broadcast encryption and some other primitives
play

Broadcast Encryption and Some Other Primitives Lecture 24 - PowerPoint PPT Presentation

Feb 19, 2023 •480 likes •1.62k views

Broadcast Encryption and Some Other Primitives Lecture 24 Broadcast Encryption Broadcast Encryption Encrypt to a subset of users in the system Broadcast Encryption Encrypt to a subset of users in the system e.g., subscribers who haven t

  1. Subtree Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n} For each node u, define set X u as the set of leaves of the subtree rooted at u Can find O(r log n) sets X u that cover any set S with at most r missing (revoked) leaves [How?] Each user appears in O(log n) sets

  2. Subtree-Difference Covers

  3. Subtree-Difference Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n}

  4. Subtree-Difference Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n} For each pair of nodes (u,v), with v being a descendent of u, define set X uv as the set of leaves of the subtree rooted at u that are not in the subtree rooted at v

  5. Subtree-Difference Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n} For each pair of nodes (u,v), with v being a descendent of u, define set X uv as the set of leaves of the subtree rooted at u that are not in the subtree rooted at v Can find 2r-1 sets X u that cover any set S with r missing (revoked) leaves [How?]

  6. Subtree-Difference Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n} For each pair of nodes (u,v), with v being a descendent of u, define set X uv as the set of leaves of the subtree rooted at u that are not in the subtree rooted at v Can find 2r-1 sets X u that cover any set S with r missing (revoked) leaves [How?] Each user appears in O(n) sets

  7. Subtree-Difference Covers Define a balanced binary tree with leaves corresponding to the set of users {1,..,n} For each pair of nodes (u,v), with v being a descendent of u, define set X uv as the set of leaves of the subtree rooted at u that are not in the subtree rooted at v Can find 2r-1 sets X u that cover any set S with r missing (revoked) leaves [How?] Each user appears in O(n) sets But can use PRG to derive keys so that each user hold only O(log 2 n) different keys

  8. Subtree-Difference Covers

  9. Subtree-Difference Covers Pick random meta-keys M u,u for each node, which is used to derive, for each v, the key K uv for set X uv

  10. Subtree-Difference Covers Pick random meta-keys M u,u for each node, which is used to derive, for each v, the key K uv for set X uv Derive keys recursively using a PRF (or a length-tripling PRG): M u,v0 = F Mu,v (0), M u,v1 = F Mu,v (1) and K u,v = F Mu,v (2) (where v0 and v1 are the children of v)

  11. Subtree-Difference Covers Pick random meta-keys M u,u for each node, which is used to derive, for each v, the key K uv for set X uv Derive keys recursively using a PRF (or a length-tripling PRG): M u,v0 = F Mu,v (0), M u,v1 = F Mu,v (1) and K u,v = F Mu,v (2) (where v0 and v1 are the children of v) Deliver to a party at leaf w, for each ancestor u, log n keys: for each node v’ on the path u-w, let v be the sibling of v’; give M u,v . O(log 2 n) keys in all for each party.

  12. Subtree-Difference Covers Pick random meta-keys M u,u for each node, which is used to derive, for each v, the key K uv for set X uv Derive keys recursively using a PRF (or a length-tripling PRG): M u,v0 = F Mu,v (0), M u,v1 = F Mu,v (1) and K u,v = F Mu,v (2) (where v0 and v1 are the children of v) Deliver to a party at leaf w, for each ancestor u, log n keys: for each node v’ on the path u-w, let v be the sibling of v’; give M u,v . O(log 2 n) keys in all for each party. If X uu’ covers a party at leaf w, it can derive K uu’ : Let v be the highest ancestor of u’ for which w is not a descendent (i.e., v’ s sibling is on the u-w path). Use M u,v to derive K uu’ .

  13. Using Secret-Sharing

  14. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00]

  15. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption)

  16. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i

  17. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i To revoke a set of r users (including some dummy users, if necessary), broadcast their shares, and encrypt the message using the key K

  18. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i To revoke a set of r users (including some dummy users, if necessary), broadcast their shares, and encrypt the message using the key K Only parties not in the revoked set can reconstruct K

  19. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i To revoke a set of r users (including some dummy users, if necessary), broadcast their shares, and encrypt the message using the key K Only parties not in the revoked set can reconstruct K Many-times revocation scheme (secure under DDH)

  20. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i To revoke a set of r users (including some dummy users, if necessary), broadcast their shares, and encrypt the message using the key K Only parties not in the revoked set can reconstruct K Many-times revocation scheme (secure under DDH) Broadcast g x , Mg Kx , and g Ki.x for each i being revoked. Each non-revoked party can reconstruct g Kx (but not K, or g K )

  21. Using Secret-Sharing A secret-sharing based scheme [Naor-Pinkas’00] One-time revocation scheme (using any CPA-secure encryption) Share a key K using an (r+1) out of n secret-sharing. Give the share K i to user i To revoke a set of r users (including some dummy users, if necessary), broadcast their shares, and encrypt the message using the key K Only parties not in the revoked set can reconstruct K Many-times revocation scheme (secure under DDH) Broadcast g x , Mg Kx , and g Ki.x for each i being revoked. Each non-revoked party can reconstruct g Kx (but not K, or g K ) Ciphertext size proportional to the size of the set being revoked

  22. Using Bilinear Pairings

  23. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05]

  24. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05] Public parameters: e(g,g) z , u 1 ,...,u n for n users

  25. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05] Public parameters: e(g,g) z , u 1 ,...,u n for n users Secret Key for user i: R i := g ri , u jri for j ≠ i, and K i := g z u iri

  26. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05] Public parameters: e(g,g) z , u 1 ,...,u n for n users Secret Key for user i: R i := g ri , u jri for j ≠ i, and K i := g z u iri Encrypt PK,S (M;x) := (g x , M e(g,g) zx , H(S) x ) where S is the set of users allowed to decrypt, x is randomly chosen, and H(S) := Π j ∈ S u j

  27. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05] Public parameters: e(g,g) z , u 1 ,...,u n for n users Secret Key for user i: R i := g ri , u jri for j ≠ i, and K i := g z u iri Encrypt PK,S (M;x) := (g x , M e(g,g) zx , H(S) x ) where S is the set of users allowed to decrypt, x is randomly chosen, and H(S) := Π j ∈ S u j Decryption (by i ∈ S): From e(g x , Π j ∈ S\{i} u jri ) / e(R i ,H(S) x ) = e(g,u i ) -ri.x and e(g x ,K i ) = e(g,g) zx e(g,u i ) ri.x , get e(g,g) zx and hence M

  28. Using Bilinear Pairings A public-key scheme, with short ciphertexts, supporting arbitrary set sizes [Boneh-Gentry-Waters’05] Public parameters: e(g,g) z , u 1 ,...,u n for n users Secret Key for user i: R i := g ri , u jri for j ≠ i, and K i := g z u iri Encrypt PK,S (M;x) := (g x , M e(g,g) zx , H(S) x ) where S is the set of users allowed to decrypt, x is randomly chosen, and H(S) := Π j ∈ S u j Decryption (by i ∈ S): From e(g x , Π j ∈ S\{i} u jri ) / e(R i ,H(S) x ) = e(g,u i ) -ri.x and e(g x ,K i ) = e(g,g) zx e(g,u i ) ri.x , get e(g,g) zx and hence M Security relies on an indistinguishability assumption involving O(n) group elements (cf. DDH has 3 group elements)

  29. Traitor Tracing

  30. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption

  31. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user

  32. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user Using black-box access to the pirated device/code

  33. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user Using black-box access to the pirated device/code Device may output only if message “interesting” (hence cannot trace if the device is interested only in a hard to guess subset of the message space)

  34. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user Using black-box access to the pirated device/code Device may output only if message “interesting” (hence cannot trace if the device is interested only in a hard to guess subset of the message space) Will assume stateless decoder

  35. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user Using black-box access to the pirated device/code Device may output only if message “interesting” (hence cannot trace if the device is interested only in a hard to guess subset of the message space) Will assume stateless decoder Can use “robust watermarks” to handle stateful decoders

  36. Traitor Tracing A legitimate user (paid subscriber) may sell pirated devices/ software for decryption To detect such a user Using black-box access to the pirated device/code Device may output only if message “interesting” (hence cannot trace if the device is interested only in a hard to guess subset of the message space) Will assume stateless decoder Can use “robust watermarks” to handle stateful decoders Useful for broadcast encryption, but also considered independently

  37. Traitor Tracing

  38. Traitor Tracing A proof-of-concept scheme (with a long ciphertext)

  39. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) )

  40. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) ) Trace D : Feed D encryptions of the form ( E PK1 (0),...,E PKi-1 (0), E PKi (M), ... E PKn (M) ). Let p i be the probability of D outputting M

  41. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) ) Trace D : Feed D encryptions of the form ( E PK1 (0),...,E PKi-1 (0), E PKi (M), ... E PKn (M) ). Let p i be the probability of D outputting M Determine p i empirically: relies on sampling “interesting” M

  42. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) ) Trace D : Feed D encryptions of the form ( E PK1 (0),...,E PKi-1 (0), E PKi (M), ... E PKn (M) ). Let p i be the probability of D outputting M Determine p i empirically: relies on sampling “interesting” M If p i - p i-1 is large for some i, implicate PK i

  43. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) ) Trace D : Feed D encryptions of the form ( E PK1 (0),...,E PKi-1 (0), E PKi (M), ... E PKn (M) ). Let p i be the probability of D outputting M Determine p i empirically: relies on sampling “interesting” M If p i - p i-1 is large for some i, implicate PK i Note: D may have multiple keys, and may check consistency of decryptions before outputting a message

  44. Traitor Tracing A proof-of-concept scheme (with a long ciphertext) Encrypt(M) = ( E PK1 (M),...,E PKn (M) ) Trace D : Feed D encryptions of the form ( E PK1 (0),...,E PKi-1 (0), E PKi (M), ... E PKn (M) ). Let p i be the probability of D outputting M Determine p i empirically: relies on sampling “interesting” M If p i - p i-1 is large for some i, implicate PK i Note: D may have multiple keys, and may check consistency of decryptions before outputting a message Use with subset cover based broadcast encryption? Can be used for “subset tracing”, but not satisfactory if D decrypts only when, say, the subset that will be traced is large

  45. Traitor Tracing

  46. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals

  47. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals For intervals: Allows broadcasting to sets of the form {i,i+1,...,n}

  48. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals For intervals: Allows broadcasting to sets of the form {i,i+1,...,n} Set to which the encryption is addressed is hidden (i.e., i is hidden), except as revealed by decrypting using the keys possessed by the adversary

  49. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals For intervals: Allows broadcasting to sets of the form {i,i+1,...,n} Set to which the encryption is addressed is hidden (i.e., i is hidden), except as revealed by decrypting using the keys possessed by the adversary In particular, encryption to {i,..,n} and {i+1,...,n} distinguishable only if adversary gets key for user i

  50. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals For intervals: Allows broadcasting to sets of the form {i,i+1,...,n} Set to which the encryption is addressed is hidden (i.e., i is hidden), except as revealed by decrypting using the keys possessed by the adversary In particular, encryption to {i,..,n} and {i+1,...,n} distinguishable only if adversary gets key for user i In the traitor-tracing scheme, encryption will use the broadcast encryption with i=1 (i.e., for the entire set of users) and tracing algorithm will use encryptions to all intervals

  51. Traitor Tracing Traitor tracing from “Set-hiding Broadcast Encryption” for intervals For intervals: Allows broadcasting to sets of the form {i,i+1,...,n} Set to which the encryption is addressed is hidden (i.e., i is hidden), except as revealed by decrypting using the keys possessed by the adversary In particular, encryption to {i,..,n} and {i+1,...,n} distinguishable only if adversary gets key for user i In the traitor-tracing scheme, encryption will use the broadcast encryption with i=1 (i.e., for the entire set of users) and tracing algorithm will use encryptions to all intervals Scheme with O( √ n) ciphertext, using bilinear pairing [BSW’06]

  52. Group Key Assignment

  53. Group Key Assignment A.k.a key distribution for dynamic conferences

  54. Group Key Assignment A.k.a key distribution for dynamic conferences A center distributes private information to each party (and possibly publishes additional public information)

  55. Group Key Assignment A.k.a key distribution for dynamic conferences A center distributes private information to each party (and possibly publishes additional public information) Each party should be able to derive the key for any group containing it, using its private information and public information alone

  56. Group Key Assignment A.k.a key distribution for dynamic conferences A center distributes private information to each party (and possibly publishes additional public information) Each party should be able to derive the key for any group containing it, using its private information and public information alone Security requirement: a set of colluding parties outside a group should not be able to distinguish the key for the group from a random key

  57. Group Key Assignment A.k.a key distribution for dynamic conferences A center distributes private information to each party (and possibly publishes additional public information) Each party should be able to derive the key for any group containing it, using its private information and public information alone Security requirement: a set of colluding parties outside a group should not be able to distinguish the key for the group from a random key May impose an upperbound on the number of colluding parties

  58. Group Key Assignment

  59. Group Key Assignment A perfectly secure scheme [Blundo et al. ’92]

  60. Group Key Assignment A perfectly secure scheme [Blundo et al. ’92] Symmetric polynomial: P(x 1 ,...,x t ) = P(x π (1) ,...,x π (t) ) for any permutation π

  61. Group Key Assignment A perfectly secure scheme [Blundo et al. ’92] Symmetric polynomial: P(x 1 ,...,x t ) = P(x π (1) ,...,x π (t) ) for any permutation π i.e. a d1...dt = a π (d1)... π (dt) for all π , where a d1...dt is the coefficient of x 1d1 x 2d2 ...x tdt

  62. Group Key Assignment A perfectly secure scheme [Blundo et al. ’92] Symmetric polynomial: P(x 1 ,...,x t ) = P(x π (1) ,...,x π (t) ) for any permutation π i.e. a d1...dt = a π (d1)... π (dt) for all π , where a d1...dt is the coefficient of x 1d1 x 2d2 ...x tdt Key for the group (j 1 ,...,j t ) will be P(j 1 ,...,j t ). Each user j will have the (t-1)-variate polynomial f i (x 1 ,...,x t-1 ) defined as P(x 1 ,...,x t-1 , j)

  63. Group Key Assignment A perfectly secure scheme [Blundo et al. ’92] Symmetric polynomial: P(x 1 ,...,x t ) = P(x π (1) ,...,x π (t) ) for any permutation π i.e. a d1...dt = a π (d1)... π (dt) for all π , where a d1...dt is the coefficient of x 1d1 x 2d2 ...x tdt Key for the group (j 1 ,...,j t ) will be P(j 1 ,...,j t ). Each user j will have the (t-1)-variate polynomial f i (x 1 ,...,x t-1 ) defined as P(x 1 ,...,x t-1 , j) If P is a random symmetric polynomial of degree k in each variable, then the scheme is k-secure (i.e., for up to k users outside the group, the group key is perfectly random)

  64. Group Key Agreement

Recommend

Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

CS573 Data Privacy and Security Cryptographic Primitives and Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric Encryption Public Key Encryption Secure Multiparty Computation Problem and

779 views • 47 slides
Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems Benny Applebaum, David Cash, Chris Peikert, Amit Sahai Princeton University, Georgia Tech, SRI international, UCLA CRYPTO 2009 Learning Noisy Linear

352 views • 33 slides
Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness

Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness

Wrap Up: Cryptographic Primitives Lecture 18 Alternate Assumptions for PKE Randomness Extractors Story So Far Basic primitives for secure communication: Shared-Key Public-Key SKE PKE Encryption MAC

498 views • 17 slides
New MILP Modelings for Symmetric-Key Primitives Christina Boura (Joint-work with Daniel Coggia)

New MILP Modelings for Symmetric-Key Primitives Christina Boura (Joint-work with Daniel Coggia)

New MILP Modelings for Symmetric-Key Primitives Christina Boura (Joint-work with Daniel Coggia) University of Versailles and Inria de Paris August 6, 2020 1 / 43 Symmetric-key encryption Alice and Bob share the same secret key for encryption

983 views • 47 slides
Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver

Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver

Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver (a BroadcastReceiver subclass) is one of the application's components. Broadcast receivers enable applications to receive intents that are

560 views • 18 slides
Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver

Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver

Broadcast Receiver Why do we need Broadcast Receiver? Broadcast Receivers Broadcast receiver (a BroadcastReceiver subclass) is one of the application's components. Broadcast receivers enable applications to receive intents that are

597 views • 17 slides
Some Advances in Broadcast Encryption and Traitor Tracing Duong Hieu Phan ( S eminaire LIPN -

Some Advances in Broadcast Encryption and Traitor Tracing Duong Hieu Phan ( S eminaire LIPN -

Some Advances in Broadcast Encryption and Traitor Tracing Duong Hieu Phan ( S eminaire LIPN - 18 Novembre 2014 ) Duong Hieu Phan Some Advances in BE&TT S eminaire LIPN 1 / 42 Multi-receiver Encryption From One-to-one to

1.23k views • 65 slides
On Symmetric Key Broadcast Encryption Sanjay Bhattacherjee and Palash Sarkar Indian Statistical

On Symmetric Key Broadcast Encryption Sanjay Bhattacherjee and Palash Sarkar Indian Statistical

On Symmetric Key Broadcast Encryption Sanjay Bhattacherjee and Palash Sarkar Indian Statistical Institute, Kolkata Elliptic Curve Cryptography (This is not) 2014 isilogo Bhattacherjee and Sarkar Symmetric Key BE 10th Oct, 2014 1 / 53

1.67k views • 94 slides
BROADCAST RECEIVER SERVICE Broadcast receiver A broadcast receiver is a dormant component of

BROADCAST RECEIVER SERVICE Broadcast receiver A broadcast receiver is a dormant component of

BROADCAST RECEIVER SERVICE Broadcast receiver A broadcast receiver is a dormant component of the Android system. Only an Intent (for which it is registered) can bring it into action. Using a Broadcast Receiver, applications can

951 views • 51 slides
BROADCAST RECEIVER SERVICES Broadcast receiver A broadcast receiver is a dormant component of

BROADCAST RECEIVER SERVICES Broadcast receiver A broadcast receiver is a dormant component of

BROADCAST RECEIVER SERVICES Broadcast receiver A broadcast receiver is a dormant component of the Android system. Only an Intent (for which it is registered) can bring it into action. Using a Broadcast Receiver, applications can

789 views • 50 slides
Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about encryption? Encryption Certificates Crypto Currencies Public Key AES Encryption Privacy SSH VPN HTTPS TLS Quantum Digital Signatures

837 views • 46 slides
Wifi Wireless Encryption Unencrypted WEP WPA-2 Threat Model- Unencrypted Threat

Wifi Wireless Encryption Unencrypted WEP WPA-2 Threat Model- Unencrypted Threat

Wifi Wireless Encryption Unencrypted WEP WPA-2 Threat Model- Unencrypted Threat Model- Unencrypted SSID Hiding SSID - network name LoboGuest eduroam Default broadcast SSID SSID hiding do not broadcast SSID

552 views • 18 slides
Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware

Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware

Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware Encryption S Web Encryption S Email Encryption OpenPGP S S/MIME S S Online Social Network Public Key Encryption S Encryption/Decryption

842 views • 26 slides
Beyond Block I/O: Rethinking / Traditional Storage Primitives Traditional Storage Primitives

Beyond Block I/O: Rethinking / Traditional Storage Primitives Traditional Storage Primitives

Beyond Block I/O: Rethinking / Traditional Storage Primitives Traditional Storage Primitives Xiangyong Ouyang * , David Nellans , Robert Wipfel , David Flynn , D. K. Panda * d * D id Fl D K P * The Ohio State University

335 views • 29 slides
Introduction to the theory of secret key cryptography Andreas H ulsing Eindhoven University

Introduction to the theory of secret key cryptography Andreas H ulsing Eindhoven University

Introduction to the theory of secret key cryptography Andreas H ulsing Eindhoven University of Technology 17 June 2019 Secret key encryption MAC Main primitives of secret key / symmetric cryptography High-level primitives Low-level

1.51k views • 114 slides
Implementing new Topology Mapping Primitives Guillermo Baltra Prior Work Primitives for

Implementing new Topology Mapping Primitives Guillermo Baltra Prior Work Primitives for

Implementing new Topology Mapping Primitives Guillermo Baltra Prior Work Primitives for Active Internet Topology Mapping: Toward High-Frequency Characterization, Beverly, R., Berger, A., Xie, G., IMC 2010. Demonstrated the ability of

1.2k views • 80 slides
RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of

RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of

RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of encryption Wednesday, but none of these is good enough to be used in actual situations. Today well talk about one method, RSA Encryption, which is

1.01k views • 59 slides
Broadcast Algorithms BJRN A. JOHNSSON Overview Best-Effort Broadcast (Regular) Reliable

Broadcast Algorithms BJRN A. JOHNSSON Overview Best-Effort Broadcast (Regular) Reliable

Broadcast Algorithms BJRN A. JOHNSSON Overview Best-Effort Broadcast (Regular) Reliable Broadcast (2) Uniform Reliable Broadcast (2) Stubborn Broadcast Logged Best-Effort Broadcast Logged Uniform Reliable Broadcast

438 views • 39 slides
Input from Finance Telenor Broadcast Q4 2009 10.2.2010 1 Q4 2 0 0 9 Telenor Broadcast

Input from Finance Telenor Broadcast Q4 2009 10.2.2010 1 Q4 2 0 0 9 Telenor Broadcast

Input from Finance Telenor Broadcast Q4 2009 10.2.2010 1 Q4 2 0 0 9 Telenor Broadcast Revenues ( NOKm ) and EBI TDA% 2 212 2167 2160 2102 2084 2022 + 16k cable Internet net adds in Norway reaching 13% market share. + 5%

392 views • 6 slides
Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a

Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a

Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a way that only authorized parties can read the content of the original message History of encryption dates back to 1900 BC Two types of

533 views • 38 slides
RenderMan Primitives RenderMan Primitives CSCD 472? Slide 1 4/5/10 Primitive Attributes

RenderMan Primitives RenderMan Primitives CSCD 472? Slide 1 4/5/10 Primitive Attributes

RenderMan Primitives RenderMan Primitives CSCD 472? Slide 1 4/5/10 Primitive Attributes Primitive Attributes Two different methods of attaching attributes to primitives: Graphics state attributes inherited by the primitive from the

318 views • 19 slides
Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure

Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure

Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure communication. Does not allow modifying encrypted data. Homomorphic Encryption: allows computation on encrypted data, but result remains encrypted Functional

987 views • 61 slides
Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2

Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2

Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2 What is Encryption? Want to prevent someone (an attacker) from accessing private data Permissions arent good enough Root user can

788 views • 20 slides
Broadcast infrastructure Monitoring & automation LoriotPro Broadcast Edition A Microsoft

Broadcast infrastructure Monitoring & automation LoriotPro Broadcast Edition A Microsoft

Broadcast infrastructure Monitoring & automation LoriotPro Broadcast Edition A Microsoft Windows compatible software with multi-user WEB access Real time monitoring Backbone, Datacenter, HFC Networks, Earth Station, Headends, DVB

544 views • 9 slides

More recommend