Confidential procedure model: a method for quantifying confidentiality leakage

Yong Zhang; Xiangxue Li; Yuan Zhou; Zhibin Li; Haifeng Qian

Confidential procedure model: a method for quantifying confidentiality leakage

Yong Zhang
, Xiangxue Li
, Yuan Zhou
, Zhibin Li
, Haifeng Qian^*

^*此作品的通讯作者

East China Normal University
Xidian University
National Computer Network Emergency Response Technical Team (Coordination Center of China)

科研成果: 期刊稿件 › 文章 › 同行评审

1 引用（Scopus）

摘要

In this paper, we propose a theoretical-information Confidential Procedure Model (CPM) to quantify confidentiality (or information leakage). The advantages of the CPM model include the following: 1) confidentiality loss is formalized as a dynamic procedure, instead of a static function, and described via the "waterfall" diagram; 2) confidentiality loss is quantified in a relative manner, i. e., taken as a quantitative metric, the ratio of the conditional entropy being reserved after observing the entropy of the original full confidential information; 3) the optimal attacks including exhaustive attacks as well as all possible attacks that have (or have not even) been discovered, are taken into account when defining the novel concept of the confidential degree. To elucidate the proposed model, we analyze the information leakage in side-channel attacks and the anonymity of DC-net in a quantitative manner.

源语言	英语
页（从-至）	117-126
页数	10
期刊	China Communications
卷	9
期	11
出版状态	已出版 - 11月 2012

其它文件与链接

链接到 Scopus 的出版物

引用此

@article{92f1dbb0069e4027a276c79908215109,

title = "Confidential procedure model: a method for quantifying confidentiality leakage",

abstract = "In this paper, we propose a theoretical-information Confidential Procedure Model (CPM) to quantify confidentiality (or information leakage). The advantages of the CPM model include the following: 1) confidentiality loss is formalized as a dynamic procedure, instead of a static function, and described via the {"}waterfall{"} diagram; 2) confidentiality loss is quantified in a relative manner, i. e., taken as a quantitative metric, the ratio of the conditional entropy being reserved after observing the entropy of the original full confidential information; 3) the optimal attacks including exhaustive attacks as well as all possible attacks that have (or have not even) been discovered, are taken into account when defining the novel concept of the confidential degree. To elucidate the proposed model, we analyze the information leakage in side-channel attacks and the anonymity of DC-net in a quantitative manner.",

keywords = "Anonymity, Confidentiality, Perfect secrecy, Quantitative analysis, Side-channel attack",

author = "Yong Zhang and Xiangxue Li and Yuan Zhou and Zhibin Li and Haifeng Qian",

year = "2012",

month = nov,

language = "英语",

volume = "9",

pages = "117--126",

journal = "China Communications",

issn = "1673-5447",

publisher = "Editorial Board of Journal on Communications",

number = "11",

}

TY - JOUR

T1 - Confidential procedure model

T2 - a method for quantifying confidentiality leakage

AU - Zhang, Yong

AU - Li, Xiangxue

AU - Zhou, Yuan

AU - Li, Zhibin

AU - Qian, Haifeng

PY - 2012/11

Y1 - 2012/11

N2 - In this paper, we propose a theoretical-information Confidential Procedure Model (CPM) to quantify confidentiality (or information leakage). The advantages of the CPM model include the following: 1) confidentiality loss is formalized as a dynamic procedure, instead of a static function, and described via the "waterfall" diagram; 2) confidentiality loss is quantified in a relative manner, i. e., taken as a quantitative metric, the ratio of the conditional entropy being reserved after observing the entropy of the original full confidential information; 3) the optimal attacks including exhaustive attacks as well as all possible attacks that have (or have not even) been discovered, are taken into account when defining the novel concept of the confidential degree. To elucidate the proposed model, we analyze the information leakage in side-channel attacks and the anonymity of DC-net in a quantitative manner.

AB - In this paper, we propose a theoretical-information Confidential Procedure Model (CPM) to quantify confidentiality (or information leakage). The advantages of the CPM model include the following: 1) confidentiality loss is formalized as a dynamic procedure, instead of a static function, and described via the "waterfall" diagram; 2) confidentiality loss is quantified in a relative manner, i. e., taken as a quantitative metric, the ratio of the conditional entropy being reserved after observing the entropy of the original full confidential information; 3) the optimal attacks including exhaustive attacks as well as all possible attacks that have (or have not even) been discovered, are taken into account when defining the novel concept of the confidential degree. To elucidate the proposed model, we analyze the information leakage in side-channel attacks and the anonymity of DC-net in a quantitative manner.

KW - Anonymity

KW - Confidentiality

KW - Perfect secrecy

KW - Quantitative analysis

KW - Side-channel attack

UR - https://www.scopus.com/pages/publications/84872452761

M3 - 文章

AN - SCOPUS:84872452761

SN - 1673-5447

VL - 9

SP - 117

EP - 126

JO - China Communications

JF - China Communications

IS - 11

ER -

Confidential procedure model: a method for quantifying confidentiality leakage

摘要

其它文件与链接

指纹

引用此