position based quantum cryptography
play

Position-Based Quantum Cryptography: Impossibility and Constructions - PowerPoint PPT Presentation

Jan 18, 2023 •266 likes •461 views

Position-Based Quantum Cryptography: Impossibility and Constructions Harry Buhrman, Christian Schaffner Serge Fehr Nishanth Chandran, Ran Gelles Rafail Ostrovsky Vipul Goyal CRYPTO 2011 http://arxiv.org/abs/1009.2490 Wednesday, August 17,

  1. Position-Based Quantum Cryptography: Impossibility and Constructions Harry Buhrman, Christian Schaffner Serge Fehr Nishanth Chandran, Ran Gelles Rafail Ostrovsky Vipul Goyal CRYPTO 2011 http://arxiv.org/abs/1009.2490 Wednesday, August 17, 2011

  2. 2 Position-Based Cryptography  Typically, cryptographic players use credentials such as  secret information  authenticated information  biometric features  can the geographical position of a player be used as its only credential?

  3. 3 Position-Based Tasks  examples of desirable primitives:  position-based secret communication (e.g. between military bases)  position-based authentication (i.e. person at specific location can authenticate messages)  position-based access control to resources

  4. 4 Basic task: Position Verification Verifier1 Prover Verifier2  Prover wants to convince verifiers that she is at a particular fixed position  assumptions:  communication at speed of light  instantaneous computation  verifiers can coordinate  no coalition of (fake) provers, i.e. not at the claimed position, can convince verifiers

  5. 5 Position Verification: Classical Scheme Verifier1 Prover Verifier2 time

  6. Impossibility of Classical Position Verification [Chandran Goyal Moriarty Ostrovsky : CRYPTO ‘09] 6 position verification is classically impossible !  using the same resources as the honest prover, colluding adversaries can reproduce a consistent view  computational assumptions do not help

  7. Position-Based Quantum Cryptography [Kent Munro Spiller 03/10, Chandran Fehr Gelles Goyal Ostrovsky, Malaney 10] 7 Verifier1 Prover Verifier2 ?  intuitively: security should follow from the quantum no cloning principle

  8. 8 Our Results  general no-go theorem: Position verification (and position-based encryption, authentication etc.) is impossible also in the quantum setting  limited possibility result: Position verification (and also encryption etc.) is possible in the quantum setting assuming that the adversaries hold no pre-shared entanglement.

  9. 9 Quick History of Position-Based Q Crypto  2003/2006: [Kent Munro Spiller, HP Labs]: quantum tagging  March 2010: [Malaney, arxiv]: quantum scheme for position verification, no formal proof  May 2010: [Chandran Fehr Gelles Goyal Ostrovsky, arxiv]: quantum scheme for position verification, rigorous proof, but implicitly assuming no-preshared entanglement  Aug 2010 / 2003: [Kent Munro Spiller, arxiv]: insecurity of proposed schemes, new (secure?) schemes  Sep 2010: [Lau Lo, arxiv ]: extension of Kent et al.’s attack, proposal of new (secure?) schemes

  10. 10 Quick History of Position-Based Q Crypto  May 2010: [Chandran Fehr Gelles Goyal Ostrovsky, arxiv]: quantum scheme for position verification, rigorous proof, but implicitly assuming no-preshared entanglement  Aug 2010 / 2003: [Kent Munro Spiller, arxiv]: insecurity of proposed schemes, new (secure?) schemes  Sep 2010: [Lau Lo, arxiv ]: extension of Kent et al.’s attack, proposal of new (secure?) schemes  Sep 2010: [this paper, arxiv]: impossibility of position-based quantum crypto  Jan 2011: [Beigi König, arxiv]: improvement of entanglement consumption  yesterday‘s Rump Session: the Garden-Hose Model

  11. 11 Quantum Teleportation [Bennett Brassard Crépeau Jozsa Peres Wootters 1993] ? [Bell] ? ?  does not contradict relativity theory  teleported state can only be recovered when the classical information ¾ arrives

  12. Position-Based QC: Teleportation Attack [Kent Munro Spiller 03/10, Lau Lo 10] 12

  13. 13 Instantaneous Non-Local Q Computation  attack on general position-verification scheme  clever way of back-and-forth teleportation, based on ideas by [Vaidman 03]  one simultaneous round of communication

  14. 14 Impossibility of Position-Based Q Crypto  attack works also against multi-round schemes  dishonest provers can perfectly simulate the honest prover’s actions

  15. 15 Position-Based Quantum Cryptography ?  Theorem : success probability of attack is at most 0.85 in the no-preshared entanglement (No-PE) model  use (sequential) repetition to amplify gap between honest and dishonest players

  16. 16 Position-Based Authentication and QKD  verifiers accept message only if sent from prover’s position  weak authentication of one-bit messages:  if message bit = 0 : perform Position Verification (PV)  if message bit = 1 : PV with prob 1-q, send ? otherwise  strong authentication by encoding message into balanced repetition-code (0  00…0011…1 , 1  11…1100…0 )  verifiers check statistics of ? and success of PV  using authentication scheme, verifiers can also perform position-based quantum key distribution

  17. 17 Summary Verifier1 Prover Verifier2  plain model: classically and quantumly impossible to use the prover’s location as his sole credential  basic scheme for secure positioning if adversaries have no pre-shared entanglement  more advanced schemes allow message authentication and key distribution  can be generalized to more dimensions

  18. 18 Open Questions Verifier1 Prover Verifier2  no-go theorem vs. secure schemes  how much entanglement is required to break the scheme? security in the bounded-quantum-storage model?  many interesting connections to entropic uncertainty relations, classical complexity theory (via the Garden-Hose Model), non-local games

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information

1.95k views • 154 slides
Quantum Cryptography Slides based in part on A talk on quantum cryptography or how Alice

Quantum Cryptography Slides based in part on A talk on quantum cryptography or how Alice

Quantum Cryptography Slides based in part on A talk on quantum cryptography or how Alice outwits Eve, by Samuel Lomonaco Jr. and Quantum Computing by Andr Bertiaume. The Classical World - Bits either 0 or 1. - Bits can be copied.

639 views • 11 slides
Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic

Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic

Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information (and generate

455 views • 19 slides
Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers can break public-key cryptography that is based on assuming hardness of factoring, discrete logs, and a few other problems I Post-quantum

2.98k views • 37 slides
An Overview on Post-Quantum Cryptography with an Emphasis on Code based Systems Joachim Rosenthal

An Overview on Post-Quantum Cryptography with an Emphasis on Code based Systems Joachim Rosenthal

Basics on Public Key Crypto Systems Research Directions in Post-Quantum Cryptography Variants of McEliece System Distinguisher Attacks McEliece for Rank Metric Codes An Overview on Post-Quantum Cryptography with an Emphasis on Code based

1.05k views • 100 slides
Quantum Cryptography Mris Ozols University of Cambridge Overview What are quantum

Quantum Cryptography Mris Ozols University of Cambridge Overview What are quantum

Quantum Cryptography Mris Ozols University of Cambridge Overview What are quantum computers? What is quantum cryptography? - Shor's algorithm for factoring - Quantum key distribution - Device-independent quantum cryptography What

630 views • 34 slides
Rings and Modules for Identity-Based Post-Quantum Public-Key Cryptography BASED ON THE PAPER

Rings and Modules for Identity-Based Post-Quantum Public-Key Cryptography BASED ON THE PAPER

Rings and Modules for Identity-Based Post-Quantum Public-Key Cryptography BASED ON THE PAPER EPRINT.IACR.ORG/2014/794 BY DUCAS, LYUBASHEVSKY, AND PREST 2016-09-21, Royal Holloway, Egham OFFICIAL Public Key Cryptography (PKC) Also called

403 views • 26 slides
Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

R. van der Gaag, D. Weller Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why think about post-quantum cryptography W. Buchanan et. al concluded Gate-based quantum computers pose a significant

349 views • 18 slides
Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU Eindhoven Nicolas Sendrier Linear Codes for Telecommunication linear expansion data codeword k n > k noisy channel noisy

783 views • 52 slides
Local Quantum Cryptography Mark Zhandry (Princeton & NTT Research)

Local Quantum Cryptography Mark Zhandry (Princeton & NTT Research)

Local Quantum Cryptography Mark Zhandry (Princeton & NTT Research) Based on joint work with Ryan Amos, Marios Georgiou, and Aggelos Kiayias Quantum Background Quantum Period

1.02k views • 66 slides
Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1

Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1

Mathematical Methods for Cryptography 2017, Svolvaer, Lofoten, Norway 1 / 41 Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1 Department of ECE, INMC, Seoul National University, Seoul, Korea 2 Chosun

565 views • 41 slides
Quantum Weirdness Part 6 Quantum Weirdness in Materials Quantum Cryptography Quantum

Quantum Weirdness Part 6 Quantum Weirdness in Materials Quantum Cryptography Quantum

Quantum Weirdness Part 6 Quantum Weirdness in Materials Quantum Cryptography Quantum Teleportation Quantum Snake Oil Quantum Weirdness in Materials Why Materials Behave as they do Combining Atoms Into Molecules Molecular Orbital Theory

1.17k views • 72 slides
Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU Eindhoven Nicolas Sendrier Linear Codes for Telecommunication linear expansion data codeword k n > k noisy channel noisy codeword

916 views • 74 slides
Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz

Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz

Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz Colloquium Informatics Institute, University of Amsterdam Quantum computers Quantum computers Accelerating effort to build a quantum computer Quantum

1.74k views • 115 slides
Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About Cryptographic Standards History of post-quantum cryptography 2003 Daniel J. Bernstein introduces term Post-quantum cryptography. PQCrypto 2006:

623 views • 23 slides
Cryptography in the Age of Quantum Computers Mark Zhandry MIT Based on joint works with:

Cryptography in the Age of Quantum Computers Mark Zhandry MIT Based on joint works with:

Cryptography in the Age of Quantum Computers Mark Zhandry MIT Based on joint works with: Dan Boneh, zgr Dagdelen, Marc Fischlin, Anja Lehmann, Christian Schaffner Typical Crypto Application m ! Solution: (Private Key) Encryption c ! c

865 views • 58 slides
Interfacing, and Tri-States 2 Signal Types Recall even digital signals are just voltages

Interfacing, and Tri-States 2 Signal Types Recall even digital signals are just voltages

1 EE 109 Unit 18 Noise Margins, Interfacing, and Tri-States 2 Signal Types Recall even digital signals are just voltages Analog signal Continuous time signal where each voltage level has a unique meaning Digital signal

651 views • 22 slides
Design and Analysis of LDPC for MIMO-OFDM Guosen Yue NEC Labs Research Princeton, NJ Joint work

Design and Analysis of LDPC for MIMO-OFDM Guosen Yue NEC Labs Research Princeton, NJ Joint work

Design and Analysis of LDPC for MIMO-OFDM Guosen Yue NEC Labs Research Princeton, NJ Joint work with Ben Lu Xiaodong Wang (Columbia Univ.) Outline LDPC coded MIMO OFDM Analysis & Optimization of (irregular) LDPC Coded MIMO OFDM

1.79k views • 16 slides
Time-Varying Variable-Length Error-Correcting Codes Victor Buttigieg Johann A. Briffa ISITA

Time-Varying Variable-Length Error-Correcting Codes Victor Buttigieg Johann A. Briffa ISITA

Time-Varying Variable-Length Error-Correcting Codes Victor Buttigieg Johann A. Briffa ISITA 2018, 31 October 2018, Singapore Department of Communications and Computer Engineering University of Malta Msida MSD 2080, Malta Outline

513 views • 27 slides
Bit Error Rate Test of DHPT 1.0 Gigabit Serial Link Leonard Germic , Carlos Marinas, Hans Krger

Bit Error Rate Test of DHPT 1.0 Gigabit Serial Link Leonard Germic , Carlos Marinas, Hans Krger

Bit Error Rate Test of DHPT 1.0 Gigabit Serial Link Leonard Germic , Carlos Marinas, Hans Krger and Norbert Wermes germic@physik.uni-bonn.de University of Bonn today, 2014 Content Gigabit Serial Link 1 Test Setup 2 Results 3

463 views • 13 slides
Privacy CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt,

Privacy CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt,

Privacy CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ March 31, 2010 Announcements Reminder:

740 views • 31 slides
Network Security Network Security Adolfo Rodriguez CPS 214 Telco/Internet Comparison

Network Security Network Security Adolfo Rodriguez CPS 214 Telco/Internet Comparison

Network Security Network Security Adolfo Rodriguez CPS 214 Telco/Internet Comparison Telco/Internet Comparison Internet Telephone System no central authority central authority end systems in control network in control

1.07k views • 59 slides
Password Cracking Sam Martin and Mark Tokutomi CS466/566: Computer Security April 22, 2012 Sam

Password Cracking Sam Martin and Mark Tokutomi CS466/566: Computer Security April 22, 2012 Sam

Introduction Lets Attack A Time-Memory Trade-Off The LanManager Hash Physical Attacks Password Cracking Sam Martin and Mark Tokutomi CS466/566: Computer Security April 22, 2012 Sam Martin and Mark Tokutomi Password Cracking

1.49k views • 76 slides
1 most of their time thinking about the fundamentals, to take a step back and look at the broader

1 most of their time thinking about the fundamentals, to take a step back and look at the broader

MITOCW | 1. Introduction The following content is provided under a Creative Commons license. Your support will help MIT OpenCourseWare continue to offer high quality educational resources for free. To make a donation or view additional materials

779 views • 32 slides

More recommend