TY - GEN
T1 - Security Against Subversion in a Multi-surveillant Setting
AU - Li, Geng
AU - Liu, Jianwei
AU - Zhang, Zongyang
N1 - Publisher Copyright:
© 2019, Springer Nature Switzerland AG.
PY - 2019
Y1 - 2019
N2 - Mass surveillance attracts much of attentions nowadays. Evidences showed that some intelligence agencies try to monitor public’s communication by unconventional methods, for example, providing users subverted cryptographic algorithms and compelling them to use. To address this new situation, researchers proposed a series of formal analyses and security definitions. However, current researches are restrictive as they only considered a single surveillant setting. In reality, there may exist multiple surveillants for different governments or manufacturers. This paper initializes the analysis of security against subversion in a multi-surveillant setting. We consider the case where users could only use subverted algorithms from different sources to achieve a subliminal communication. We introduce a new security notion that the transmission of a real message is “undetectable”, which means all surveillants either think the users execute the subverted algorithms honestly to transmit an innocuous message, or consider users are using non-subverted algorithms. We present a concrete design and prove that it satisfies our security definition.
AB - Mass surveillance attracts much of attentions nowadays. Evidences showed that some intelligence agencies try to monitor public’s communication by unconventional methods, for example, providing users subverted cryptographic algorithms and compelling them to use. To address this new situation, researchers proposed a series of formal analyses and security definitions. However, current researches are restrictive as they only considered a single surveillant setting. In reality, there may exist multiple surveillants for different governments or manufacturers. This paper initializes the analysis of security against subversion in a multi-surveillant setting. We consider the case where users could only use subverted algorithms from different sources to achieve a subliminal communication. We introduce a new security notion that the transmission of a real message is “undetectable”, which means all surveillants either think the users execute the subverted algorithms honestly to transmit an innocuous message, or consider users are using non-subverted algorithms. We present a concrete design and prove that it satisfies our security definition.
KW - Algorithm-substitution attack (ASA)
KW - Message-transmission protocol
KW - Post-Snowden cryptography
UR - https://www.scopus.com/pages/publications/85068704493
U2 - 10.1007/978-3-030-21548-4_23
DO - 10.1007/978-3-030-21548-4_23
M3 - 会议稿件
AN - SCOPUS:85068704493
SN - 9783030215477
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 419
EP - 437
BT - Information Security and Privacy - 24th Australasian Conference, ACISP 2019, Proceedings
A2 - Jang-Jaccard, Julian
A2 - Guo, Fuchun
PB - Springer Verlag
T2 - 24th Australasian Conference on Information Security and Privacy, ACISP 2019
Y2 - 3 July 2019 through 5 July 2019
ER -