light lightweight cryptography
play

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) - PowerPoint PPT Presentation

Sep 01, 2022 •901 likes •1.3k views

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku University, Japan) Atsuki Nagao (Ochanomizu University, Japan) Kazumasa Shinagawa (Tokyo Tech / AIST, Japan) 1 2 3 4 5 6 Material 7 Agenda 1.

  1. Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku University, Japan) Atsuki Nagao (Ochanomizu University, Japan) Kazumasa Shinagawa (Tokyo Tech / AIST, Japan) 1

  2. 2

  3. 3

  4. 4

  5. 5

  6. 6

  7. Material 7

  8. Agenda 1. Introduction • Physical cryptography • Related works 2. Light cryptography • Model • Set-Intersection protocol • Min/Max protocol • Addition protocol 3. Conclusion 8

  9. Agenda 1. Introduction • Physical cryptography • Related works 2. Light cryptography • Model • Set-Intersection protocol • Min/Max protocol • Addition protocol 3. Conclusion 9

  10. Background • Modern cryptography is more and more used and complex • Teaching cryptography is hard • Complex algorithm • Security • Deep mathematics • Not visualized OUR GOAL : a good educational tool for cryptography 10

  11. Physical cryptography • Cryptography using physical objects (e.g. playing cards) • Suitable for education • Good visualization • Concrete • Introduction to cryptographic concepts • No need of mathematics knowledge 11

  12. Light cryptography New model of physical cryptography • Computation based on light and shadows • Easy to understand • Secure 12

  13. Related works • Zero-knowledge proof for “Where’ s Wally” [1] • Proof that “I know Wally’ s position” without revealing the position • Visual secret sharing [2] • Secret image is reconstructed by stacking two transparent sheets • Card-based protocols [3] • Secure computation protocol using a deck of cards (like playing cards) [1] Naor, Naor, and Reingold, “Applied Kid Cryptography or How To Convince Your Children You Are Not Cheating”, EUROCRYPT 1999. [2] Naor and Shamir, “Visual Cryptography”, EUROCRYPT 1994. [3] den Boer, “More Efficient Match-Making and Satisfiability The Five Card Trick”, EUROCRYPT 1989. 13

  14. Agenda 1. Introduction • Physical cryptography • Related works 2. Light cryptography • Model • Set-Intersection protocol • Min/Max protocol • Addition protocol 3. Conclusion 14

  15. Properties of shadows • It is sometimes hard to imagine its original shape from shadows 15

  16. 16

  17. Properties of shadows The resulting shadow is the union of shadows Shadow addition 17

  18. Protocols of Light Cryptography • Start: Each party has a secret input x i • Goal: Compute a joint function f(x 1 , x 2 , …, x n ) with hiding secrets 1. Each party has an input sheet 2. Depending on own input, each party makes holes in the sheet hole Step 2 Input sheet if x i = 0 if x i = 1 18

  19. Protocols of Light Cryptography 3. Each party inserts own input sheet in the hiding box (B) 4. (A) is illuminating by the light 5. The result image is printed on the screen A net of the box 19

  20. <latexit sha1_base64="i7hWC0vdcfMUI6A2sTujQSDq0gQ=">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</latexit> How to “securely” have an agreement Alice Bob Determine the current situation Yes Yes → agreement without revealing inputs directly Yes No } → disagreement No Yes No No if Yes if No 20

  21. <latexit sha1_base64="i7hWC0vdcfMUI6A2sTujQSDq0gQ=">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</latexit> How to “securely” have an agreement Alice Bob Determine the current situation Yes Yes → agreement without revealing inputs directly Yes No } → disagreement No Yes Computation of an AND No No if Yes if No 21

  22. <latexit sha1_base64="i7hWC0vdcfMUI6A2sTujQSDq0gQ=">ACZXichVFNSwJBGH7cvswy7YMIOiSJ0UlGOxSdpC4d/cgPUJHdbazFdXfZXQUT/0B0rQ6dCiKin9GlP9DBXxDR0aBLh17XhSip3mFmnmfd5ZkYyVMWyGet6hJHRsfEJ76Rvato/EwjOzuUsvWHKPCvrqm4WJNHiqLxrK3YKi8YJhfrksrzUm23v59vctNSdG3fbhm8XBcPNaWqyKJNVLrUqQTDLMqcCA2DmAvCcCOpB29RwgF0yGigDg4NmEVIixqRcTAYBXRps4k5Di7HN04CNtg7I4ZYjE1mg8pFXRZTVa92tajlqmU1TqJilDiLAndsd67JHdsxf28WutlOj76VFszTQcqMSOFnKvP+rqtNs4+hL9adnG1VsOV4V8m4TP8W8kDfPL7oZbTkfYau2av5P+KdkD3UBrvsk3KZ6+hI8+IPbzuYdBLh6NbUTjqXg4seN+hRfLWMU6vfcmEthDElk6t4pTnOHc8yz4hQVhcZAqeFzNPL6FsPIJ3sWKZQ=</latexit> How to “securely” have an agreement Alice Bob Determine the current situation Yes Yes → agreement without revealing inputs directly Yes No } → disagreement No Yes Computation of an AND No No NOBODY LEARNS OTHER CHOICE if Yes if No 22

  23. Schedule a meeting for next month? 23

  24. Transparent sheets • Input sheets also can be implemented by transparent sheets • Each party fills it by a black pen or a black-colored seals black pen transparent Depending on input, some circles The black image is printed on are filled by a black pen transparent sheets 24

  25. Input sheet Scheduling (set-intersection) Alice’ s result schedule Bob’ s schedule NOBODY LEARNS OTHER CHOICE 25

  26. Compute the maximum of salaries ? 26

  27. Input sheet Max protocol Alice’ s input = 33 Bob’ s input = 16 result = 33 NOBODY LEARNS OTHER CHOICE 27

  28. Compute the minimum of salaries ? 28

  29. Input sheet Min protocol Alice’ s input = 24 Bob’ s input = 70 result = 24 29 NOBODY LEARNS OTHER CHOICE

  30. Compute who is the millionaire? 30

  31. Input sheet Max with name Alice’ s input = 33 Bob’ s input = 50 Carol’ s input = 50 NOBODY LEARNS OTHER CHOICE 31

  32. Compute the sum of numbers ? 32

  33. Addition protocol 0 Input sheet: Bob’ s Carol’ s Alice’ s input = 2 input = 3 input = 1 • The output image is randomized • If two circles are collude, the output is not correct 33

  34. Addition protocol 1 Input sheet: Bob’ s Carol’ s Alice’ s input = 2 input = 3 input = 1 • The output image is randomized • If two circles are collude, the output is not correct 34

  35. Addition protocol 2 Input sheet: Bob’ s Carol’ s Alice’ s input = 2 input = 3 input = 1 • Use instead of • The collision probability is reduced 35

  36. Conclusion CONTRIBUTIONS: • Light cryptography is a new model of physical cryptography • Secure computation based on light and shadows : - Max/Minimum - Addition - Schedule 36

  37. Future directions • Use it in cryptography courses Design Feedback Test • Designe more protocols : Subtraction ? Multiplication ? • Study more about physical cryptography 37

  38. Questions ? 38

Recommend

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013 Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective

478 views • 20 slides
Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and UTwente d UT t Overview Lightweight cryptography - state of the art Comparison Standard vs. Lightweight Comparison Standard vs. Lightweight

599 views • 39 slides
On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1 AIST, Japan Kolkata, India (16 November 2018) 1 / 38 Table of contents 1 Introduction 2 Lightweight Crypto Stack for Circuit/RAM Size Requirement

670 views • 38 slides
Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world crypto and privacy Sibenik, Croatia - June 15 2018 Outline Symmetric lightweight primitives Most used cryptanalysis Impossible

1.31k views • 76 slides
Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors Thanks to the teams of KATAN, SPONGENT, PRINCE, FIDES Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 1 of 33 Summer

590 views • 45 slides
The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work with Alex Biryukov November 18, 2017 Cryptacus Workshop Taken from a document writen originally in English. The programming of billions of processors

903 views • 75 slides
NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance Performance of State-of-the-Art Cryptography on ARM-based Microprocessors Hannes Tschofenig &amp; Manuel Pegourie-Gonnard (Hannes.Tschofenig@arm.com,

509 views • 40 slides
PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST Alexan Alexandre dre Adomn Adomnicai, icai, cryptograph cryptography y expert expert at at Truste Trusted d Obje Objects cts will will

174 views • 3 slides
MARK WHITE CHIEF TECHNICAL SPECIALIST LIGHTWEIGHT VEHICLE TECHNOLOGY AGENDA Light Weight

MARK WHITE CHIEF TECHNICAL SPECIALIST LIGHTWEIGHT VEHICLE TECHNOLOGY AGENDA Light Weight

LIGHTWEIGHT VEHICLE TECHNOLOGY CASTLE BROMWICH, UK 02.05.2012 MARK WHITE CHIEF TECHNICAL SPECIALIST LIGHTWEIGHT VEHICLE TECHNOLOGY AGENDA Light Weight Vehicle rationale XJ LWV Body Materials Aluminium Sheet Strategy Material

309 views • 17 slides
Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St ephanie Kerckhof, Fran cois Durvaux, C edric Hoquet, David Bol, Fran cois-Xavier Standaert CHES 2012 September 2012 UCL Crypto Group

931 views • 49 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing Intelligence (IAI), TCG CREST International Crypto-Webniar 2020 Aug 30, 2020 N. Datta (IAI, TCG CREST) Lightweight Crypto and Classification of

1.62k views • 98 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
SpOT-Light: Lightweight Private Set Intersection from Sparse OT Extension Benny Pinkas Mike

SpOT-Light: Lightweight Private Set Intersection from Sparse OT Extension Benny Pinkas Mike

SpOT-Light: Lightweight Private Set Intersection from Sparse OT Extension Benny Pinkas Mike Rosulek Ni Trieu Avishay Yanai Presented by Cui Hongrui October 18, 2019 PRTY (BIU&amp;OSU) SpOT October 18, 2019 1 / 30 Overview Introduction

1.5k views • 33 slides
On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS Innovation Labs December 11, 2017 SUMANTA SARKAR Lightweight Cryptography Internet of Things / Connected Cars Internet of things (IoT): Network of

786 views • 45 slides
Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert Staples STVM/CSD/NIST A perspective: cryptography evolves very fast to provide security in cyberspace Emerging crypto technologies - lightweight crypto

199 views • 17 slides
Lecture 4-5 : Types Dont prove correctness: just find bugs .. - model checking - light

Lecture 4-5 : Types Dont prove correctness: just find bugs .. - model checking - light

CS6202: Advanced Topics in Rise of Lightweight Formal Methods Rise of Lightweight Formal Methods Programming Languages and Systems Lecture 4-5 : Types Dont prove correctness: just find bugs .. - model checking - light specification and

615 views • 24 slides
Conventional and Lightweight IEDs Testing Mike Mekkanen mmekka@uva.fi Outline Introduction

Conventional and Lightweight IEDs Testing Mike Mekkanen mmekka@uva.fi Outline Introduction

Conventional and Lightweight IEDs Testing Mike Mekkanen mmekka@uva.fi Outline Introduction Light-weight IEDs based IEC 61850 Case study 1: Conventional and Lightweight IEDs Testing based Real-Time Hardware-in-the-Loop (HIL)

826 views • 28 slides
The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will revolutionise the international high-rise construction industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight

417 views • 12 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp; http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan

Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan

Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan Hohenberger and Ronald L. Rivest MIT Cryptography and Information Security Group Motivation To Improve/Restore the Usefulness of Email

487 views • 28 slides
The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept will revolutionise the aviation industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight applications Patent Applied For

479 views • 12 slides
What is Light ? Discussion Questions: 1) What is light? 2) How fast does light travel? 3) What

What is Light ? Discussion Questions: 1) What is light? 2) How fast does light travel? 3) What

What is Light ? Discussion Questions: 1) What is light? 2) How fast does light travel? 3) What is visible light? 4) What is our planets main source of light? electric field travels in a vertical plane What is Light? direction of travel

523 views • 4 slides
New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K. Schramm Workshop on Fast Software Encryption 2007 Outline Introduction Why lightweight? Why choose DES? DESL: DES Lightweight Why change DES?

364 views • 12 slides

More recommend