randomness and its relevance to cryptology
play

Randomness and its relevance to Cryptology Rajeeva L. Karandikar - PowerPoint PPT Presentation

May 18, 2023 •249 likes •596 views

Randomness and its relevance to Cryptology Rajeeva L. Karandikar Director Chennai Mathematical Institute rlk@cmi.ac.in rkarandikar@gmail.com Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to

  1. Randomness and its relevance to Cryptology Rajeeva L. Karandikar Director Chennai Mathematical Institute rlk@cmi.ac.in rkarandikar@gmail.com Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 1

  2. One way to understand the role of Randomness in Cryptology is to view Cryptology as a Game - a Game between the algorithm designer and the hacker. Like in any game, both want to win. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 2

  3. Now Let us think about the game of Cricket. Suppose there is a new bowler, who is extremely good: He can bowl each ball to be at Yorker length, and if left alone by batsman, it will hit middle stump right in the middle. What do you think will happen in his first match? Lots of wickets as anytime aa batsman misses, it will hit stumps. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 3

  4. But then soon batsman would figure out and would happily hit every blowl for a six ! And if the bastman was one of say Kapil Dev, Shrikant, Sachin, Ganguly, Dravid, Sehwag, Dhoni, Rohit Sharma, Kohli, he could close his eyes and hit everyball for a six. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 4

  5. A bowler will be successful in the long run if he can bring in a lot of variation in his bowling... Variation means that a batsman facing him cannot easily guess the trajectory of the ball, in other words to the batsman, it would appear to be Random. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 5

  6. Cryptology and World War II Most of you would have heard or read about Enigma cipher and its breaking by a team based in Bletchley Park in Buckinghamshire and its impact on World War II. The team that broke the code included Linguists and Mathematicians including Alan Turing. It is believed that breaking Enigma had a big impact on the course of the WWII. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 6

  7. Cryptology and World War I It is less well known that an encrypted telegram sent by German Foreign Secretary Arthur Zimmermann to the German Ambassador Johann von Bernstorff in Washington also had an impact on WWI. The telegram was intended for German Ambassador Heinrich von Eckardt in Mexico City seeking an alliance with Mexico against United States. The encrypted telegram was intercepted by the British. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 7

  8. Zimmermann Telegram Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 8

  9. Cryptology and World War I The telegram has been termed as the Zimmermann telegram. The encrypted telegram was broken by Room 40 , the Admiralty’s cipher bureau, named after the office in which it was initially housed. The team in Room 40 consisted of linguists, classical scholars and crossword addicts. The decoded message was passed onto United States by the British. This played a major role in USA’s decision to enter the WWI against Germany. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 9

  10. Cryptology and World War It seems that in the World War I era, the cipher bureau in Room 40 did not have mathematicians. By the time of World War II, the team had been expanded to include Mathematicians. Let us examine possible reasons behind this. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 10

  11. Examples of Ciphers A substitution cipher: one could construct a permutation of 26 characers by say add 7 and multiply by 9 modulo 26. In this case 7 and 9 will need to be shared by the sender and receiver. The information needed to be shared is called a Key . In such cases, the linguists together with crossword enthusiasts can take a crack at breaking the code as was the case at Room 40 during WWI Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 11

  12. Substitution ciphers.... One could use a more complicated permutation, but then encrypting a message and decrypting a message would become more tedious if we were to do these by hand. This is where rotary machines came in and by WWII they were being used to encrypt and decrypt. In some cases, a copy of the machine used was stolen or details revealed to the adversary by a spy and so the algorithm was known and problem was to guess or find the secret key. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 12

  13. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 13

  14. Substitution ciphers.... The secret key was used by setting the initial positions of the rotating wheels. Once the type of machine being used was known, mathematical analysis of the possibilities became possible and this explains the reason that by the time of WWII the team at Room 40 was expanded to include mathematicians- a move that paid rich dividends. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 14

  15. Substitution ciphers In a few decades after WWII, usage of computers became common and if the WWII era algorithms were still used in say the 80’s, it would have been possible to break the code easily using power of a workstation. But if the hackers could use computers, so could the sender and receiver and thus use more complex algorithms. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 15

  16. Absence of patterns Now instead of the alphabet for the message being A , B , C , . . . ... , the alphabet is just { 0 , 1 } and every message is coded as a string of 0’s and 1’s, i.e. as Binary string as it is stored on computer hard disc. When the messages were a string of alphabets, linguists had a role - in looking for patterns. If the encrypted message could be differentiated from pure gibberish that would give a starting point for cryptanalysis. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 16

  17. Absence of patterns... Randomness When message as well as encrypted message is a long string of 0’s and 1’s, role of linguists has been reduced to deciding if a given text is meaningful text in the language or not. Now finding a pattern in a string of 0’s and 1’s can be thought of as follows: Can the given string be differentiated from results of a fair coin toss: with say head recorded as 1 and tail recorded as 0. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 17

  18. Absence of patterns... Randomness Thus one necessary condition that emerges is that the output of an encryption algorithm should appear to be a random bit stream i.e. it should be indistinguishable from output of a random bit stream. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 18

  19. Test for Randomness This leads us to the question: Consider the Null Hpothesis H 0 : X 1 , X 2 , . . . , X N are i.i.d with P ( X i = 1) = P ( X i = 0) = 0 . 5 . The alternative hypothesis H 1 is just the negation of H 0 . What statistical test should be used to test the hypothesis? Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 19

  20. Test for Randomness Analysis of Crypto algorithms is made assuming that the adversary knows the algorithm and the strength of the algorithm is in the secrecy of the key- This also means that the adversary can analyze the algorithm by trying various keys and hence can generate large encrypted texts to see patterns - if any, i.e. departures form randomness if any. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 20

  21. Test for Randomness The standard test based on CLT is good and detects departure from the null hypothesis if P ( X i = 1) = p and P ( X i = 0) = 1 − p with p � = 0 . 5. However, if X 1 , X 2 , . . . X N are not independent but { X n } is a stationary process such that P ( X i = 1) = P ( X i = 0) = 0 . 5 then the power of the CLT based test is not high, because CLT holds under much more general conditions than i.i.d. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 21

  22. Test for Randomness Given that we can observe X 1 , X 2 , . . . , X N for large N , a test called Maurer’s universal test seems to be good for this purpose. Let the observed values be written as a bitstream B of length N . The test has a parameter L . We describe below the test statistic τ ( B ) with L = 8. Rajeeva L. Karandikar Chennai Mathematical Institute Notion of Randomness and its relevance to Cryptology - 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Topic of this talk Topic of this talk From E- -Relevance Relevance From E to W- -Relevance

Topic of this talk Topic of this talk From E- -Relevance Relevance From E to W- -Relevance

Topic of this talk Topic of this talk From E- -Relevance Relevance From E to W- -Relevance Relevance to W What is relevance in Mobile Personal Information Retrieval? P. Coppola, V. Della Mea, L. Di Gaspero, S. Mizzaro What is

65 views • 6 slides
Cryptology Cryptology = Cryptography + Cryptanalysis Usage: SSL/TLS, ssh, gpg GSM, Wifi,

Cryptology Cryptology = Cryptography + Cryptanalysis Usage: SSL/TLS, ssh, gpg GSM, Wifi,

An introduction to Cryptology 1 2015/03/ EMA, Franceville, Gabon Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathmatiques de Bordeaux quipe MACISA, Laboratoire International de Recherche en Informatique et

809 views • 61 slides
Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology

Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology

Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology Encryption Secure hash Security and cryptology Information security = crypto? A significant art by

422 views • 7 slides
Firmware Insider Bluetooth Randomness is Mostly Random RANDOMNESS IS MY PASSION Jrn

Firmware Insider Bluetooth Randomness is Mostly Random RANDOMNESS IS MY PASSION Jrn

Firmware Insider Bluetooth Randomness is Mostly Random RANDOMNESS IS MY PASSION Jrn Tillmanns, Jiska Classen, Felix Rohrbach, Matthias Hollick Technische Universitt Darmstadt, Germany ??? 2 How to acquire randomness? A: 42 B: Random

562 views • 32 slides
Lecture 19 Randomness, Pseudo Randomness, and Confidentiality Stephen Checkoway University

Lecture 19 Randomness, Pseudo Randomness, and Confidentiality Stephen Checkoway University

Lecture 19 Randomness, Pseudo Randomness, and Confidentiality Stephen Checkoway University of Illinois at Chicago CS 487 Fall 2017 Slides from Miller and Baileys ECE 422 Randomness and Pseudorandomness Review Problem:

1.69k views • 33 slides
Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda

Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda

Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda Randomness in Private Key Generation Randomness in Election (fraud) Randomness in Coin Flipping What is random? Chosen without method

693 views • 35 slides
Randomness and analysis: a tutorial Part I: Randomness notions and almost everywhere theorems

Randomness and analysis: a tutorial Part I: Randomness notions and almost everywhere theorems

Randomness and analysis: a tutorial Part I: Randomness notions and almost everywhere theorems Andr e Nies CCC 2015, Kochel am See 1/1 Di ff erentiability Di ff erentiability of a function f at a real z means that the rate of change

1.19k views • 108 slides
15-251 Great Theoretical Ideas in Computer Science Lecture 21: Introduction to Randomness and

15-251 Great Theoretical Ideas in Computer Science Lecture 21: Introduction to Randomness and

15-251 Great Theoretical Ideas in Computer Science Lecture 21: Introduction to Randomness and Probability Theory Review April 4th, 2017 Randomness and the Universe Randomness and the Universe Does the universe have true randomness?

693 views • 52 slides
Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY

Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY

1 Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY Learning outcomes After this lecture the student should undertand what cryptology is and how it is used, be familiar with the crypto

307 views • 18 slides
Randomness in Computing L ECTURE 1 Randomness in Computing Course information Verifying

Randomness in Computing L ECTURE 1 Randomness in Computing Course information Verifying

Randomness in Computing L ECTURE 1 Randomness in Computing Course information Verifying polynomial identities Probability Amplification Probability Review Sofya Raskhodnikova 1/21/2020 Sofya Raskhodnikova;Randomness in Computing

348 views • 21 slides
Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is

Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is

Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is Cryptology? The art and science of secret writing What this talk could be: ------------------------------------

959 views • 59 slides
Counting Words: Non- Randomness Pre-Processing and Non-Randomness The End Marco Baroni &

Counting Words: Non- Randomness Pre-Processing and Non-Randomness The End Marco Baroni &

Pre-processing and non-randomness Baroni & Evert Pre-Processing Counting Words: Non- Randomness Pre-Processing and Non-Randomness The End Marco Baroni & Stefan Evert M alaga, 11 August 2006 Outline Pre-processing and

879 views • 55 slides
Physical Randomness Extractors Kai-Min Chung Academia Sinica, Taiwan Xiaodi Wu Yaoyun Shi

Physical Randomness Extractors Kai-Min Chung Academia Sinica, Taiwan Xiaodi Wu Yaoyun Shi

Physical Randomness Extractors Kai-Min Chung Academia Sinica, Taiwan Xiaodi Wu Yaoyun Shi MIT/UC Berkeley University of Michigan Presented in QIP14 as plenary talk (joint with [MS14]) 1 Randomness Randomness is a vital resource

391 views • 17 slides
Algorithmic randomness Cuny logic worshop Benoit Monin - LACL - Universit e Paris-Est Cr

Algorithmic randomness Cuny logic worshop Benoit Monin - LACL - Universit e Paris-Est Cr

Algorithmic randomness Beyond arithmetic Higher randomness ITTM and randomness Algorithmic randomness Cuny logic worshop Benoit Monin - LACL - Universit e Paris-Est Cr eteil 5 May 2017 Algorithmic randomness Beyond arithmetic Higher

771 views • 64 slides
Randomness in C 2 and Pluripotential Theory Randomness in C 2 and Pluripotential Theory Outline 1

Randomness in C 2 and Pluripotential Theory Randomness in C 2 and Pluripotential Theory Outline 1

Randomness in C 2 and Pluripotential Theory Randomness in C 2 and Pluripotential Theory Outline 1 Zeros of univariate random polynomials p : C C and potential theory; recent results of Bloom-Dauvergne 2 Random polynomials p : C 2 C and

585 views • 42 slides
Randomness Dependent Randomness Dependent Message Security g y Eleanor Birrell Kai

Randomness Dependent Randomness Dependent Message Security g y Eleanor Birrell Kai

Randomness Dependent Randomness Dependent Message Security g y Eleanor Birrell Kai Min Chung Rafael Pass Sidharth Telang Public key Encryption Public key Encryption Goal: l (pk,sk) Gen c = Enc(pk,m) E ( k ) Dec(sk,c) = m

638 views • 40 slides
PROCESS IN Y O U B E T H E ACTION C O M P L A I N T I N V E S T I G A T O R 2 D E C E M B E

PROCESS IN Y O U B E T H E ACTION C O M P L A I N T I N V E S T I G A T O R 2 D E C E M B E

THE COMPL AINT PROCESS IN Y O U B E T H E ACTION C O M P L A I N T I N V E S T I G A T O R 2 D E C E M B E R 2 0 1 6 F A I R M O N T H OT E L , VA N C O U V E R V D D S M I D W I N T E R C L I N I C P R E S E N T E R S : D R . C H R

940 views • 45 slides
ombudsman model Dr Chris Gill, Lecturer in Public Law, University of Glasgow Presentation to the

ombudsman model Dr Chris Gill, Lecturer in Public Law, University of Glasgow Presentation to the

The Scottish ombudsman model Dr Chris Gill, Lecturer in Public Law, University of Glasgow Presentation to the Administrative Justice Council, 31 January 2020, Edinburgh. Today Three distinctive features of the Scottish model: One-stop-shop

607 views • 11 slides
Minutes of the CAS Faculty Senate Meeting of October 19, 2020 4:00-5:08 PM Attending: Lydia

Minutes of the CAS Faculty Senate Meeting of October 19, 2020 4:00-5:08 PM Attending: Lydia

Minutes of the CAS Faculty Senate Meeting of October 19, 2020 4:00-5:08 PM Attending: Lydia Timmins, Bernard McKenna, Peter Feng, Alan Fox, Thomas Rocek, Jenny Lobasz, John Pelesko, Kimberly Clark, Jennifer Barker, Jenn Trivedi, Kimberly

462 views • 17 slides
POTOMAC YARD CIVIC ASSOCIATION COMMUNITY MEETING August 12, 2019 Agenda Guest Speakers

POTOMAC YARD CIVIC ASSOCIATION COMMUNITY MEETING August 12, 2019 Agenda Guest Speakers

POTOMAC YARD CIVIC ASSOCIATION COMMUNITY MEETING August 12, 2019 Agenda Guest Speakers Alexandria Police and Sheriff Alexandria Fire Fighters, Inc. Local 2141 City of Alexandria Potomac Yard Civic Association Other City

445 views • 12 slides
Engagement with Cyclists Accident Statistics Pedestrian Pedestrian Cyclist Cyclist Year

Engagement with Cyclists Accident Statistics Pedestrian Pedestrian Cyclist Cyclist Year

Engagement with Cyclists Accident Statistics Pedestrian Pedestrian Cyclist Cyclist Year Total Accidents Accidents 2012 948 410 1,358 2013 781 371 1,152 LOOK Markings at Zebra Crossings New Give Way to Pedestrians Sign

357 views • 15 slides
Requirements for Signaling of (Pre-) Congestion Information DiffServ Domain

Requirements for Signaling of (Pre-) Congestion Information DiffServ Domain

Requirements for Signaling of (Pre-) Congestion Information DiffServ Domain draft-karagiannis-pcn-signaling-requirements-00 Georgios Karagiannis, Tom Taylor, Kwok Chan, Michael Menth Outline Goal of draft Requirements for signaling

153 views • 12 slides
Focus on Advancement John C. Jeffries Jr. and Mark M. Luellen Philanthropic Cash Flow (new cash

Focus on Advancement John C. Jeffries Jr. and Mark M. Luellen Philanthropic Cash Flow (new cash

Focus on Advancement John C. Jeffries Jr. and Mark M. Luellen Philanthropic Cash Flow (new cash gifts, pledge payments, irrevocable deferred gifts) $400 Ten-year average = $246.7 M FY19 = +45% $358.9 $350 $294.5 $300 $283.4 $260.2

484 views • 3 slides
ACCT 420: Machine Learning and AI Session 9 Dr. Richard M. Crowley 1 Front matter 2 . 1

ACCT 420: Machine Learning and AI Session 9 Dr. Richard M. Crowley 1 Front matter 2 . 1

ACCT 420: Machine Learning and AI Session 9 Dr. Richard M. Crowley 1 Front matter 2 . 1 Learning objectives Theory: Ensembling Ethics Application: Varied Methodology: Any 2 . 2 Ensembles 3 . 1 What are

700 views • 46 slides

More recommend