darpa s i nvestments in real world cryptography
play

DARPAs I nvestments in Real World Cryptography Dr Josh Baron - PowerPoint PPT Presentation

Oct 20, 2022 •97 likes •324 views

DARPAs I nvestments in Real World Cryptography Dr Josh Baron Program Manager, DARPA/I2O Real World Cryptography 2019 9 January 2019 1 Distribution Statement A: Approved for Public Release, Distribution Unlimited Cryptography at DARPA

  1. DARPA’s I nvestments in Real World Cryptography Dr Josh Baron Program Manager, DARPA/I2O Real World Cryptography 2019 9 January 2019 1 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  2. Cryptography at DARPA Overview • Proceed – Computation on encrypted data • Fully Homomorphic Encryption, MPC • SAFER – Safe, resilient communications over the Internet • Pluggable Transports, Decoy Routing, Three-Party MPC • Brandeis – Build privacy-aware systems • MPC, Differential privacy, human factors • SAFEWARE – Provably-secure software obfuscation • Indistinguishability Obfuscation • RACE – Secure, distributed messaging in contested network environments • MPC, Obfuscated Communications • Future? 2 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  3. Today’s Discussion • Proceed – Computation on encrypted data • Fully Homomorphic Encryption, MPC • SAFER – Safe, resilient communications over the Internet • Pluggable Transports, Decoy Routing, Three-Party MPC • Brandeis – Build privacy-aware systems • MPC, Differential privacy, human factors • SAFEWARE – Provably-secure software obfuscation • Indistinguishability Obfuscation • RACE – Secure, distributed messaging in contested network environments • MPC, Obfuscated Communications • Future? 3 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  4. Brandeis 4 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  5. Program Objective Develop tools and techniques to enable the building of information systems where private data can be used for the intended purpose – and no other data privacy Brandeis data data enclaves privacy enable a new direction unprotected data of movement data utility 5 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  6. Brandeis System Concept Data Human Data Experimental Data Requester I nteraction I ntegration Owner / User/ Analyst (TA2) Platforms (TA3) TA1s TA1s TA1s TA1s Source: CMU & Privacy Policy Privacy Devices User I nterface Preserving Techniques (Users define and understand (Encryption, MPC, Source: UC Berkeley policy) Differential Privacy) Data requesters use, analyze privacy protected Privacy Measurement (TA4) data (Metrics for measuring privacy protection) 6 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  7. Privacy-Enhanced (PE) Android RapidGather • Configurations • Private Data Requests App Development Fragment PE Android Android SDK Level 23 Display SDK Add-On Framework PE Android Framework Modifications • Private Data Service • Permission Purposes App • App Install Hooks PE Android PAL Execution • Runtime Policy Enforcement and HDI • Off Device Privacy Policy • Runtime Instrumentation / Analysis Privacy Data Brandeis Manager Image Capsule Mobile CRT Research & Call Logs Location Integration Privacy Policy PAL Modules Distribution Statement A: Approved for Public Release, Distribution Unlimited

  8. “Help Me” Application 8 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  9. Optimized Schedule Docking Task : Schedule the docking of S Aid Provider ships from N Nations at P ports within an Aid Recipient country by a given deadline D. Optimization : Load-balance across ports MIN (MAX Port_j, Port_k (|{ Assigned(Ship_i, Port_j) } | - |{ Assigned(Ship_i, Port_k) } |)) 10 ports Aid harbor-depth Recipient Intl Response offload-capability Coordinator berth-availability Ship-port feasibility: Aid Providers Nation 1 Nation 2 Nation 3 2-way asymmetric MPC • ship-location Ship-port assignments: ship-maxspeed 3-way symmetric MPC • ship-draft 9 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  10. Multi Ship Multi Port Aid Distribution Allocation in MPC 10 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  11. Privacy-Enhancing Technologies within Brandeis • Cryptography • SCALE-MAMBA • Garbled RAM • Oblivious RAM • SGX/Sanctum • Functional Secret Sharing • Differential Privacy • Workload Balancing • Composition (Ektelo) • Local DP • Open-source tools (ex: https://github.com/uber/sql-differential- privacy) 11 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  12. Resilient Anonymous Communication for Everyone (RACE) Distribution Statement A: Approved for Public Release, Distribution Unlimited

  13. RACE Goal Use cryptography and obfuscated communications to build an anonymous, attack-resilient mobile communication system that can reside completely within a contested network environment. 13 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  14. RACE Approach: Avoid Large-scale Targeting 1) Cryptography: Counter service exploitation via computing on encrypted data 2) Obfuscation: Counter communication exploitation via protocol embedding Help Wanted email: Message and addressee af7832bd Encoded, oblivious tasking are encrypted @lg.net alice Oblivious message-passing route assignment Normal-appearing communications Resilient app storage and delivery via sharding Undiscoverable, encapsulated communication bob Key: Cryptographic tasking node Cryptographic app delivery node 14 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  15. RACE Security Properties Type Attribute Property Confidentiality user messages Only the sender and receiver of a message can see it user message Confidentiality of who talks to whom and when metadata unobservable The fact that Alice possesses and uses the mobile communication application should not be inferable unless Alice’s mobile device is compromised unobservable The fact that Bob is running software to execute service node service node functionality should not be inferable participation unless Bob’s system is compromised I ntegrity user messages User messages cannot be changed in transit Availability user messages End-to-end communication time should be one minute 15 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  16. RACE Program Structure TA3: System Distributed Messaging Operations Prototype Communications distributed TA 3.1: Resilient App Distribution toolbox tasking code TA1: Cryptography TA2: Obfuscated Resilient Distributed System Tasking Communication Countering Automated Protocol Identification Prototype releases Testbed and Voice of the Adversary Realistic network environments Realistic adversarial approaches Assess prototype systems 16 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  17. (Selected) RACE Metrics Metric Phase 1 (18 mo) Phase 2 (12 mo) Phase 3 (18 mo) Nodes: users/tasking 10 / 100 100 / 1k 10k / 1k Crypto adversary /corruption Common Passive / 20% Active / 10% Active / 20% level Crypto key infrastructure Assumed Not assumed Not assumed msg/day / size / delay 500 / 140B / 5 min latency 5k / 140B / 1 min latency 500k / 1MB / 1 min latency TA 1 Node refresh Demonstrate 1/month 1/week Quantitative/ simulated Statistical distance proof Security Statistical distance full proof evaluation sketch Adversary Passive Active link inject Link+node inject TA 2 Bandwidth (c-s/s-s) 100 kbps / 5 Mbps 500 kbps / 10 Mbps 500 kbps / 10 Mbps Channel Model Simulation eval Proof (passive adversary) Proof (active adversary) System Architecture Full prototype integration Full demo system TA 3 Adversarial exploitation Passive Active node exploitation Full spectrum exploitation Comm channels Mock channel TA 2 channel Switch b/t channels Logical sharding < 5 Atomic functionalities Innocuous “gadgets” TA 3.1 Nodes: total/reconstruct 50/10 250/30 1000/50 App reconstruction 10 min 5 min 5 min 17 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  18. Future Cryptography Programs at DARPA (?) Distribution Statement A: Approved for Public Release, Distribution Unlimited

  19. Zero Knowledge • Making Mathematically Verifiable Statements Without Revealing Sensitive Information • Question 1: What can/should I prove in ZK? • Question 2: How efficiently can I prove it? • Proof and statement/witness efficiency • Question 3: What are the big theoretical “heavy lifts” that need to be addressed? • PCPs, Interactive Proof Complexity, etc… 19 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  20. Consensus Protocols (Blockchain) • ABC RFI • What should DARPA’s role be? • Question 1: What can we actually do now that we cannot before? • Permissioned blockchains = old news • Permissionless blockchains = ? • Economic understandings of security + Distributed Computation Protocols = ? • Question 2: How secure are consensus protocols really? • Are distributed systems truly decentralized? • Apostolaki et al, Oakland 2018: at the AS level, Bitcoin is highly centralized 20 Distribution Statement A: Approved for Public Release, Distribution Unlimited

  21. www.darpa.mil People/phone/computer icons from https://openclipart.org/ and https://github.com/KDE/breeze-icons 21 Distribution Statement A: Approved for Public Release, Distribution Unlimited

Recommend

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

526 views • 26 slides
hig igh-performance and lo low-power applications Real World Cryptography Conference 2017

hig igh-performance and lo low-power applications Real World Cryptography Conference 2017

Four -based cryptography for hig igh-performance and lo low-power applications Real World Cryptography Conference 2017 January 4-6, New York, USA Patrick Longa Microsoft Research Next-generation elliptic curves New IETF Standards

861 views • 59 slides
The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography

The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography

The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography Workshop 2015 Arno Mittelbach based on joint work with Jean Paul Degabriele, Victoria Fehr, Marc Fischlin, Tommaso Gagliardoni, Felix Gnther,

488 views • 24 slides
Real World Cryptography 2015 London, UK, 7-9 January 2015

Real World Cryptography 2015 London, UK, 7-9 January 2015

Real World Cryptography 2015 London, UK, 7-9 January 2015 www.realworldcrypto.com/rwc2015 #realworldcrypto Welcoming Remarks Fire safety Lightning talks

338 views • 8 slides
Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After learning all the foundation of modern cryptography, we are ready to see some real world applications based on them. What happened when you

592 views • 33 slides
White-Box Cryptography Don't Forget About Grey Box Attacks Joppe W. Bos Real World Crypto 2017

White-Box Cryptography Don't Forget About Grey Box Attacks Joppe W. Bos Real World Crypto 2017

Based on: J. W. Bos, C. Hubain, W. Michiels, P. Teuwen. In CHES 2016: Differential computation analysis: Hiding your white-box designs is not enough . White-Box Cryptography Don't Forget About Grey Box Attacks Joppe W. Bos Real World Crypto 2017

477 views • 29 slides
Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world crypto and privacy Sibenik, Croatia - June 15 2018 Outline Symmetric lightweight primitives Most used cryptanalysis Impossible

1.31k views • 76 slides
Source Framework for Io IoT Greg Zaverucha Microsoft Real World Cryptography Conference 2016

Source Framework for Io IoT Greg Zaverucha Microsoft Real World Cryptography Conference 2016

Cry ryptography in in AllJ llJoyn, an Open Source Framework for Io IoT Greg Zaverucha Microsoft Real World Cryptography Conference 2016 Internet of Things Things are devices that have one or more sensors/functions and network connectivity

938 views • 32 slides
Asymmetric cryptography from discrete logarithms Benjamin Smith Summer school on real-world

Asymmetric cryptography from discrete logarithms Benjamin Smith Summer school on real-world

Asymmetric cryptography from discrete logarithms Benjamin Smith Summer school on real-world crypto and privacy Sibenik, Croatia // June 17 2019 Inria + Laboratoire dInformatique de lcole polytechnique (LIX) 1 Asymmetric crypto settings

1.17k views • 86 slides
The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of

The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of

The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of OpenCard Pascal Paillier CryptoExperts Real World Crypto 2015 Jan 2015 Real World Crypto 2015 Jan 2015 What are Smart Cards? Real World

968 views • 51 slides
elliptic curve cryptography Craig Costello Summer School on Real-World Crypto and Privacy June

elliptic curve cryptography Craig Costello Summer School on Real-World Crypto and Privacy June

A gentle introduction to elliptic curve cryptography Craig Costello Summer School on Real-World Crypto and Privacy June 11, 2018 ibenik , Croatia Part 1: Motivation Part 2: Elliptic Curves Part 3: Elliptic Curve Cryptography Part 4:

1.38k views • 48 slides
isogeny-based cryptography Craig Costello Summer School on Real-World Crypto and Privacy June 8,

isogeny-based cryptography Craig Costello Summer School on Real-World Crypto and Privacy June 8,

An introduction to supersingular isogeny-based cryptography Craig Costello Summer School on Real-World Crypto and Privacy June 8, 2017 ibenik , Croatia T owards quantum-resistant cryptosystems from supersingular elliptic curve isogenies

1.46k views • 51 slides
XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( ) 2006.10 RSS is cool ! RSS RSS Really Simple Syndication Tired of checking your favorite news and blogs sites everyday?

786 views • 75 slides
Introduction 1989: REAL network simulator Ns Tutorial 2002 1995: DARPA VINT project at

Introduction 1989: REAL network simulator Ns Tutorial 2002 1995: DARPA VINT project at

Introduction 1989: REAL network simulator Ns Tutorial 2002 1995: DARPA VINT project at LBL, Xerox PARC, UCB, and USC/ISI Present: DARPA SAMAN project and Padmaparna Haldar (haldar@isi.edu) NSF CONSER project Xuan Chen

584 views • 9 slides
Appendix 2 - Textual Analysis Rubric Thematic comparison Indigenous Categories Key Words in context

Appendix 2 - Textual Analysis Rubric Thematic comparison Indigenous Categories Key Words in context

DARPA Appendix 1 - DARPA Site Map Quality Hiring Privacy &amp; Budget Doing Director's Grand News Mission &amp; DARPA Program Challenge Security of Info. Office Releases Info. Programs Business Overview Managers with DARPA

557 views • 9 slides
Influencing DARPA Kathleen Fisher DARPAs Mission Assure that the US leads the world in

Influencing DARPA Kathleen Fisher DARPAs Mission Assure that the US leads the world in

Influencing DARPA Kathleen Fisher DARPAs Mission Assure that the US leads the world in technology for national defense Avoid/create Sputnik surprises Build communities of change- Creating breakthrough technologies state

399 views • 15 slides
Gazebo: Simulator for the DARPA VRC Steven Peters, John Hsu gazebosim.org Outline Overview of

Gazebo: Simulator for the DARPA VRC Steven Peters, John Hsu gazebosim.org Outline Overview of

Gazebo: Simulator for the DARPA VRC Steven Peters, John Hsu gazebosim.org Outline Overview of the Open Source Gazebo Simulator DARPA Virtual Robotics Challenge Challenges with real-time simulation Open Dynamics Engine (ODE) Projected

757 views • 30 slides
Other Transactions Agreements (OTs): A Tool for Enhancing CSRE-DARPA Collaboration Crane Lopes

Other Transactions Agreements (OTs): A Tool for Enhancing CSRE-DARPA Collaboration Crane Lopes

Other Transactions Agreements (OTs): A Tool for Enhancing CSRE-DARPA Collaboration Crane Lopes General Counsel Defense Advanced Research Projects Agency (DARPA) https://www.darpa.mil/ January 15, 2019 Distribution Statement A 1 Bottom Line

254 views • 22 slides
DARPA HPCS Overview Productivity Evaluation David Koester, Ph.D. DARPA HPCS Productivity Team

DARPA HPCS Overview Productivity Evaluation David Koester, Ph.D. DARPA HPCS Productivity Team

DARPA HPCS Overview Productivity Evaluation David Koester, Ph.D. DARPA HPCS Productivity Team HPCchallenge Benchmarks Panel SC2004 12 November 2004 This work is sponsored by the Department of Defense under Army Contract

378 views • 11 slides
How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive Editor Scrip Bridget Silverman Presenters Managing Editor Pink Sheet Ben Gutierrez Head, US Value Evidence &amp; Outcomes GlaxoSmithKline

371 views • 33 slides
Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting Students to and Through Market Value Asset Attainment 4th highest-ranked Strategic Plan Alignment Every student will demonstrate global

499 views • 24 slides
Introduction to post-quantum cryptography and learning with errors Douglas Stebila Funding

Introduction to post-quantum cryptography and learning with errors Douglas Stebila Funding

Introduction to post-quantum cryptography and learning with errors Douglas Stebila Funding acknowledgements: Summer School on real-world crypto and privacy ibenik, Croatia June 11, 2018

1.67k views • 106 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp; http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you already know Eventual Consistency /usr/bin/whoami Chris Molozian Client Services Engineer, Basho EMEA Basho Technologies cmolozian@basho.com 03

371 views • 34 slides

More recommend