post quantum cryptography
play

Post-quantum cryptography Daniel J. Bernstein Turing, 1950 I have - PowerPoint PPT Presentation

Dec 05, 2022 •1.7k likes •2.74k views

Post-quantum cryptography Daniel J. Bernstein Turing, 1950 I have set up on the Manchester computer a small programme using only 1000 units of storage, whereby the machine supplied with one sixteen figure number replies with another within

  1. Post-quantum cryptography Daniel J. Bernstein

  2. Turing, 1950 “I have set up on the Manchester computer a small programme using only 1000 units of storage, whereby the machine supplied with one sixteen figure number replies with another within two seconds. I would defy anyone to learn from these replies sufficient about the programme to be able to predict any replies to untried values.” Post-quantum cryptography Daniel J. Bernstein

  4. Turing, 1950 “I have set up on the Manchester computer a small programme using only 1000 units of storage, whereby the machine supplied with one sixteen figure number replies with another within two seconds. I would defy anyone to learn from these replies sufficient about the programme to be able to predict any replies to untried values.” Post-quantum cryptography Daniel J. Bernstein

  5. Let’s try playing this game . . . Post-quantum cryptography Daniel J. Bernstein

  6. Let’s try playing this game . . . How long do we have to figure out the pattern? Post-quantum cryptography Daniel J. Bernstein

  7. Let’s try playing this game . . . How long do we have to figure out the pattern? Turing: “. . . within a reasonable time, say a thousand years . . . ” (emphasis added) Post-quantum cryptography Daniel J. Bernstein

  8. � An input 0000000000000000 Post-quantum cryptography Daniel J. Bernstein

  9. � � An input and a response 0000000000000000 2771478205812714 Post-quantum cryptography Daniel J. Bernstein

  10. � Same input again 0000000000000000 Post-quantum cryptography Daniel J. Bernstein

  11. � � Same input again ⇒ same response again 0000000000000000 2771478205812714 Post-quantum cryptography Daniel J. Bernstein

  12. � � Another input and a response 0000000000000001 1993902994537966 Post-quantum cryptography Daniel J. Bernstein

  13. � � Another input and a response 0000000000000002 0047824705410258 Post-quantum cryptography Daniel J. Bernstein

  14. � � Another input and a response 0000000000000003 7099425139525989 Post-quantum cryptography Daniel J. Bernstein

  15. � � Another input and a response 9999999999999999 2263574462999230 Post-quantum cryptography Daniel J. Bernstein

  16. � � Another input and a response 1234567890123456 6875191900966771 Post-quantum cryptography Daniel J. Bernstein

  17. � � Another input and a response 2718281828459045 0396459415367563 Post-quantum cryptography Daniel J. Bernstein

  18. � Why is this game important? Optimistic view of science: Perfect Reality match! Observations � Theory of behavior Scientists of reality Post-quantum cryptography Daniel J. Bernstein

  19. � Why is this game important? Optimistic view of science: Perfect Reality match! Observations � Theory of behavior Scientists of reality Turing is saying: This doesn’t always work. Post-quantum cryptography Daniel J. Bernstein

  20. Why is this game important? Turing predicts: We will be able to build a computer so that the computer’s responses to text messages are indistinguishable from a human’s responses. Post-quantum cryptography Daniel J. Bernstein

  21. Why is this game important? Turing predicts: We will be able to build a computer so that the computer’s responses to text messages are indistinguishable from a human’s responses. Objection: 1. We can figure out machines from their behavior. Post-quantum cryptography Daniel J. Bernstein

  22. Why is this game important? Turing predicts: We will be able to build a computer so that the computer’s responses to text messages are indistinguishable from a human’s responses. Objection: 1. We can figure out machines from their behavior. 2. We cannot figure out humans. Post-quantum cryptography Daniel J. Bernstein

  23. Why is this game important? Turing predicts: We will be able to build a computer so that the computer’s responses to text messages are indistinguishable from a human’s responses. Objection: 1. We can figure out machines from their behavior. 2. We cannot figure out humans. 3. Ergo, humans do not behave like machines. Post-quantum cryptography Daniel J. Bernstein

  24. Why is this game important? Turing predicts: We will be able to build a computer so that the computer’s responses to text messages are indistinguishable from a human’s responses. Objection: 1. We can figure out machines from their behavior. 2. We cannot figure out humans. 3. Ergo, humans do not behave like machines. Turing’s response: #1 doesn’t always work. Post-quantum cryptography Daniel J. Bernstein

  25. A strategy to beat Turing at his own game 1. Build a computer that imitates a human. Success! We can’t tell the difference. Post-quantum cryptography Daniel J. Bernstein

  26. A strategy to beat Turing at his own game 1. Build a computer that imitates a human. Success! We can’t tell the difference. 2. Build a computer that imitates Turing. Success! We can’t tell the difference. Post-quantum cryptography Daniel J. Bernstein

  27. A strategy to beat Turing at his own game 1. Build a computer that imitates a human. Success! We can’t tell the difference. 2. Build a computer that imitates Turing. Success! We can’t tell the difference. 3. Ask the computer to produce Turing’s program. Success! We now have a copy of Turing’s program. Post-quantum cryptography Daniel J. Bernstein

  28. A strategy to beat Turing at his own game 1. Build a computer that imitates a human. Success! We can’t tell the difference. 2. Build a computer that imitates Turing. Success! We can’t tell the difference. 3. Ask the computer to produce Turing’s program. Success! We now have a copy of Turing’s program. 4. Run our copy of the program on more inputs. Success! We’ve won the game. Post-quantum cryptography Daniel J. Bernstein

  29. This strategy doesn’t work Turing generated a random number . His program uses that number in the secret computations producing each response. Post-quantum cryptography Daniel J. Bernstein

  30. This strategy doesn’t work Turing generated a random number . His program uses that number in the secret computations producing each response. If we build a full simulation of the Earth, including a complete simulation of Turing, our simulation of Turing’s program will have a new random number . Post-quantum cryptography Daniel J. Bernstein

  31. The program I actually used import hashlib, codecs def hash(seed): h = hashlib.sha512() h.update(seed.encode(’utf8’)) return h.digest() def response(input): secret = ’935022901194106739696580346090’ h = hash(secret + str(input) + secret) i = int(codecs.encode(h,’hex’),16) return str(i)[-16:] Post-quantum cryptography Daniel J. Bernstein

  32. Why is this game important? (part 2) Alice sends vote tally (15117 yes, 42682 no) to Bob: 0001511700042682 � Post-quantum cryptography Daniel J. Bernstein

  33. Why is this game important? (part 2) Alice sends vote tally (15117 yes, 42682 no) to Bob: 0001511700042682 � Network between Alice and Bob has been hacked. Post-quantum cryptography Daniel J. Bernstein

  34. Why is this game important? (part 2) How does Bob know this message is from Alice? 0001511700042682 � Network between Alice and Bob has been hacked. Post-quantum cryptography Daniel J. Bernstein

  35. Why is this game important? (part 2) How does Bob know this message is from Alice? Alice includes an extra number with the message. 8817689747809004 0001511700042682 � Network between Alice and Bob has been hacked. Post-quantum cryptography Daniel J. Bernstein

  36. � � Why is this game important? (part 2) Alice’s extra number comes from the program. 0001511700042682 8817689747809004 Post-quantum cryptography Daniel J. Bernstein

  37. � � � � Why is this game important? (part 2) Alice’s extra number comes from the program. 0001511700042682 0001511700042682 8817689747809004 8817689747809004 Post-quantum cryptography Daniel J. Bernstein

  38. � � � � � � Why is this game important? (part 2) Alice’s extra number comes from the program. 0001511700042682 0001611700041682 0001511700042682 8817689747809004 8817689747809004 ? Post-quantum cryptography Daniel J. Bernstein

  39. Where do Alice and Bob get the program? They don’t have copies of Turing’s program. Post-quantum cryptography Daniel J. Bernstein

  40. Where do Alice and Bob get the program? They don’t have copies of Turing’s program. They have my program, but attacker has it too. Post-quantum cryptography Daniel J. Bernstein

  41. Where do Alice and Bob get the program? They don’t have copies of Turing’s program. They have my program, but attacker has it too. They could make their own program. Why do they think the outputs are hard to predict? Post-quantum cryptography Daniel J. Bernstein

  42. Where do Alice and Bob get the program? They don’t have copies of Turing’s program. They have my program, but attacker has it too. They could make their own program. Why do they think the outputs are hard to predict? Need security auditors saying “This is hard”. Post-quantum cryptography Daniel J. Bernstein

Recommend

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About Cryptographic Standards History of post-quantum cryptography 2003 Daniel J. Bernstein introduces term Post-quantum cryptography. PQCrypto 2006:

623 views • 23 slides
Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers can break public-key cryptography that is based on assuming hardness of factoring, discrete logs, and a few other problems I Post-quantum

2.98k views • 37 slides
Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

R. van der Gaag, D. Weller Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why think about post-quantum cryptography W. Buchanan et. al concluded Gate-based quantum computers pose a significant

349 views • 18 slides
SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design

SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design

SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design Methodologies Farnoud Farahmand, Duc Tri Nguyen, Viet B. Dang*, Ahmed Ferozpuri and Kris Gaj George Mason University Post st-Quantum Quantum

441 views • 14 slides
Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information

1.95k views • 154 slides
From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren

From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren

Quantum computers and factoring Learning with errors Cryptography from LWE From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren frederik.vercauteren@gmail.com Open Security Research (China) ESAT/COSIC - KU Leuven

1.34k views • 70 slides
An Overview on Post-Quantum Cryptography with an Emphasis on Code based Systems Joachim Rosenthal

An Overview on Post-Quantum Cryptography with an Emphasis on Code based Systems Joachim Rosenthal

Basics on Public Key Crypto Systems Research Directions in Post-Quantum Cryptography Variants of McEliece System Distinguisher Attacks McEliece for Rank Metric Codes An Overview on Post-Quantum Cryptography with an Emphasis on Code based

1.05k views • 100 slides
Introduction to post-quantum cryptography I Tanja Lange Technische Universiteit Eindhoven

Introduction to post-quantum cryptography I Tanja Lange Technische Universiteit Eindhoven

Introduction to post-quantum cryptography I Tanja Lange Technische Universiteit Eindhoven Executive School on Post-Quantum Cryptography 01 July 2019 Cryptography Motivation #1: Communication channels are spying on our data. Motivation

728 views • 42 slides
The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum

The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum

The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum Crypto JP Aumasson uantum /me 15 years experience in applied cryptography (PhD, industry, consulting) Designed widely used algorithms Author of the

816 views • 52 slides
Implementing post-quantum cryptography Peter Schwabe Radboud University, Nijmegen, The

Implementing post-quantum cryptography Peter Schwabe Radboud University, Nijmegen, The

Implementing post-quantum cryptography Peter Schwabe Radboud University, Nijmegen, The Netherlands June 28, 2018 PQCRYPTO Mini-School 2018, Taipei, Taiwan Part I: How to make software secure Implementing post-quantum cryptography 2 Timing

1.44k views • 116 slides
Post-quantum cryptography Tanja Lange 02 October 2015 Academy Contact Forum Coding Theory and

Post-quantum cryptography Tanja Lange 02 October 2015 Academy Contact Forum Coding Theory and

Post-quantum cryptography Tanja Lange 02 October 2015 Academy Contact Forum Coding Theory and Cryptography VI In the long term, all encryption needs to be post-quantum Mark Ketchen, IBM Research, 2012, on quantum computing: Were

854 views • 42 slides
Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers

Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers

Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers Using quantum states for computation: Introduced in 1985 by David Deutsch [3]. Operate on qubits using gates that perform reversible

1.69k views • 157 slides
Post-quantum cryptography Tanja Lange (with Daniel J. Bernstein) Technische Universiteit

Post-quantum cryptography Tanja Lange (with Daniel J. Bernstein) Technische Universiteit

Post-quantum cryptography Tanja Lange (with Daniel J. Bernstein) Technische Universiteit Eindhoven 17 January 2016 8th Winter School on Quantum Cybersecurity Cryptography Motivation #1: Communication channels are spying on our

894 views • 68 slides
Part I: Introduction to Post Quantum Cryptography Tutorial@CHES 2017 - Taipei Tim Gneysu

Part I: Introduction to Post Quantum Cryptography Tutorial@CHES 2017 - Taipei Tim Gneysu

Part I: Introduction to Post Quantum Cryptography Tutorial@CHES 2017 - Taipei Tim Gneysu Ruhr-Universitt Bochum & DFKI 04.10.2017 Overview Goals Provide a high-level introduction to Post-Quantum Cryptography (PQC)

1.18k views • 113 slides
Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all

Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all

Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all encryption needs to be post-quantum Mark Ketchen, IBM Research, 2012, on quantum computing: Were actually doing things that are making us think like,

901 views • 41 slides
Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic

Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic

Quantum Cryptography Lecture 26 Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information (and generate

455 views • 19 slides
Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography ECRYPT-CSA Executive School on Post-Quantum Cryptography 2017 TU Eindhoven Nicolas Sendrier Linear Codes for Telecommunication linear expansion data codeword k n > k noisy channel noisy

783 views • 52 slides
Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at

Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at

Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at Chicago; Ruhr University Bochum & Technische Universiteit Eindhoven 12 September 2020 Cryptography Sender Receiver Alice Bob Tsai

760 views • 48 slides
BIK IKE - Bi Bit-Flipping Key Encapsulation Presented to the 2 nd NIST Post-Quantum Cryptography

BIK IKE - Bi Bit-Flipping Key Encapsulation Presented to the 2 nd NIST Post-Quantum Cryptography

BIK IKE - Bi Bit-Flipping Key Encapsulation Presented to the 2 nd NIST Post-Quantum Cryptography Standardization Conference August, 24 th 2019, Santa Barbara, California, USA Authors: Affiliations: Nicolas Aragon University of Limoges, France

291 views • 14 slides
Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1

Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1

Mathematical Methods for Cryptography 2017, Svolvaer, Lofoten, Norway 1 / 41 Code-Based Post-Quantum Cryptography Wijik Lee 1 , Young-Sik Kim 2 , and Jong-Seon No 1 1 Department of ECE, INMC, Seoul National University, Seoul, Korea 2 Chosun

565 views • 41 slides
Post-quantum cryptography Daniel J. Bernstein 1 Tanja Lange 1 Peter Schwabe 2 Technische

Post-quantum cryptography Daniel J. Bernstein 1 Tanja Lange 1 Peter Schwabe 2 Technische

Post-quantum cryptography Daniel J. Bernstein 1 Tanja Lange 1 Peter Schwabe 2 Technische Universiteit Eindhoven Radboud University 08 September 2016 Cryptography Motivation #1: Communication channels are spying on our data.

1.34k views • 117 slides
Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU

Code-based Cryptography PQCRYPTO Summer School on Post-Quantum Cryptography 2017 TU Eindhoven Nicolas Sendrier Linear Codes for Telecommunication linear expansion data codeword k n > k noisy channel noisy codeword

916 views • 74 slides
PQCHacks: a gentle introduction to post-quantum cryptography Daniel J. Bernstein 1 , 2 Tanja Lange

PQCHacks: a gentle introduction to post-quantum cryptography Daniel J. Bernstein 1 , 2 Tanja Lange

PQCHacks: a gentle introduction to post-quantum cryptography Daniel J. Bernstein 1 , 2 Tanja Lange 1 1 Technische Universiteit Eindhoven 2 University of Illinois at Chicago 27 December 2015 D-Wave quantum computer isnt universal . . .

789 views • 65 slides
Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at Chicago

Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at Chicago

Post-quantum cryptography Daniel J. Bernstein & Tanja Lange University of Illinois at Chicago & Ruhr University Bochum & Technische Universiteit Eindhoven 10 June 2019 Cryptography Motivation #1: Communication channels are spying

1.17k views • 91 slides

More recommend