Quantitative security analysis for programs with low input and noisy output

Minh Tri Ngo; Marieke Huisman

doi:10.1007/978-3-319-04897-0_6

Quantitative security analysis for programs with low input and noisy output

Minh Tri Ngo, Marieke Huisman

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

4 Citations (Scopus)

2 Downloads (Pure)

Abstract

Classical quantitative information flow analysis often considers a system as an information-theoretic channel, where private data are the only inputs and public data are the outputs. However, for systems where an attacker is able to influence the initial values of public data, these should also be considered as inputs of the channel. This paper adapts the classical view of information-theoretic channels in order to quantify information flow of programs that contain both private and public inputs. Additionally, we show that our measure also can be used to reason about the case where a system operator on purpose adds noise to the output, instead of always producing the correct output. The noisy outcome is used to reduce the correlation between the output and the input, and thus to increase the remaining uncertainty. However, even though adding noise to the output enhances the security, it reduces the reliability of the program. We show how given a certain noisy output policy, the increase in security and the decrease in reliability can be quantified.

Original language	Undefined
Title of host publication	Proceedings of the 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014
Place of Publication	London
Publisher	Springer
Pages	77-94
Number of pages	18
ISBN (Print)	978-3-319-04896-3
DOIs	https://doi.org/10.1007/978-3-319-04897-0_6
Publication status	Published - Feb 2014
Event	6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014 - Technische Universität München, Munich, Germany Duration: 26 Feb 2014 → 28 Feb 2014 Conference number: 6 https://distrinet.cs.kuleuven.be/events/essos/2014/

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer Verlag
Volume	8364

Conference

Conference	6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014
Abbreviated title	ESSoS
Country/Territory	Germany
City	Munich
Period	26/02/14 → 28/02/14
Internet address	https://distrinet.cs.kuleuven.be/events/essos/2014/

Keywords

EWI-24027
METIS-303973
IR-88367

Access to Document

10.1007/978-3-319-04897-0_6

http://eprints.eemcs.utwente.nl/secure2/24027/01/Essos14_Paper33.pdf

Cite this

@inproceedings{bd3f1a7a6ec54965944362e6ab8ef39a,

title = "Quantitative security analysis for programs with low input and noisy output",

abstract = "Classical quantitative information flow analysis often considers a system as an information-theoretic channel, where private data are the only inputs and public data are the outputs. However, for systems where an attacker is able to influence the initial values of public data, these should also be considered as inputs of the channel. This paper adapts the classical view of information-theoretic channels in order to quantify information flow of programs that contain both private and public inputs. Additionally, we show that our measure also can be used to reason about the case where a system operator on purpose adds noise to the output, instead of always producing the correct output. The noisy outcome is used to reduce the correlation between the output and the input, and thus to increase the remaining uncertainty. However, even though adding noise to the output enhances the security, it reduces the reliability of the program. We show how given a certain noisy output policy, the increase in security and the decrease in reliability can be quantified.",

keywords = "EWI-24027, METIS-303973, IR-88367",

author = "Ngo, {Minh Tri} and Marieke Huisman",

note = "10.1007/978-3-319-04897-0_6 ; 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014 ; Conference date: 26-02-2014 Through 28-02-2014",

year = "2014",

month = feb,

doi = "10.1007/978-3-319-04897-0_6",

language = "Undefined",

isbn = "978-3-319-04896-3",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "77--94",

booktitle = "Proceedings of the 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014",

url = "https://distrinet.cs.kuleuven.be/events/essos/2014/",

}

Ngo, MT & Huisman, M 2014, Quantitative security analysis for programs with low input and noisy output. in Proceedings of the 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014. Lecture Notes in Computer Science, vol. 8364, Springer, London, pp. 77-94, 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014, Munich, Germany, 26/02/14. https://doi.org/10.1007/978-3-319-04897-0_6

Quantitative security analysis for programs with low input and noisy output. / Ngo, Minh Tri; Huisman, Marieke.
Proceedings of the 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014. London: Springer, 2014. p. 77-94 (Lecture Notes in Computer Science; Vol. 8364).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Quantitative security analysis for programs with low input and noisy output

AU - Ngo, Minh Tri

AU - Huisman, Marieke

N1 - Conference code: 6

PY - 2014/2

Y1 - 2014/2

N2 - Classical quantitative information flow analysis often considers a system as an information-theoretic channel, where private data are the only inputs and public data are the outputs. However, for systems where an attacker is able to influence the initial values of public data, these should also be considered as inputs of the channel. This paper adapts the classical view of information-theoretic channels in order to quantify information flow of programs that contain both private and public inputs. Additionally, we show that our measure also can be used to reason about the case where a system operator on purpose adds noise to the output, instead of always producing the correct output. The noisy outcome is used to reduce the correlation between the output and the input, and thus to increase the remaining uncertainty. However, even though adding noise to the output enhances the security, it reduces the reliability of the program. We show how given a certain noisy output policy, the increase in security and the decrease in reliability can be quantified.

AB - Classical quantitative information flow analysis often considers a system as an information-theoretic channel, where private data are the only inputs and public data are the outputs. However, for systems where an attacker is able to influence the initial values of public data, these should also be considered as inputs of the channel. This paper adapts the classical view of information-theoretic channels in order to quantify information flow of programs that contain both private and public inputs. Additionally, we show that our measure also can be used to reason about the case where a system operator on purpose adds noise to the output, instead of always producing the correct output. The noisy outcome is used to reduce the correlation between the output and the input, and thus to increase the remaining uncertainty. However, even though adding noise to the output enhances the security, it reduces the reliability of the program. We show how given a certain noisy output policy, the increase in security and the decrease in reliability can be quantified.

KW - EWI-24027

KW - METIS-303973

KW - IR-88367

U2 - 10.1007/978-3-319-04897-0_6

DO - 10.1007/978-3-319-04897-0_6

M3 - Conference contribution

SN - 978-3-319-04896-3

T3 - Lecture Notes in Computer Science

SP - 77

EP - 94

BT - Proceedings of the 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014

PB - Springer

CY - London

T2 - 6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014

Y2 - 26 February 2014 through 28 February 2014

ER -