cliptography clipping the power of kleptographic attacks
play

Cliptography: Clipping The Power Of Kleptographic Attacks Qiang - PowerPoint PPT Presentation

Sep 11, 2022 •313 likes •1.42k views

Cliptography: Clipping The Power Of Kleptographic Attacks Qiang Tang New Jersey Institute of Technology Joint work with Alexander Russell(UConn), Moti Yung(Snapchat & Columbia), and Hong-Sheng Zhou(VCU) Modern Crypto Modern Crypto

  1. Subvertible OWPs: i, y = f i ( x ) Gen Adversary can win this game…and…

  2. Subvertible OWPs SPEC Gen Gen Two index distributions are indistinguishable

  3. Subvertible OWPs SPEC Gen Gen Two index distributions are indistinguishable OK to ignore Eval as it is deterministic with a public input distribution

  4. Random Padding is Dangerous Index • SPEC: Outputs random i,k; here {g i } is a TDOWP . • IMPL: (i,d) from a TDOWP , and k=SEnc(z,d); here d is the trapdoor.

  5. Mitigating Subliminal Channel Key Generation must be randomized

  6. Conventional Wisdom

  7. Conventional Wisdom Nothing up my sleeve numbers

  8. Conventional Wisdom π = 3.1415926535897932384626432832795..…. some bits of it were • used as constants in some hash function (BLAKE), block cipher (Blowfish) and more Nothing up my sleeve numbers

  9. Conventional Wisdom π = 3.1415926535897932384626432832795..…. some bits of it were • used as constants in some hash function (BLAKE), block cipher (Blowfish) and more e = 2.7182818284590452353602874713527……some bits of it were • used as constants in an AES candidate block cipher (RC5) and more Nothing up my sleeve numbers

  10. Mitigating Subverted KG Nothing up my sleeve parameters/keys

  11. Mitigating Subverted KG Nothing up my sleeve parameters/keys Gen Hash

  12. Mitigating Subverted KG: Intuition z

  13. Mitigating Subverted KG: Intuition z Any backdoor can be used to invert a sparse subset of functions, otherwise SPEC is insecure

  14. Mitigating Subverted KG: Intuition H z z Any backdoor can be used to invert a sparse subset of functions, otherwise SPEC is insecure

  15. Mitigating Subverted KG: Intuition H z z Any backdoor can be used to invert a sparse “Dispersing” the index to subset of functions, otherwise SPEC is insecure a “safe” place

  16. Mitigating Subverted KG Gen Hash Theorem: {g i } is a family of subversion resistant OWPs.

  17. Mitigating Subverted KG Gen Hash Theorem: {g i } is a family of subversion resistant OWPs. Assuming the SPEC of h is RO, and index domain is “simple”

  18. Further Implications

  19. Further Implications • Similarly salvage Duel_EC PRNG: it was shown to be impossible to sanitize the output.

  20. Further Implications • Similarly salvage Duel_EC PRNG: it was shown to be impossible to sanitize the output. • Similarly salvage trapdoor OWP , then further save the KG of the full domain hash digital signature scheme

  21. Further Results

  22. Further Results • Reduction of FDH does not go through, modification needed

  23. Further Results • Reduction of FDH does not go through, modification needed • Reduction from clipto-secure OWP to PRG preserves

  24. Conventional FDH Proof Embed the TDOWP challenge to one RO query answer: Reduction A

  25. Conventional FDH Proof Embed the TDOWP challenge to one RO query answer: Reduction i, y = f i ( x ) A

  26. Conventional FDH Proof Embed the TDOWP challenge to one RO query answer: Reduction i, y = f i ( x ) A

  27. Conventional FDH Proof Embed the TDOWP challenge to one RO query answer: Reduction i, y = f i ( x ) A

  28. FDH in the Clipto Setting Reduction i, y = f i ( x ) A

  29. FDH in the Clipto Setting Reduction i, y = f i ( x ) A y now generated by Eval implementation

  30. FDH in the Clipto Setting Reduction i, y = f i ( x ) A y now generated RO queries can be by Eval made during implementation manufacturing

  31. FDH in the Clipto Setting No way to embed TDOWP challenge Reduction i, y = f i ( x ) A y now generated RO queries can be by Eval made during implementation manufacturing

  32. Revised FDH

Recommend

1 3 D Clipping 3 D Clipping Represent edge param et rically as A + ( C A)t

1 3 D Clipping 3 D Clipping Represent edge param et rically as A + ( C A)t

3 D Clipping CS 4 7 3 1 : Com put e r Gr a phics Le ct u r e 1 4 : 3 D Clippin g a n d Vie w por t Tr a n sf or m a t ion Em m anuel Agu Clipping occur s a ft e r pr oj e ct ion t r a nsfor m a t ion Clipping is a ga inst ca nonica

1.05k views • 5 slides
= y < ymax y > ymin ymax interior X max X min ymin AND Ymin y Ymax

= y < ymax y > ymin ymax interior X max X min ymin AND Ymin y Ymax

Why do clipping? What is clipping, two views Clipping is a visibility Clipping spatially partitions geometric primitives, preprocess. In real-world according to their containment within some scene clipping can remove region. Clipping

428 views • 26 slides
1 Clipping Points Against a View Volume Remember the Plane Equation? Given a point A on the

1 Clipping Points Against a View Volume Remember the Plane Equation? Given a point A on the

Clipping The Story So Far for 3D Graphics o Clipping o We now understand: o how to model objects as a set of polygons and create o Sutherland-Hodgman Clipping a 3D world o Cohen-Sutherland Clipping o how to view the 3D world with a camera

79 views • 6 slides
Clipping http://www.ugrad.cs.ubc.ca/~cs314/Vjan2013 Reading for Clipping FCG Sec 8.1.3-8.1.6

Clipping http://www.ugrad.cs.ubc.ca/~cs314/Vjan2013 Reading for Clipping FCG Sec 8.1.3-8.1.6

University of British Columbia CPSC 314 Computer Graphics Jan-Apr 2013 Tamara Munzner Clipping http://www.ugrad.cs.ubc.ca/~cs314/Vjan2013 Reading for Clipping FCG Sec 8.1.3-8.1.6 Clipping FCG Sec 8.4 Culling (12.1-12.4 2nd ed) 2

850 views • 41 slides
Reading for Clipping CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6 Clipping Jan-Apr 2013

Reading for Clipping CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6 Clipping Jan-Apr 2013

University of British Columbia Reading for Clipping CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6 Clipping Jan-Apr 2013 FCG Sec 8.4 Culling Tamara Munzner (12.1-12.4 2nd ed) Clipping http://www.ugrad.cs.ubc.ca/~cs314/Vjan2013 2

234 views • 11 slides
Visibility, Culling, Clipping (05) RNDr. Martin Madaras, PhD. martin.madaras@stuba.sk Overview

Visibility, Culling, Clipping (05) RNDr. Martin Madaras, PhD. martin.madaras@stuba.sk Overview

Principles of Computer Graphics and Image Processing Visibility, Culling, Clipping (05) RNDr. Martin Madaras, PhD. martin.madaras@stuba.sk Overview Clipping Point Clipping Line Clipping Polygon Clipping Hidden Surface Removal

812 views • 77 slides
CS-184: Computer Graphics Lecture #10: Clipping and Hidden Surfaces Prof. James OBrien

CS-184: Computer Graphics Lecture #10: Clipping and Hidden Surfaces Prof. James OBrien

1 CS-184: Computer Graphics Lecture #10: Clipping and Hidden Surfaces Prof. James OBrien University of California, Berkeley V2015-S-10-1.0 2 Today Clipping Clipping to view volume Clipping arbitrary polygons Hidden

648 views • 15 slides
Reading for Clipping Rendering Pipeline CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6

Reading for Clipping Rendering Pipeline CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6

University of British Columbia Reading for Clipping Rendering Pipeline CPSC 314 Computer Graphics FCG Sec 8.1.3-8.1.6 Clipping Jan-Apr 2013 FCG Sec 8.4 Culling Geometry Model/View Perspective Lighting Clipping Tamara Munzner

184 views • 3 slides
ChipWhisperer Lite Modeling Power Consumption Every device requires power to run (static Dynamic

ChipWhisperer Lite Modeling Power Consumption Every device requires power to run (static Dynamic

Open source tool for research on hardware attacks Side Channel Power Analysis Glitching Attacks Essentially an oscilloscope attached to a target chip ChipWhisperer Lite Modeling Power Consumption Every device requires power to run

175 views • 14 slides
Computer Graphics - Clipping - Philipp Slusallek Clipping Motivation Projected primitive

Computer Graphics - Clipping - Philipp Slusallek Clipping Motivation Projected primitive

Computer Graphics - Clipping - Philipp Slusallek Clipping Motivation Projected primitive might fall (partially) outside of display area E.g. if standing inside a building Eliminate non-visible geometry early in the pipeline to

318 views • 18 slides
HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume that secret keys are utilized by implementations of the algorithm in a secure fashion, with access only allowed through the I/Os Unfortunately,

363 views • 12 slides
CLIPPING 101 https://www.horsejournals.com/horse-clipping-101 WHY CLIP? Fall is the

CLIPPING 101 https://www.horsejournals.com/horse-clipping-101 WHY CLIP? Fall is the

CLIPPING 101 https://www.horsejournals.com/horse-clipping-101 WHY CLIP? Fall is the time to decide if you will clip your horse-first clip in late Sept first week Oct, last one if needed end of Feb before summer coat starts to come in

353 views • 18 slides
Computer Graphics (CS 543) Lecture 9: Clipping, Viewport Transformation & Hidden Surface

Computer Graphics (CS 543) Lecture 9: Clipping, Viewport Transformation & Hidden Surface

Computer Graphics (CS 543) Lecture 9: Clipping, Viewport Transformation & Hidden Surface Removal Prof Emmanuel Agu Computer Science Dept. Worcester Polytechnic Institute (WPI) Polygon Clipping Not as simple as line segment clipping

562 views • 55 slides
CS 5 4 3 : Com puter Graphics Lecture 8 : 3 D Clipping and View port Transform ation Emmanuel Agu

CS 5 4 3 : Com puter Graphics Lecture 8 : 3 D Clipping and View port Transform ation Emmanuel Agu

CS 5 4 3 : Com puter Graphics Lecture 8 : 3 D Clipping and View port Transform ation Emmanuel Agu 3D Clipping Clipping occurs after projection transform ation Clipping is against canonical view volum e Param etric Equations I m

376 views • 35 slides
Clipping and Culling Sung-Eui Yoon ( ) ( ) C Course URL: URL

Clipping and Culling Sung-Eui Yoon ( ) ( ) C Course URL: URL

CS380: Computer Graphics p p Clipping and Culling Sung-Eui Yoon ( ) ( ) C Course URL: URL http://sglab.kaist.ac.kr/~sungeui/CG/ Class Objectives Class Objectives Understand clipping and culling Understand clipping

775 views • 28 slides
Einfhrung in Visual Computing Clipping Werner Purgathofer Institut fr Computergraphik und

Einfhrung in Visual Computing Clipping Werner Purgathofer Institut fr Computergraphik und

Einfhrung in Visual Computing Clipping Werner Purgathofer Institut fr Computergraphik und Algorithmen 6. Vorlesungseinheit Computergraphik Clipping in the Rendering Pipeline Clipping object capture/creation partly visible or

363 views • 9 slides
Computer Graphics - Clipping - Philipp Slusallek & Stefan Lemme Clipping Motivation

Computer Graphics - Clipping - Philipp Slusallek & Stefan Lemme Clipping Motivation

Computer Graphics - Clipping - Philipp Slusallek & Stefan Lemme Clipping Motivation Projected primitive might fall (partially) outside of the visible display window E.g. if standing inside a building Eliminate non-visible

411 views • 18 slides
Cli Clipping and i d A ti li Antialiasing i Werner Purgathofer g Clipping in the Rendering

Cli Clipping and i d A ti li Antialiasing i Werner Purgathofer g Clipping in the Rendering

Einfhrung in Einfhrung in Visual Computing Visual Computing 186.822 Cli Clipping and i d A ti li Antialiasing i Werner Purgathofer g Clipping in the Rendering Pipeline object capture/creation scene objects in object space

945 views • 50 slides
Clipping and Culling Sung-Eui Yoon ( ) Course URL:

Clipping and Culling Sung-Eui Yoon ( ) Course URL:

CS380: Computer Graphics Clipping and Culling Sung-Eui Yoon ( ) Course URL: http://sgvr.kaist.ac.kr/~sungeui/CG/ Class Objectives Understand clipping and culling Understand view-frustum, back-face culling, and hierarchical

474 views • 26 slides
Clipping and Culling Sung-Eui Yoon ( ) Course URL:

Clipping and Culling Sung-Eui Yoon ( ) Course URL:

CS380: Computer Graphics Clipping and Culling Sung-Eui Yoon ( ) Course URL: http://sglab.kaist.ac.kr/~sungeui/CG/ Class Objectives Understand clipping and culling Understand view-frustum, back-face culling, and hierarchical

504 views • 27 slides
CS488 Polygon Clipping and Circles Luc R ENAMBOT 1 Previous Lectures Frame buffers

CS488 Polygon Clipping and Circles Luc R ENAMBOT 1 Previous Lectures Frame buffers

CS488 Polygon Clipping and Circles Luc R ENAMBOT 1 Previous Lectures Frame buffers Drawing a line (Midpoint Line Algorithm) Polygon Filling (Edge-table algorithm) Line Clipping (Cohen-Sutherland algorithm) Polygon Clipping

527 views • 31 slides
Reading for This Time News Review: Polygon Clipping CPSC 314 Computer Graphics Project 3

Reading for This Time News Review: Polygon Clipping CPSC 314 Computer Graphics Project 3

University of British Columbia Reading for This Time News Review: Polygon Clipping CPSC 314 Computer Graphics Project 3 update not just clipping all boundary lines Jan-Apr 2007 FCG Chap 12 Graphics Pipeline Linux executable

300 views • 3 slides
List decoding of RM(1,m) codes and Multi-linear Power Analysis attacks (MLPA) Ilya Dumer , Rafael

List decoding of RM(1,m) codes and Multi-linear Power Analysis attacks (MLPA) Ilya Dumer , Rafael

List decoding of the First order Reed-Muller codes Application to cryptanalysis PA Attacks overview Ideal Countermeasure MLPA List decoding of RM(1,m) codes and Multi-linear Power Analysis attacks (MLPA) Ilya Dumer , Rafael Fourquet , Grigory

675 views • 33 slides
Shou Jiang T ang, MD, FASGE Director of Endoscopic Research Professor in Medicine

Shou Jiang T ang, MD, FASGE Director of Endoscopic Research Professor in Medicine

Shou Jiang T ang, MD, FASGE Director of Endoscopic Research Professor in Medicine Through-the-scope clipping devices Over-the-scope clipping devices First reported clipping device Hayshi T, Yonezawa M, Kawabara T. The study on staunch clip

944 views • 45 slides

More recommend