reverse cycle walking and its applications
play

Reverse Cycle Walking and its Applications Sarah Miracle and Scott - PowerPoint PPT Presentation

Jan 21, 2023 •150 likes •881 views

Reverse Cycle Walking and its Applications Sarah Miracle and Scott Yilek University of St. Thomas Format Preserving Encryption Example: Existing database with millions of US social security numbers 9 digit numbers First 3 digits

  1. Reverse Cycle Walking and its Applications Sarah Miracle and Scott Yilek University of St. Thomas

  2. Format Preserving Encryption Example: Existing database with millions of US social security numbers • 9 digit numbers • First 3 digits can’t be 666 • And more . . .

  3. Format Preserving Encryption Example: Existing database with millions of US social security numbers • 9 digit numbers • First 3 digits can’t be 666 • And more . . . How to add encryption?

  4. Format Preserving Encryption Example: Existing database with millions of US social security numbers How to add encryption?

  5. Format Preserving Encryption Example: Existing database with millions of US social security numbers How to add encryption? • Represent SSN as 30-bit numbers • Pad with zeros • Encrypt using a standard block cipher (e.g. AES)

  6. Format Preserving Encryption Example: Existing database with millions of US social security numbers How to add encryption? • Represent SSN as 30-bit numbers • Pad with zeros • Encrypt using a standard block cipher (e.g. AES) Encrypted numbers have a significantly different format!

  7. Format Preserving Encryption Format Preserve Encryption schemes: Encryption schemes in which ciphertexts have the same format as plaintexts. Name SSN Encrypted SSN Alan Johnson 845-10-3814 942-54-3210 Brianna Smith 143-66-9875 771-98-1094 ??? Catherine Jones 333-79-0123 574-30-9214 Douglas Wilson 593-58-2057 889-01-4884

  8. Talk Outline • Background and Previous Work • Our Algorithm • Proof Outline

  9. Background

  10. Background • Small-domain block ciphers for bitstrings or integers up to N

  11. Background • Small-domain block ciphers for bitstrings or integers up to N [Hoang, Morris, Rogaway ’12], [Ristenpart, Yilek ‘13], [Morris,Rogaway ’14] . . . .

  12. Background • Small-domain block ciphers for bitstrings or integers up to N [Hoang, Morris, Rogaway ’12], [Ristenpart, Yilek ‘13], [Morris,Rogaway ’14] . . . . • If the target set S has an efficient way to rank/unrank then you can use a cipher on {0,…., |S| - 1}

  13. Background • Small-domain block ciphers for bitstrings or integers up to N [Hoang, Morris, Rogaway ’12], [Ristenpart, Yilek ‘13], [Morris,Rogaway ’14] . . . . • If the target set S has an efficient way to rank/unrank then you can use a cipher on {0,…., |S| - 1} We’ll only assume we can test membership in our target domain set S

  14. General Approach 1. Find a cipher on a larger set T 2. Transform it to a cipher on a smaller set S Example: Social Security Numbers • Let T be the set of 30-bit strings (10 9 < 2 30 ) • There are many block ciphers to encipher 30-bit strings

  15. Cycle Walking 1. Find a cipher on a larger set T 2. Transform it to a cipher on a smaller set S

  16. Cycle Walking 1. Find a cipher on a larger set T 2. Transform it to a cipher on a smaller set S Algorithm CW π (x): do x π(x) while(x S) ∉ return x

  17. Cycle Walking - Example Algorithm CW π (x): T = {0,...,9} do S = {0,2,4,6,8} x π(x) while(x S) ∉ return x Consider the cycle structure: (9 4 6 5 1 0) (3 2 7 8) Permutation on T (9 4 6 5 1 0) (3 2 7 8) (4 6 0) (2 8) Permutation on S

  18. Running Time of Cycle Walking Formally analyzed by Black and Rogaway [CT-RSA 2002]

  19. Running Time of Cycle Walking Formally analyzed by Black and Rogaway [CT-RSA 2002] • Small expected running time – O(1) (assuming |S| is a constant fraction of |T| )

  20. Running Time of Cycle Walking Formally analyzed by Black and Rogaway [CT-RSA 2002] • Small expected running time – O(1) (assuming |S| is a constant fraction of |T| ) • Worst case running time of Θ(|T|)

  21. Running Time of Cycle Walking Formally analyzed by Black and Rogaway [CT-RSA 2002] • Small expected running time – O(1) (assuming |S| is a constant fraction of |T| ) • Worst case running time of Θ(|T|) • Different run times can leak timing information • If the adversary has access to ciphertexts, # cycle- walking steps then not damaging [Bellare, Ristenpart, Rogaway, Stegers ‘09] • In general?

  22. Running Time of Cycle Walking Formally analyzed by Black and Rogaway [CT-RSA 2002] • Small expected running time – O(1) (assuming |S| is a constant fraction of |T| ) • Worst case running time of Θ(|T|) • Different run times can leak timing information • If the adversary has access to ciphertexts, # cycle- walking steps then not damaging [Bellare, Ristenpart, Rogaway, Stegers ‘09] • In general? Can we do better?

  23. Talk Outline • Background and Previous Work • Our Algorithm – an alternative to cycle walking • Proof Outline

  24. First Approach T = {0,...,9} S = {0,2,4,6,8} Consider the cycle structure: (4 1 3 5 7 0 2 9 6 8) Permutation on T

  25. First Approach T = {0,...,9} S = {0,2,4,6,8} Consider the cycle structure: (4 1 3 5 7 0 2 9 6 8) Permutation on T Idea: Cut-off Cycle Walking Early

  26. Reverse Cycle Walking T = {0,...,9} S = {0,2,4,6,8} Consider the cycle structure: (4 1 3 5 7 0 2 9 6 8) (4 1 3 5 7 0 2 9 6 8) (6 8 4) (0 2) Our Algorithm: Walk backward

  27. Reverse Cycle Walking T = {0,...,9} S = {0,2,4,6,8} Consider the cycle structure: (4 1 3 5 7 0 2 9 6 8) (4 1 3 5 7 0 2 9 6 8) (4) (8) (6) (0 2) (6 8 4) (0 2) + only consider 2-cycles Our Algorithm: Walk backward

  28. Another Example T = {0,...,9} S = {0,2,4,6,8} Consider the cycle structure: (9 4 6 5 1 0) (3 2 7 8) Permutation on T (9 4 6 5 1 0) (3 2 7 8) (4 6) (0) (2) (8) Permutation on S

  29. Reverse Cycle Walking Algorithm RCW π,B (x): y π(x); z π -1 (x) if y S and z S and π(y) S: ∈ ∉ ∉ b B(x) if b = 1 return y else return x else if y S and z S and π -1 (z) S: ∉ ∉ ∈ b B(z) if b = 1 return z else return x else return x

  30. Running Time of RCW

  31. Running Time of RCW • 1 Step of RCW takes O(1) time

  32. Running Time of RCW • 1 Step of RCW takes O(1) time • But, even if π is random, RCW π is NOT random

  33. Running Time of RCW • 1 Step of RCW takes O(1) time • But, even if π is random, RCW π is NOT random How many rounds of RCW are needed before the resulting permutation on S is close to random?

  34. Running Time of RCW • 1 Step of RCW takes O(1) time • But, even if π is random, RCW π is NOT random How many rounds of RCW are needed before the resulting permutation on S is close to random? This is a Markov chain!

  35. Running Time of RCW • 1 Step of RCW takes O(1) time • But, even if π is random, RCW π is NOT random How many rounds of RCW are needed before the resulting permutation on S is close to random? This is a Markov chain! Answer: O(log |T|)

  36. Advantages of RCW

  37. Advantages of RCW • Lower worst case running time - O(n) n) to O( O(log n n)

  38. Advantages of RCW • Lower worst case running time - O(n) n) to O(log n) n) • No leaked timing information

  39. Advantages of RCW • Lower worst case running time - O(n) n) to O(log n) n) • No leaked timing information • Can trade-off security and running time

  40. Advantages of RCW • Lower worst case running time - O(n) n) to O(log n) n) • No leaked timing information • Can trade-off security and running time • Increases the level of security

  41. Advantages of RCW • Lower worst case running time - O(n) n) to O(log n) n) • No leaked timing information • Can trade-off security and running time • Increases the level of security Reverse 2-Cycle NOT fully secure Walking Fully secure cipher on larger cipher on set T smaller set S! under certain circumstances . . .

  42. Talk Outline • Background and Previous Work • Reverse Cycle Walking • Proof Outline – analyzing the mixing time of RCW

  43. Mixing Time Definition : The total variation distance is || P t , π || = max ½ ∑ |P t (x,y) – π(y)|. x Ω y Ω ∈ ∈ Definition: Given ε , the mixing time is τ(ε) = min {t: ||P t ’ ,π|| < ε , t ’ ≥ t}. A

  44. Bounding the Mixing Time of RCW

  45. Bounding the Mixing Time of RCW 1. Show that RCW yields a “matching exchange process”

  46. Bounding the Mixing Time of RCW 1. Show that RCW yields a “matching exchange process” 2. Defined and analyzed by Czumaj and Kutylowski [RSA ’00]

  47. Bounding the Mixing Time of RCW 1. Show that RCW yields a “matching exchange process” 2. Defined and analyzed by Czumaj and Kutylowski [RSA ’00] 3. Use same techniques but . . . • Give explicit constants for RCW algorithm • Reprove several key lemmas

  48. Matching Exchange Process Matching Exchange: Repeat: 1. Choose a number κ according to some distribution. 2. Pick a matching M of size κ uniformly at random 3. For each pair in the matching, • transpose the two points with prob. ½ • otherwise, do nothing

  49. Matching Exchange Process Matching Exchange: Repeat: 1. Choose a number κ according to some distribution. 2. Pick a matching M of size κ uniformly at random 3. For each pair in the matching, • transpose the two points with prob. ½ • otherwise, do nothing Theorem [Czumaj, Kutylowski]: If E(κ) is Θ(n) then a matching exchange process mixes in time O(log n) .

  50. Path Coupling Approach [Bubley,Dyer,Greenhill ’ 97-8]

  51. Path Coupling Approach [Bubley,Dyer,Greenhill ’ 97-8] • Consider 2 configurations that differ by a single transposition (u,v)

Recommend

Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach

Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach

Overview Evidence Model Calibration Quantitative Results Reverse Engineered Shocks Conclusion Extras Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach Paolo Gelain Kevin J. Lansing Gisle J.

717 views • 50 slides
Providing for walking Identifying how we can encourage a better walking environment Walking in

Providing for walking Identifying how we can encourage a better walking environment Walking in

Providing for walking Identifying how we can encourage a better walking environment Walking in the transport system Every journey has an element of walking Its integral to the system, influenced by a range of factors and an influencer

321 views • 14 slides
Stornoway to Ness Cycle/Walking Route Feasibility Study David Taylor, Technical Director URS,

Stornoway to Ness Cycle/Walking Route Feasibility Study David Taylor, Technical Director URS,

Stornoway to Ness Cycle/Walking Route Feasibility Study David Taylor, Technical Director URS, Inverness Presentation to Comhairle nan Eilean Siar, Stornoway 17 th June 2015 Introduction Background Stakeholder Consultation

176 views • 17 slides
Walking and Work Reflections on the practice in light of the research Walking and Work Look at

Walking and Work Reflections on the practice in light of the research Walking and Work Look at

Walking and Work Reflections on the practice in light of the research Walking and Work Look at the vista in front and imagine the act of moving forward. Walking and Work Walking helps with: Problem solving Well-being Reflection Thinking

288 views • 5 slides
Leaders Guide Benefits of walking and biking Barriers to walking and biking

Leaders Guide Benefits of walking and biking Barriers to walking and biking

Leaders Guide Benefits of walking and biking Barriers to walking and biking Pedestrian safety tips Planning and leading a walking investigation Additional resources Kids Workbook Benefits of walking and biking

204 views • 7 slides
FY 2018/2019 Application Cycle Application Rating Program Applications Applications # of

FY 2018/2019 Application Cycle Application Rating Program Applications Applications # of

Louisiana Community Development Block Grant Program FY 2018/2019 Application Cycle Application Rating Program Applications Applications # of Average # Year Received Rated Rating Applications Teams Rated 2008 258 173 8 22 2009

601 views • 32 slides
Walking, the dilaton, and complex CFT (II) Walking, the dilaton, and complex CFT (II) Chik Him

Walking, the dilaton, and complex CFT (II) Walking, the dilaton, and complex CFT (II) Chik Him

Walking, the dilaton, and complex CFT (II) Walking, the dilaton, and complex CFT (II) Walking, the dilaton, and complex CFT (II) Chik Him (Ricky) Wong Outline Introduction Implicit Maximum Likelihood Estimate Results and Implications

218 views • 18 slides
Cycle Action Waikato Presentation to: - HCC Growth &amp; Infrastructure Committee 12 th September,

Cycle Action Waikato Presentation to: - HCC Growth &amp; Infrastructure Committee 12 th September,

Cycle Action Waikato Presentation to: - HCC Growth &amp; Infrastructure Committee 12 th September, 2017 BY: Rob Davidson and Claire Sherrington 1 In August Cycle Action Waikato reviewed Hamiltons Walking &amp; Cycling statistics, as part of

373 views • 20 slides
Were Walking and Biking!! What are the rules for walking? Be aware of your surroundings

Were Walking and Biking!! What are the rules for walking? Be aware of your surroundings

Were Walking and Biking!! What are the rules for walking? Be aware of your surroundings Walk on the sidewalk whenever possible If you need to walk on the street, walk as close as possible to the curb Follow the safe walking

292 views • 7 slides
Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What

Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What

Williamsburg, MA Belchertown, MA Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What is Age-Friendly Walking? Sidewalk conditions/maintenance ADA compliance Benches Lighting Shade

677 views • 50 slides
Water Walking Faith Peter Walking on Water Matthew 14:25-32, NIV During the fourth watch of the

Water Walking Faith Peter Walking on Water Matthew 14:25-32, NIV During the fourth watch of the

8/23/2016 Water Walking Faith Peter Walking on Water Matthew 14:25-32, NIV During the fourth watch of the night Jesus went out to them, walking on the lake. When the disciples saw him walking on the lake, they were terrified. Its a

377 views • 8 slides
Walk / Cycle / Schools Package - 2012/15 OBJECTIVE To increase peak hour walking and cycling

Walk / Cycle / Schools Package - 2012/15 OBJECTIVE To increase peak hour walking and cycling

Walk / Cycle / Schools Package - 2012/15 OBJECTIVE To increase peak hour walking and cycling throughout the city (acknowledging that journey to school mode is critical to reducing journey to school mode is critical to reducing congestion

303 views • 12 slides
The Walking for Health Sheffield AGM Charlene Simon- Walking for Health Development Manager

The Walking for Health Sheffield AGM Charlene Simon- Walking for Health Development Manager

The Walking for Health Sheffield AGM Charlene Simon- Walking for Health Development Manager Walking for Health Vision everyone has access to a short, free, friendly health walk within easy reach of where they live, to help them become

112 views • 9 slides
Walking Out Walking On Toronto 23 Jan 12 John OBrien johnwobrien@gmail.com I have

Walking Out Walking On Toronto 23 Jan 12 John OBrien johnwobrien@gmail.com I have

Walking Out Walking On Toronto 23 Jan 12 John OBrien johnwobrien@gmail.com I have claimed the privilege given legislators to revise &amp; extend my remarks in the record. There are notes on many of the slides that are a further

379 views • 36 slides
Reverse Osmosis Reverse Osmosis Background to Market and to Market and Background Technology

Reverse Osmosis Reverse Osmosis Background to Market and to Market and Background Technology

Reverse Osmosis Reverse Osmosis Background to Market and to Market and Background Technology Technology 1 Technology and Applications Technology and Applications Reverse osmosis has been commercial for Reverse osmosis has been

948 views • 60 slides
Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse Logistics Xochitl Aquiahuatl March 2007 Outline Outline Closed-loop Supply Chain Reverse Logistics Recovery Options Product

388 views • 22 slides
The Walking School Bus: Combining Safety, Fun, and the Walk to School Wha hat t is is a W a

The Walking School Bus: Combining Safety, Fun, and the Walk to School Wha hat t is is a W a

Walking School Bus VolunteerTraining Special Thanks to: The Walking School Bus: Combining Safety, Fun, and the Walk to School Wha hat t is is a W a Wal alki king ng Scho hool ol Bus us? a group of children walking to school with one

761 views • 18 slides
Reverse Engineering Paul deGrandis Applications Software Maintenance Source Code and

Reverse Engineering Paul deGrandis Applications Software Maintenance Source Code and

Reverse Engineering Paul deGrandis Applications Software Maintenance Source Code and Documentation Engineering Virus Analysis Malware Virus Needs a vector for propagation Worm No vector needed Can spread by

320 views • 21 slides
Applications of the Reverse Engineering Language REIL Hackers to Hackers Conference 2009, So

Applications of the Reverse Engineering Language REIL Hackers to Hackers Conference 2009, So

Applications of the Reverse Engineering Language REIL Hackers to Hackers Conference 2009, So Paulo Sebastian Porst zynamics GmbH (sebastian.porst@zynamics.com) Talk Overview Necessity of new RE methods Solutions we developed

762 views • 39 slides
Cycle Time Approximations for the G/G/m Queue Subject to Server Failures and Cycle Time Offsets

Cycle Time Approximations for the G/G/m Queue Subject to Server Failures and Cycle Time Offsets

IEEE/SEMI Advanced Semiconductor Manufacturing Conference Cycle Time Approximations for the G/G/m Queue Subject to Server Failures and Cycle Time Offsets with Applications James R. Morrison Central Michigan University Department of Engineering

614 views • 17 slides
Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a product, understand how it works Usually limited to certain aspects, not full systems Need to know a little bit about a lot of topics to gain

636 views • 11 slides
New Charter Applications 2017-18 Cycle Presentation to the School Reform Commission Charter

New Charter Applications 2017-18 Cycle Presentation to the School Reform Commission Charter

New Charter Applications 2017-18 Cycle Presentation to the School Reform Commission Charter Schools Office February 22, 2018 PA Charter School Law (CSL) Requirements CSL specifies guidelines for reviewing charter applications

163 views • 13 slides
New Charter Applications 2015-16 Cycle Presentation to the School Reform Commission Charter

New Charter Applications 2015-16 Cycle Presentation to the School Reform Commission Charter

New Charter Applications 2015-16 Cycle Presentation to the School Reform Commission Charter Schools Office February 16, 2016 PA Charter School Law (CSL) Requirements CSL specifies guidelines for reviewing charter applications

215 views • 8 slides
10/11/2020 Walking In Truth - Wk 4 John 17:3 The Gathering Hypocrite Matthew 15:79 2

10/11/2020 Walking In Truth - Wk 4 John 17:3 The Gathering Hypocrite Matthew 15:79 2

10/11/2020 Walking In Truth - Wk 4 Walking In Truth - Wk 4 in John Gosch's Presentation Group Pre-Service Loop 14 slides in 14 items 2m, 47s Welcome Announcements Weekly Prayer Facebook Give To Your Church w/ Soundtrack Faithlife Giving

432 views • 3 slides

More recommend