Concurrent Secrets with Quantified Suspicion

2018 18th International Conference on Application of Concurrency to System Design (ACSD) Pub Date : 2018-06-01 DOI:10.1109/ACSD.2018.00011

L. Hélouët, H. Marchand, J. Mullins

{"title":"Concurrent Secrets with Quantified Suspicion","authors":"L. Hélouët, H. Marchand, J. Mullins","doi":"10.1109/ACSD.2018.00011","DOIUrl":null,"url":null,"abstract":"A system satisfies opacity if its secret behaviors cannot be detected by any user of the system. Opacity of distributed systems was originally set as a boolean predicate before being quantified as measures in a probabilistic setting. This paper considers a different quantitative approach that measures the efforts that a malicious user has to make to detect a secret. This effort is measured as a distance w.r.t a regular profile specifying a normal behavior. This leads to several notions of quantitative opacity. When attackers are passive that is, when they just observe the system, quantitative opacity is brought back to a language inclusion problem, and is PSPACE-complete. When attackers are active, that is, interact with the system in order to detect secret behaviors within a finite depth observation, quantitative opacity turns to be a two-player finite-state quantitative game of partial observation. A winning strategy for an attacker is a sequence of interactions with the system leading to a secret detection without exceeding some profile deviation measure threshold. In this active setting, the complexity of opacity is EXPTIME-complete.","PeriodicalId":242721,"journal":{"name":"2018 18th International Conference on Application of Concurrency to System Design (ACSD)","volume":"80 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 18th International Conference on Application of Concurrency to System Design (ACSD)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ACSD.2018.00011","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

A system satisfies opacity if its secret behaviors cannot be detected by any user of the system. Opacity of distributed systems was originally set as a boolean predicate before being quantified as measures in a probabilistic setting. This paper considers a different quantitative approach that measures the efforts that a malicious user has to make to detect a secret. This effort is measured as a distance w.r.t a regular profile specifying a normal behavior. This leads to several notions of quantitative opacity. When attackers are passive that is, when they just observe the system, quantitative opacity is brought back to a language inclusion problem, and is PSPACE-complete. When attackers are active, that is, interact with the system in order to detect secret behaviors within a finite depth observation, quantitative opacity turns to be a two-player finite-state quantitative game of partial observation. A winning strategy for an attacker is a sequence of interactions with the system leading to a secret detection without exceeding some profile deviation measure threshold. In this active setting, the complexity of opacity is EXPTIME-complete.

查看原文本刊更多论文

并行秘密与量化怀疑

如果系统的秘密行为不能被系统的任何用户检测到，则系统满足不透明性。分布式系统的不透明度最初被设定为布尔谓词，然后在概率设置中被量化为度量。本文考虑了一种不同的量化方法来衡量恶意用户为检测秘密所做的努力。这种努力是作为距离来度量的，而不是指定正常行为的常规概要文件。这导致了量化不透明的几个概念。当攻击者是被动的，也就是说，当他们只是观察系统时，定量的不透明性又回到了语言包含问题，并且是pspace完备的。当攻击者处于活动状态，即在有限深度的观察范围内与系统进行交互以检测秘密行为时，定量不透明就变成了局部观察的二人有限状态定量博弈。攻击者的制胜策略是在不超过某些轮廓偏差测量阈值的情况下与系统进行一系列交互，从而导致秘密检测。在此活动设置中，不透明度的复杂度为EXPTIME-complete。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 18th International Conference on Application of Concurrency to System Design (ACSD)

自引率

0.00%

发文量