Security, Probability and Nearly Fair Coins in the Cryptographers’ Café

McIver, Annabelle; Meinicke, Larissa; Morgan, Carroll

doi:10.1007/978-3-642-05089-3_5

Cited by 5 publications

(5 citation statements)

References 49 publications

(81 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Proof: The equivalence of the first and second formulations is straightforward; 20 we prove the second, reasoning…”

Section: Completenessmentioning

confidence: 89%

“…All of them however used our qualitative model for compositional noninterference [27,23]; here of course we are using instead a quantitative model. 20 First implies second:…”

Section: Case Study: the Three Judges Protocolmentioning

confidence: 99%

“…All of them however used our qualitative model for compositional noninterference [27,23]; here of course we are using instead a quantitative model. 20 First implies second: The example is as follows. Three judges A, B, C are to give a majority decision, innocent or guilty, by exchanging messages but concealing their individual votes a, b and c, respectively.…”

Section: Case Study: the Three Judges Protocolmentioning

confidence: 99%

“…Both require a careful distinction between what data can be observed and what data must be protected; by observing that distinction in the definition of abstraction, we allow the tractable analysis of properties which rely on "secrecy" (on the one hand) or "probabilistic local state" (on the other). This unified semantic foundation opens up the possibility for a uniform approach to the specification of security properties, along with other safety-critical features, during system design [20].…”

Section: Fig 3 Three-judges Protocol In Elementary Termsmentioning

confidence: 99%

See 3 more Smart Citations

Compositional Closure for Bayes Risk in Probabilistic Noninterference

McIver

Meinicke

Morgan

2010

Automata, Languages and Programming

Self Cite

View full text Add to dashboard Cite

We give a sequential model for noninterference security including probability (but not demonic choice), thus supporting reasoning about the likelihood that high-security values might be revealed by observations of low-security activity. Our novel methodological contribution is the definition of a refinement order ( ) and its use to compare security measures between specifications and (their supposed) implementations. This contrasts with the more common practice of evaluating the security of individual programs in isolation.The appropriateness of our model and order is supported by our showing that ( ) is the greatest compositional relation -the compositional closure-with respect to our semantics and an "elementary" order based on Bayes Risk -a security measure already in widespread use. We also relate refinement to other measures such as Shannon Entropy.By applying the approach to a non-trivial example, the anonymousmajority Three-Judges protocol, we demonstrate by example that correctness arguments can be simplified by the sort of layered developments -through levels of increasing detail-that are allowed and encouraged by compositional semantics.We acknowledge the support of the Australian Research Council Grant DP0879529.

show abstract

“…Proof: The equivalence of the first and second formulations is straightforward; 20 we prove the second, reasoning…”

Section: Completenessmentioning

confidence: 89%

“…All of them however used our qualitative model for compositional noninterference [27,23]; here of course we are using instead a quantitative model. 20 First implies second:…”

Section: Case Study: the Three Judges Protocolmentioning

confidence: 99%

Section: Case Study: the Three Judges Protocolmentioning

confidence: 99%

Section: Fig 3 Three-judges Protocol In Elementary Termsmentioning

confidence: 99%

See 2 more Smart Citations

Compositional Closure for Bayes Risk in Probabilistic Noninterference

McIver

Meinicke

Morgan

2010

Automata, Languages and Programming

Self Cite

View full text Add to dashboard Cite

show abstract

“…We note that our model intentionally does not consider the overwriting of secret variables to be the cause of an information leak. More recent work by McIver et al [15] develops the model further. Askarov & Sabelfield's [16] information leakage model allows for the safe public disclosure of previously-secret values during program execution, but is qualitative rather than quantitative.…”

Section: A Related Workmentioning

confidence: 99%

Probabilistic Point-to-Point Information Leakage

Chothia

Kawamoto

Novakovic

et al. 2013

2013 IEEE 26th Computer Security Foundations Symposium

View full text Add to dashboard Cite

Abstract-The outputs of a program that processes secret data may reveal information about the values of these secrets. This paper develops an information leakage model that can measure the leakage between arbitrary points in a probabilistic program. Our aim is to create a model of information leakage that makes it convenient to measure specific leaks, and provide a tool that may be used to investigate a program's information security. To make our leakage model precise, we base our work on a simple probabilistic, imperative language in which secret values may be specified at any point in the program; other points in the program may then be marked as potential sites of information leakage. We extend our leakage model to address both nonterminating programs (with potentially infinite numbers of secret and observable values) and user input. Finally, we show how statistical approximation techniques can be used to estimate our leakage measure in real-world Java programs.

show abstract

A UTP approach towards probabilistic protocol verification

Bresciani

Butterfield

2012

Security Comm. Networks

View full text Add to dashboard Cite

Security, Probability and Nearly Fair Coins in the Cryptographers’ Café

Cited by 5 publications

References 49 publications

Compositional Closure for Bayes Risk in Probabilistic Noninterference

Compositional Closure for Bayes Risk in Probabilistic Noninterference

Probabilistic Point-to-Point Information Leakage

A UTP approach towards probabilistic protocol verification

Contact Info

Product

Resources

About