptographic algorithms important element in security services Review various types of elements symmetric encryption secure

1.27k views • 23 slides
Roeder Interactive Game loop Interactive Game Loop Core Mechanics Physics, AI, etc. Update()

Roeder Interactive Game loop Interactive Game Loop Core Mechanics Physics, AI, etc. Update()

Slides adapted from 4week course at Cornell by Tom Roeder Interactive Game loop Interactive Game Loop Core Mechanics Physics, AI, etc. Update() Input GamePad, mouse, Render changes keybard, other Draw() Update() Theoretically this is

771 views • 46 slides
Switchboard: A Matchmaking System for Multiplayer Mobile Games Justin Manweiler , Sharad Agarwal,

Switchboard: A Matchmaking System for Multiplayer Mobile Games Justin Manweiler , Sharad Agarwal,

Battling demons and vampires on your lunch break Switchboard: A Matchmaking System for Multiplayer Mobile Games Justin Manweiler , Sharad Agarwal, Ming Zhang, Romit Roy Choudhury, Paramvir Bahl ACM MobiSys 2011 Breakthrough of Mobile Gaming

339 views • 22 slides
Title: Adverserial Search AIMA: Chapter 5 (Sections 5.1, 5.2 and 5.3) Introduction to

Title: Adverserial Search AIMA: Chapter 5 (Sections 5.1, 5.2 and 5.3) Introduction to

B.Y. Choueiry Title: Adverserial Search AIMA: Chapter 5 (Sections 5.1, 5.2 and 5.3) Introduction to Artificial Intelligence 1 CSCE 476-876, Fall 2017 URL: www.cse.unl.edu/choueiry/F17-476-876 Berthe Y. Choueiry (Shu-we-ri)

378 views • 22 slides
2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today

2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today

1. Games with a Purpose 2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today Games with Purpose reCAPTCHA Citizen Science Duolingo Open Human Mind Computation Initiative Lab in the Wild

686 views • 46 slides
Double Your Contributors Using These 3 Simple Tricks! - or - Why Would Someone Work on Your

Double Your Contributors Using These 3 Simple Tricks! - or - Why Would Someone Work on Your

Double Your Contributors Using These 3 Simple Tricks! - or - Why Would Someone Work on Your Project? Eshed Shaham FOSDEM 2020 Game Idea Game Idea MMO Game Idea MMO Open world sandbox Game Idea MMO Open world sandbox

560 views • 38 slides
The Mathematics of Game Shows NCTM100 Edition Bowen Kerins @bowenkerins Senior Research

The Mathematics of Game Shows NCTM100 Edition Bowen Kerins @bowenkerins Senior Research

The Mathematics of Game Shows NCTM100 Edition Bowen Kerins @bowenkerins Senior Research Scientist, EDC (also an increasingly frequent game show consultant) bkerins@gmail.com PRIZES! Want to win? Well need some volunteers for games. You

765 views • 74 slides
Physical Design Automation for 3D Chip Stacks Challenges and Solutions Johann Knechtel Jens

Physical Design Automation for 3D Chip Stacks Challenges and Solutions Johann Knechtel Jens

Physical Design Automation for 3D Chip Stacks Challenges and Solutions Johann Knechtel Jens Lienig iMicro, Masdar Institute ifte, TU Dresden TwinLab 3D Stacked Chips Masdar Institute and TU Dresden ISPD 2016, April 4 Outline 1.

925 views • 26 slides
Killer Engine for Remixing Games Jesse Himmelstein

Killer Engine for Remixing Games Jesse Himmelstein

Killer Engine for Remixing Games Jesse Himmelstein CRI-Paris New game engine, with different goals Made for remixing games and mashups

755 views • 30 slides

More recommend