re linearization and elimination of variables in boolean
play

Re-linearization and elimination of variables in Boolean equation - PowerPoint PPT Presentation

Apr 08, 2023 •159 likes •834 views

Re-linearization and elimination of variables in Boolean equation systems Bjrn Mller Greve 1 , 2 avard Raddum 2 yvind Ytrehus 2 H 1 Norwegian Defence Research Establishment 2 Simula@UiB 4 September, 2017 Introduction previous work

  1. Re-linearization and elimination of variables in Boolean equation systems Bjørn Møller Greve 1 , 2 avard Raddum 2 Øyvind Ytrehus 2 H˚ 1 Norwegian Defence Research Establishment 2 Simula@UiB 4 September, 2017

  2. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  3. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  4. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  5. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  6. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  7. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  8. Introduction previous work Generalization of Previous work Elimination techniques Examples Eliminating variables in Boolean equation systems Elimination of variables from Boolean functions • Consider the Boolean ring B [1 , n ] = F 2 [ x 1 , . . . , x n ] / ( x 2 i + x i | i = 1 , . . . , n ) • ′ f 1 ( x 1 , . . . , x n ) = 0 f 1 ( x 2 , . . . , x n ) = 0 . . . . . − → . ′ f m ( x 1 , . . . , x n ) = 0 f m ( x 2 , . . . , x n ) = 0 • Eliminate x 1 s.th ( a 1 , . . . , a n ) solution in left system = ⇒ ( a 2 , . . . , a n ) is solution in right system. Applications to ciphers • Describe cipher as quadratic Boolean equation system. • Variables: Secret key K + auxiliary variables (To keep equations simple) • Is it possible to eliminate auxiliary variables and find some equations in only key variables? Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 1 / 12

  9. Introduction previous work Generalization of Previous work Elimination techniques Examples If we are so lucky to find any (low degree) polynomials after elimination The general method: • Save intermediate systems after each elimination. • Brute force possible solutions of final system, lift through intermediate systems to filter out false solutions. The block cipher method: Repeating the process of variable elimination using other known plaintext/ciphertext pairs and build up a low-degree system of equations in only user-selected key variables that has K as a unique solution. Re-linearization Solve by re-linearization if we can generate more linearly independent polynomials (in some acceptable degree) than there are monomials. Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 2 / 12

  10. Introduction previous work Generalization of Previous work Elimination techniques Examples If we are so lucky to find any (low degree) polynomials after elimination The general method: • Save intermediate systems after each elimination. • Brute force possible solutions of final system, lift through intermediate systems to filter out false solutions. The block cipher method: Repeating the process of variable elimination using other known plaintext/ciphertext pairs and build up a low-degree system of equations in only user-selected key variables that has K as a unique solution. Re-linearization Solve by re-linearization if we can generate more linearly independent polynomials (in some acceptable degree) than there are monomials. Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 2 / 12

  11. Introduction previous work Generalization of Previous work Elimination techniques Examples If we are so lucky to find any (low degree) polynomials after elimination The general method: • Save intermediate systems after each elimination. • Brute force possible solutions of final system, lift through intermediate systems to filter out false solutions. The block cipher method: Repeating the process of variable elimination using other known plaintext/ciphertext pairs and build up a low-degree system of equations in only user-selected key variables that has K as a unique solution. Re-linearization Solve by re-linearization if we can generate more linearly independent polynomials (in some acceptable degree) than there are monomials. Re-linearization and elimination of variables in Boolean equation systems | B. Greve, H.Raddum, Ø.Ytrehus 2 / 12

Recommend

Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 ,

Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 ,

Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 , . . . , x n be boolean variables. Boolean Function of Arity n Semantics and Verification 2005 Abstract Syntax for Boolean Expressions ( x ranges

382 views • 4 slides
Satisfiability Sat and 3sat Consider a set of boolean variables x 1 , x 2 , . . . x n . Sat :

Satisfiability Sat and 3sat Consider a set of boolean variables x 1 , x 2 , . . . x n . Sat :

CS500 CS500 Satisfiability Sat and 3sat Consider a set of boolean variables x 1 , x 2 , . . . x n . Sat : Instance: A CNF formula . A literal is either a boolean variable x i or its negation x i . Question: Is there a truth assignment to the

332 views • 4 slides
1 Characters Boolean A char variable stores a single character A boolean value represents

1 Characters Boolean A char variable stores a single character A boolean value represents

CSC 2014 Java Bootcamp Lecture 2 Variables, Expressions, I/O & Control VARIABLES & EXPRESSIONS 2 Variables Variable Initialization A variable is a name for a location in memory A variable can be given an initial value in the

105 views • 10 slides
Advanced Algorithms k -SAT n Boolean variables: x 1 , x 2 ,..., x n

Advanced Algorithms k -SAT n Boolean variables: x 1 , x 2 ,..., x n

Advanced Algorithms k -SAT n Boolean variables: x 1 , x 2 ,..., x n {true,false} conjunctive normal form: k -CNF = C 1 C 2 C m Is satisfiable? m clauses: C 1 , C 2 ,..., C m

1.02k views • 42 slides
Overview 1. Linearization 2. Examples of linearization 3. Example with Mathematica 4.

Overview 1. Linearization 2. Examples of linearization 3. Example with Mathematica 4.

BUILDING UP VIRTUAL MATHEMATICS LABORATORY Partnership project LLP-2009-LEO- P-09, MP 09-05414 Linearization and Differentials 1/37 ------------------ Snezhana Gocheva-Ilieva, Plovdiv University, 2011 --------------------- Overview 1.

626 views • 37 slides
Truth and Logic Brief Introduction to Boolean Variables INFO-1301, Quantitative Reasoning 1

Truth and Logic Brief Introduction to Boolean Variables INFO-1301, Quantitative Reasoning 1

Truth and Logic Brief Introduction to Boolean Variables INFO-1301, Quantitative Reasoning 1 University of Colorado Boulder February 13, 2017 Prof. Michael Paul Prof. William Aspray Overview This lecture will introduce boolean

494 views • 24 slides
W4231: Analysis of Algorithms Boolean Formulae 11/23/99 A Boolean formula is an expression that

W4231: Analysis of Algorithms Boolean Formulae 11/23/99 A Boolean formula is an expression that

W4231: Analysis of Algorithms Boolean Formulae 11/23/99 A Boolean formula is an expression that we can build starting from Boolean variables x 1 , . . . , x n , . . . and then using (AND) NP-completeness of 3SAT, Minimum Vertex

230 views • 5 slides
boolean variables Comparing objects, like Strings Do NOT use == to test equality A

boolean variables Comparing objects, like Strings Do NOT use == to test equality A

boolean variables Comparing objects, like Strings Do NOT use == to test equality A primitive type to store true or false That just compares references! For example, e.g., boolean done = false; String s1 = dog; String

395 views • 4 slides
Linearization Error Polina Zheglova DNOISE Seminar, October 16, 2013 1/7 Linearization Error

Linearization Error Polina Zheglova DNOISE Seminar, October 16, 2013 1/7 Linearization Error

Linearization Error Polina Zheglova DNOISE Seminar, October 16, 2013 1/7 Linearization Error Velocity Model c = v + v v = vr v = v ( z ) is smooth r = r ( z ) is oscillatory random Standard deviation of r is 5% 2/7 Linearization Error

363 views • 7 slides
Propositional models Start with a fixed number of boolean variables called the vocabulary : e.g. a

Propositional models Start with a fixed number of boolean variables called the vocabulary : e.g. a

1/22/2010 Propositional models Start with a fixed number of boolean variables called the vocabulary : e.g. a , b , c . Each boolean Historical models of computation variable represents a proposition, for example "today it is raining".

416 views • 6 slides
Dead Code Elimination (DCE) Dead code elimination is an optimization that removes DEAD

Dead Code Elimination (DCE) Dead code elimination is an optimization that removes DEAD

Dead Code Elimination (DCE) Dead code elimination is an optimization that removes DEAD variables A variable that is defined and not LIVE OUT is DEAD do { computeLiveness() foreach instruction I { if (defs.contains(I) &&

599 views • 12 slides
Math 211 Math 211 Lecture #36 The Use of the Linearization November 19, 2003 2 Linearization

Math 211 Math 211 Lecture #36 The Use of the Linearization November 19, 2003 2 Linearization

1 Math 211 Math 211 Lecture #36 The Use of the Linearization November 19, 2003 2 Linearization of a Planar System Linearization of a Planar System x = f ( x, y ) y = g ( x, y ) Assume ( x 0 , y 0 ) is an equilibrium point, so f (

251 views • 4 slides
Variables & References Variables with primitive types: Primitive types Lower

Variables & References Variables with primitive types: Primitive types Lower

Variables & References Variables with primitive types: Primitive types Lower case names int, float, double, boolean, Declare variables: <type name> <variableName>; Memory will be allocated to

399 views • 12 slides
Introduction to Programming Python Lab 6: Relational Operators and Boolean Variables PythonLab6

Introduction to Programming Python Lab 6: Relational Operators and Boolean Variables PythonLab6

Introduction to Programming Python Lab 6: Relational Operators and Boolean Variables PythonLab6 lecture slides.ppt 1 5 November 2019 or Ping Brennan (p.brennan@bbk.ac.uk) 21 February 2020 Getting Started Create a new folder in your

535 views • 17 slides
Definitions Boolean set: B 0 , 1 Boolean constants: 0, 1 Boolean variable: x 0

Definitions Boolean set: B 0 , 1 Boolean constants: 0, 1 Boolean variable: x 0

Computer Architecture applied computer science 03.01 Boolean algebra urbino worldwide campus 03 Logic networks 03.01 Boolean algebra Definitions Boolean

489 views • 6 slides
Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 ,

Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 ,

Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 , x 2 , . . . } a countably infinite variables, each can be true or false . Logical connectivities: : logical or; : logical and; :

517 views • 17 slides
Eliminating variables in Boolean equation systems Bjrn Mller Greve 1 , 2 avard Raddum 2 Gunnar

Eliminating variables in Boolean equation systems Bjrn Mller Greve 1 , 2 avard Raddum 2 Gunnar

Eliminating variables in Boolean equation systems Bjrn Mller Greve 1 , 2 avard Raddum 2 Gunnar Flystad 3 yvind Ytrehus 2 H 1 Norwegian Defence Research Establishment 2 Simula@UiB 3 Dept. of Mathematics, UiB July 5, 2017 Introduction and

1.21k views • 103 slides
Linearization and system equilibrium Daniele Carnevale Dipartimento di Ing. Civile ed Ing.

Linearization and system equilibrium Daniele Carnevale Dipartimento di Ing. Civile ed Ing.

Equilibrium pair Linearization Linearization and system equilibrium Daniele Carnevale Dipartimento di Ing. Civile ed Ing. Informatica (DICII), University of Rome Tor Vergata Fondamenti di Automatica e Controlli Automatici A.A. 2014-2015

413 views • 5 slides
FourierSAT: A Fourier Expansion-Based Algebraic Framework for Solving Hybrid Boolean Constraints

FourierSAT: A Fourier Expansion-Based Algebraic Framework for Solving Hybrid Boolean Constraints

FourierSAT: A Fourier Expansion-Based Algebraic Framework for Solving Hybrid Boolean Constraints 1 Background: SATisfiability Problem Variables: Connectives: Literals: Formula: Model: an assignment with -1/1s of variables

445 views • 26 slides
m Equations in n Unknowns Given n variables x 1 , x 2 , . . . , x n and n +1 constants a 1 , a 2 ,

m Equations in n Unknowns Given n variables x 1 , x 2 , . . . , x n and n +1 constants a 1 , a 2 ,

1.2 Gaussian Elimination P. Danziger m Equations in n Unknowns Given n variables x 1 , x 2 , . . . , x n and n +1 constants a 1 , a 2 , . . . , a n , b the equation a 1 x 1 + a 2 x 2 + . . . + a n x n = b represents an n 1 dimensional object

504 views • 22 slides
Theory of Computation Chapter 4: Boolean Logic Guan-Shieng Huang Apr. 7, 2003 Feb. 19, 2006

Theory of Computation Chapter 4: Boolean Logic Guan-Shieng Huang Apr. 7, 2003 Feb. 19, 2006

Theory of Computation Chapter 4: Boolean Logic Guan-Shieng Huang Apr. 7, 2003 Feb. 19, 2006 0-0 Boolean Expressions X = { x 1 , x 2 , . . . } a countably infinite variables, each can be true or false . Logical connectivities:

1.1k views • 23 slides
Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London

Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London

Software and Programming I Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London Outline The if statement Comparing numbers and strings Nested branches Boolean variables and expressions Sections

578 views • 30 slides
Boolean Algebra Chapter 3 Boolean Values Introduction Boolean Operations Fundamental Operators

Boolean Algebra Chapter 3 Boolean Values Introduction Boolean Operations Fundamental Operators

Boolean Algebra Chapter 3 Boolean Values Introduction Boolean Operations Fundamental Operators Boolean Operations Binary Boolean Operators Boolean Algebra Precedence of Operators Boolean Algebra Function Evaluation Boolean Algebra Basic

485 views • 32 slides
On Division Versus Saturation in Pseudo-Boolean Solving Stephan Gocht , Jakob Nordstr om, Amir

On Division Versus Saturation in Pseudo-Boolean Solving Stephan Gocht , Jakob Nordstr om, Amir

On Division Versus Saturation in Pseudo-Boolean Solving Stephan Gocht , Jakob Nordstr om, Amir Yehudayoff 21.05.2019 The SAT Problem find assignment to Boolean variables that satisfies constraints SAT expressive formalism captures

776 views • 48 slides

More recommend