pronobis probability and nodeterminism bisimulations and
play

ProNoBis Probability and Nodeterminism, Bisimulations and Security - PowerPoint PPT Presentation

Oct 02, 2023 •145 likes •943 views

Introduction. Results Conclusion ProNoBis Probability and Nodeterminism, Bisimulations and Security Journ ee des ARCS 01 octobre 2007 Introduction. Results Conclusion Outline Introduction. 1 Non-Deterministic Choice Only

  1. Introduction. Results Conclusion ProNoBis Probability and Nodeterminism, Bisimulations and Security Journ´ ee des ARCS — 01 octobre 2007

  2. Introduction. Results Conclusion Outline Introduction. 1 Non-Deterministic Choice Only Probabilistic Choice Only Both Cryptographic Protocols Results 2 Infinite (topological) state spaces A Probabilistic Applied π -Calculus Anonymity Conclusion 3

  3. Introduction. Results Conclusion Consortium Teams: INRIA Futurs projet SECSI projet Comete ENS Cachan LSV EPITA LRDE Queen Mary U., London Dept. of Comp. Science U. Paris VII Denis Diderot Equipe de logique PPS U. di Verona Dip. di Informatica U. of Birmingham School of Comp. Science Postdoc: Angelo T ROINA , shared between Com` ete and SECSI (01 sep. 2006–31 aug. 2007).

  4. Introduction. Results Conclusion Non-Deterministic Choice Only Outline Introduction. 1 Non-Deterministic Choice Only Probabilistic Choice Only Both Cryptographic Protocols Results 2 Infinite (topological) state spaces A Probabilistic Applied π -Calculus Anonymity Conclusion 3

  5. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  6. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  7. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  8. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  9. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  10. Introduction. Results Conclusion Non-Deterministic Choice Only Non-Deterministic Choice: Semantics Halt Bad Non−deterministic choice Flip Flip 2 1 Start

  11. Introduction. Results Conclusion Probabilistic Choice Only Outline Introduction. 1 Non-Deterministic Choice Only Probabilistic Choice Only Both Cryptographic Protocols Results 2 Infinite (topological) state spaces A Probabilistic Applied π -Calculus Anonymity Conclusion 3

  12. Introduction. Results Conclusion Probabilistic Choice Only A (Finite) Markov Chain Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 0.5 0.5 Start

  13. Introduction. Results Conclusion Probabilistic Choice Only Start Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 0.5 0.5 Start

  14. Introduction. Results Conclusion Probabilistic Choice Only Flip a Coin Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 0.5 0.5 Start

  15. Introduction. Results Conclusion Probabilistic Choice Only Advance Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 Probability: 0.5 0.5 0.5 Start

  16. Introduction. Results Conclusion Probabilistic Choice Only Flip a Coin Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 0.5 0.5 Start

  17. Introduction. Results Conclusion Probabilistic Choice Only Advance Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 Probability: 0.5x0.5 = 0.25 0.5 0.5 Start

  18. Introduction. Results Conclusion Probabilistic Choice Only Advance Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 0.6 0.3 0.5 0.5 0.4 0.7 0.5 0.5 Probabilistic choice 0.5 0.5 0.5 0.5 Flip Flip 2 1 Probability: 0.25x0.3 = 0.075 0.5 0.5 Start

  19. Introduction. Results Conclusion Both Outline Introduction. 1 Non-Deterministic Choice Only Probabilistic Choice Only Both Cryptographic Protocols Results 2 Infinite (topological) state spaces A Probabilistic Applied π -Calculus Anonymity Conclusion 3

  20. Introduction. Results Conclusion Both A Stochastic Game (Demonic Case) Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  21. Introduction. Results Conclusion Both Start Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  22. Introduction. Results Conclusion Both C’s Turn: Malevolently Chooses Biased Side Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  23. Introduction. Results Conclusion Both P’s Turn: Flipping a Coin Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  24. Introduction. Results Conclusion Both P’s Turn: Advancing Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  25. Introduction. Results Conclusion Both C’s Turn: Picking Most Biased Side Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  26. Introduction. Results Conclusion Both P’s Turn Halt 0.7 0.4 0.1 0.2 Biased Good 0.2 0.4 0.3 0.6 0.5 0.5 0.7 0.4 0.5 0.5 Non−deterministic (demonic) choice (by adversary) Probabilistic choice 0.5 0.5 0.5 0.5 (by program) Flip Flip 2 1 Start

  27. Introduction. Results Conclusion Cryptographic Protocols Outline Introduction. 1 Non-Deterministic Choice Only Probabilistic Choice Only Both Cryptographic Protocols Results 2 Infinite (topological) state spaces A Probabilistic Applied π -Calculus Anonymity Conclusion 3

  28. Introduction. Results Conclusion Cryptographic Protocols Anonymity Goal : C should not be able to link agent to her actions. � = secret! Applications: e-voting : voter identities are public, candidate names are public. . . but C should not be able to tell who voted for whom. Secret sharing, file sharing (Freenet), auctions, etc.

  29. Introduction. Results Conclusion Cryptographic Protocols Anonymization Implementations: Crowds ([ReiterRubin98], sender anonymity), Onion Routing ([SyversonGoldschlagReed97], communication anonymity), Freenet ([Clarke et al.01], anonymous data storage/retrieval). Our focus : verifying anonymity properties. Previous models are either: purely non-deterministic (CSP [SchneiderSidiropoulos96], epistemic logic [SyversonStubblebine99], views [HughesShmatikov04]); or purely probabilistic (epistemic logic [HalpernONeill04]) . . . to the exception of [CanettiCheungKaynarLiskovLynchPereiraSegala’06], where non-determinism is heavily constrainted (“task-structured”).

  30. Introduction. Results Conclusion Cryptographic Protocols Our Canonical Example: Chaum’s Dining Cryptographers [1988] Problem : N ≥ 3 cryptographers share a meal; The meal is paid either by the organization (master) or one of them. The master decides who pays. Each cryptographer is informed by the master whether he has to pay or not. Goal : The cryptographers would like to decide whether one of them or the master paid. The master cannot be involved. If one of the cryptographers paid, he should remain anonymous.

  31. Introduction. Results Conclusion Cryptographic Protocols Dining Cryptographers ( N = 3)

  32. Introduction. Results Conclusion Cryptographic Protocols Chaum’s Solution Cryptographers are organized in a ring; Two adjacent cryptographers share a coin, which they flip secretly; Each cryptographer A examines the two coins he shares with his neighbors: If A is paying, A announces “agree” if the two coins agree, “disagree” otherwise. If A is not paying, A says the opposite. Fact : One of the cryptographers is paying ⇔ the number of “disagree” announced is odd . (Think in Z / 2 Z .)

  33. Introduction. Results Conclusion Cryptographic Protocols Modelling the Dining Cryptographers ( N = 3)

  34. Introduction. Results Conclusion Cryptographic Protocols Modeling Dining Cryptographers in the Probabilistic π -Calculus

Recommend

ProNoBiS Activities in Verona Roberto Segala University of Verona with Augusto Parma and Andrea

ProNoBiS Activities in Verona Roberto Segala University of Verona with Augusto Parma and Andrea

ProNoBiS Activities in Verona Roberto Segala University of Verona with Augusto Parma and Andrea Turrini ProNoBiS meeting Roberto Segala Paris, May 21 2006 1 University of Verona List of Activities Comparative semantics

220 views • 20 slides
The Fellowship of the Semiring: Concerning Bisimulations for Quantitative Systems Marino Miculan 1

The Fellowship of the Semiring: Concerning Bisimulations for Quantitative Systems Marino Miculan 1

The Fellowship of the Semiring: Concerning Bisimulations for Quantitative Systems Marino Miculan 1 (Joint work with Marco Peressotti) Laboratory of Models and Applications of Distributed Systems Dept. of Mathematics and Computer Science

1.03k views • 74 slides
BISIMULATIONS FOR DIFFERENTIAL EQUATIONS http://sysma.imtlucca.it/tools/erode/ MOTIVATION 1 2

BISIMULATIONS FOR DIFFERENTIAL EQUATIONS http://sysma.imtlucca.it/tools/erode/ MOTIVATION 1 2

MIRCO TRIBASTONE IMT SCHOOL FOR ADVANCED STUDIES LUCCA JOINT WORK WITH LUCA CARDELLI, MAX TSCHAIKOWSKI, AND ANDREA VANDIN BISIMULATIONS FOR DIFFERENTIAL EQUATIONS http://sysma.imtlucca.it/tools/erode/ MOTIVATION 1 2 3 V in 1 2 3 Fig. 2:

236 views • 22 slides
Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous

Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous

Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous CNRS, LIP, ENS Lyon POPL, Roma, 25.1.2o13 Language equivalence of finite automata Useful for model checking: check that a program refines its

1.36k views • 92 slides
COMETE Activities related to ProNoBiS The team Catuscia Palamidessi (DR INRIA) Frank Valencia

COMETE Activities related to ProNoBiS The team Catuscia Palamidessi (DR INRIA) Frank Valencia

COMETE Activities related to ProNoBiS The team Catuscia Palamidessi (DR INRIA) Frank Valencia (CR CNRS) Peng Wu (Postdoc) Sardaouna Hamadou (Future postdoc) Kostas Chatzikokolakis (PhD student) Romain Beauxis (PhD student) Purnima Gupta

505 views • 6 slides
Sum-Product Networks for Probabilistic Semantic Maps Kaiyu Zheng , Andrzej Pronobis, Rajesh Rao

Sum-Product Networks for Probabilistic Semantic Maps Kaiyu Zheng , Andrzej Pronobis, Rajesh Rao

Learning Graph-Structured Sum-Product Networks for Probabilistic Semantic Maps Kaiyu Zheng , Andrzej Pronobis, Rajesh Rao University of Washington AAAI 2018 Motivation (Robotics) Mobile Robots in Indoor Spaces Learning Graph-Structured

303 views • 28 slides
Coalgebras in Type Theory Equations CoInductive Types Bisimulations Venanzio Capretta

Coalgebras in Type Theory Equations CoInductive Types Bisimulations Venanzio Capretta

Coalgebras in Type Theory Venanzio Capretta Corecursive Coalgebras in Type Theory Equations CoInductive Types Bisimulations Venanzio Capretta Constructive Infinity Tabulations General CMCS 2010, Paphos, Cyprus Recursion Non-Standard

1.12k views • 87 slides
Unit 2: Probability and distributions Lecture 1: Probability and conditional probability

Unit 2: Probability and distributions Lecture 1: Probability and conditional probability

Unit 2: Probability and distributions Lecture 1: Probability and conditional probability Statistics 101 Thomas Leininger May 21, 2013 Announcements Announcements 1 Probability 2 Randomness Defining probability Law of large numbers

1.36k views • 76 slides
CS780 Discrete-State Models Instructor: Peter Kemper R 006, phone 221-3462, email:kemper@cs.wm.edu

CS780 Discrete-State Models Instructor: Peter Kemper R 006, phone 221-3462, email:kemper@cs.wm.edu

CS780 Discrete-State Models Instructor: Peter Kemper R 006, phone 221-3462, email:kemper@cs.wm.edu Office hours: Mon,Wed 3-5 pm Today: Some Example Bisimulations 1 References Bisimulations for CCS R. Milner, Communication and Concurrency,

579 views • 29 slides
Overview of the Lecture II Probability of what The axioms of probability Joint

Overview of the Lecture II Probability of what The axioms of probability Joint

Overview of the Lecture II Probability of what The axioms of probability Joint probability distribution Probability of propositions Notation P(x) : read probability of x-pression Expressions are statements about the

332 views • 20 slides
1 A statistical definition of probability: frequentist 2 concepts: 1. Sam ple space , S , is the

1 A statistical definition of probability: frequentist 2 concepts: 1. Sam ple space , S , is the

Probability and Likelihood, a brief introduction in support of a course on m olecular evolution ( BI OL 3 0 4 6 ) Probability The subject of probability is a branch of mathematics dedicated to building models to describe conditions of

244 views • 12 slides
Unit 2: Probability and distributions 1. Probability and conditional probability GOVT 3990 -

Unit 2: Probability and distributions 1. Probability and conditional probability GOVT 3990 -

Unit 2: Probability and distributions 1. Probability and conditional probability GOVT 3990 - Spring 2017 Cornell University Dr. Garcia-Rios Slides posted at http://garciarios.github.io/govt_3990/ Outline 1. Main ideas 1. Disjoint and

451 views • 21 slides
1 A statistical definition of probability: frequentist 2 concepts: 1. Sample space , S , is the

1 A statistical definition of probability: frequentist 2 concepts: 1. Sample space , S , is the

Probability and Likelihood, a brief introduction in support of a course on molecular evolution (BIOL 3046) Probability The subject of probability is a branch of mathematics dedicated to building models to describe conditions of uncertainty and

559 views • 12 slides
Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3.

Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3.

Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3. Probability of non-disjoint events 4. Probability of complement of an event 5. Probability of independent events 6. Probability of a conditional

363 views • 13 slides
Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3.

Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3.

Chapter 2 Probability 1. Definition of Probability 2. Probability of disjoint events 3. Probability of non-disjoint events 4. Probability of complement of an event 5. Probability of independent events 6. Probability of a conditional

182 views • 14 slides
Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when

Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when

Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when New Information Arrives Conditional Probability Traps Law of Total Probability Last Time 1 Outcome-tree method for computing probability. 2

345 views • 16 slides
Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when

Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when

Foundations of Computer Science Lecture 16 Conditional Probability Updating a Probability when New Information Arrives Conditional Probability Traps Law of Total Probability Last Time 1 Outcome-tree method for computing probability. 2

816 views • 65 slides
Outline 1. Bayes Law L7: Probability Basics 2. Probability distributions CS 344R/393R:

Outline 1. Bayes Law L7: Probability Basics 2. Probability distributions CS 344R/393R:

Outline 1. Bayes Law L7: Probability Basics 2. Probability distributions CS 344R/393R: Robotics Benjamin Kuipers 3. Decisions under uncertainty Probability Probability Theory For a proposition A , the probability p ( A ) is p (

399 views • 5 slides
Continuous Probability 3 2 Continuous Probability Motivation I Sometimes you cant model

Continuous Probability 3 2 Continuous Probability Motivation I Sometimes you cant model

Continuous Probability 3 2 Continuous Probability Motivation I Sometimes you cant model things discretely. Random real numbers. Points on a map. Time. Probability space is continuous . What is an event in continuous probability?

75 views • 7 slides
Probability Probability Up to now we have been using the assumption of equal likelyhood, we want

Probability Probability Up to now we have been using the assumption of equal likelyhood, we want

6.8, 6.9 Probability P. Danziger Probability Probability Up to now we have been using the assumption of equal likelyhood, we want a more general definition of probability. Definition 1 A probability function, P , on a sam- ple space S is a

670 views • 35 slides
P( ) 1 2 coin flipping Exampls Suppose you flip two coins & all outcomes are equally

P( ) 1 2 coin flipping Exampls Suppose you flip two coins & all outcomes are equally

10/10/16 conditional probability Conditional probability of E given F: probability that E occurs given that F has occurred. Conditional Probability Conditioning on F S Written as P(E|F) E F Means P(E, given F observed) Sample

407 views • 5 slides
P( ) 1 conditional probability where P(F) > 0 Conditional probability of E given F:

P( ) 1 conditional probability where P(F) > 0 Conditional probability of E given F:

Conditional Probability P( ) 1 conditional probability where P(F) > 0 Conditional probability of E given F: probability that E occurs given that F has occurred. Ehf F FE Conditioning on F Written as P(E|F) Ser Means P(E,

731 views • 35 slides
Lecture 15: More Probability. Summary. CS70: Onwards. Events, Conditional Probability,

Lecture 15: More Probability. Summary. CS70: Onwards. Events, Conditional Probability,

n Lecture 15: More Probability. Summary. CS70: Onwards. Events, Conditional Probability, Independence, Bayes Rule 1. Probability Basics Review Modeling Uncertainty: Probability Space 2. Events 3. Conditional Probability 1. Random

543 views • 7 slides
Conditional Probability We always use all available information when we assess the probability of

Conditional Probability We always use all available information when we assess the probability of

ST 380 Probability and Statistics for the Physical Sciences Conditional Probability We always use all available information when we assess the probability of some event. For example, consider this experiment: choose a day at random from the

455 views • 11 slides

More recommend