| author | Christian Urban <christian dot urban at kcl dot ac dot uk> |
| Tue, 19 Nov 2013 03:05:48 +0000 | |
| changeset 135 | e78af5feb655 |
| parent 90 | d1d07f05325a |
| child 136 | 058504a45c34 |
| permissions | -rw-r--r-- |
| 65 | 1 |
\documentclass[dvipsnames,14pt,t]{beamer}
|
2 |
\usepackage{proof}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
3 |
\usepackage{beamerthemeplaincu}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
4 |
%\usepackage[T1]{fontenc}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
5 |
%\usepackage[latin1]{inputenc}
|
| 65 | 6 |
\usepackage{mathpartir}
|
7 |
\usepackage{isabelle}
|
|
8 |
\usepackage{isabellesym}
|
|
9 |
\usepackage[absolute,overlay]{textpos}
|
|
10 |
\usepackage{ifthen}
|
|
11 |
\usepackage{tikz}
|
|
12 |
\usepackage{courier}
|
|
13 |
\usepackage{listings}
|
|
14 |
\usetikzlibrary{arrows}
|
|
15 |
\usetikzlibrary{positioning}
|
|
16 |
\usetikzlibrary{calc}
|
|
17 |
\usepackage{graphicx}
|
|
| 66 | 18 |
\usetikzlibrary{shapes}
|
19 |
\usetikzlibrary{shadows}
|
|
| 67 | 20 |
\usetikzlibrary{plotmarks}
|
21 |
||
| 65 | 22 |
|
23 |
\isabellestyle{rm}
|
|
24 |
\renewcommand{\isastyle}{\rm}%
|
|
25 |
\renewcommand{\isastyleminor}{\rm}%
|
|
26 |
\renewcommand{\isastylescript}{\footnotesize\rm\slshape}%
|
|
27 |
\renewcommand{\isatagproof}{}
|
|
28 |
\renewcommand{\endisatagproof}{}
|
|
29 |
\renewcommand{\isamarkupcmt}[1]{#1}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
30 |
\newcommand{\isaliteral}[1]{}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
31 |
\newcommand{\isactrlisub}[1]{\emph{\isascriptstyle${}\sb{#1}$}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
32 |
|
| 65 | 33 |
|
34 |
% Isabelle characters |
|
35 |
\renewcommand{\isacharunderscore}{\_}
|
|
36 |
\renewcommand{\isacharbar}{\isamath{\mid}}
|
|
37 |
\renewcommand{\isasymiota}{}
|
|
38 |
\renewcommand{\isacharbraceleft}{\{}
|
|
39 |
\renewcommand{\isacharbraceright}{\}}
|
|
40 |
\renewcommand{\isacharless}{$\langle$}
|
|
41 |
\renewcommand{\isachargreater}{$\rangle$}
|
|
42 |
\renewcommand{\isasymsharp}{\isamath{\#}}
|
|
43 |
\renewcommand{\isasymdots}{\isamath{...}}
|
|
44 |
\renewcommand{\isasymbullet}{\act}
|
|
45 |
||
46 |
||
47 |
||
48 |
\definecolor{javared}{rgb}{0.6,0,0} % for strings
|
|
49 |
\definecolor{javagreen}{rgb}{0.25,0.5,0.35} % comments
|
|
50 |
\definecolor{javapurple}{rgb}{0.5,0,0.35} % keywords
|
|
51 |
\definecolor{javadocblue}{rgb}{0.25,0.35,0.75} % javadoc
|
|
52 |
||
53 |
\lstset{language=Java,
|
|
54 |
basicstyle=\ttfamily, |
|
55 |
keywordstyle=\color{javapurple}\bfseries,
|
|
56 |
stringstyle=\color{javagreen},
|
|
57 |
commentstyle=\color{javagreen},
|
|
58 |
morecomment=[s][\color{javadocblue}]{/**}{*/},
|
|
59 |
numbers=left, |
|
60 |
numberstyle=\tiny\color{black},
|
|
61 |
stepnumber=1, |
|
62 |
numbersep=10pt, |
|
63 |
tabsize=2, |
|
64 |
showspaces=false, |
|
65 |
showstringspaces=false} |
|
66 |
||
67 |
\lstdefinelanguage{scala}{
|
|
68 |
morekeywords={abstract,case,catch,class,def,%
|
|
69 |
do,else,extends,false,final,finally,% |
|
70 |
for,if,implicit,import,match,mixin,% |
|
71 |
new,null,object,override,package,% |
|
72 |
private,protected,requires,return,sealed,% |
|
73 |
super,this,throw,trait,true,try,% |
|
74 |
type,val,var,while,with,yield}, |
|
75 |
otherkeywords={=>,<-,<\%,<:,>:,\#,@},
|
|
76 |
sensitive=true, |
|
77 |
morecomment=[l]{//},
|
|
78 |
morecomment=[n]{/*}{*/},
|
|
79 |
morestring=[b]", |
|
80 |
morestring=[b]', |
|
81 |
morestring=[b]""" |
|
82 |
} |
|
83 |
||
84 |
\lstset{language=Scala,
|
|
85 |
basicstyle=\ttfamily, |
|
86 |
keywordstyle=\color{javapurple}\bfseries,
|
|
87 |
stringstyle=\color{javagreen},
|
|
88 |
commentstyle=\color{javagreen},
|
|
89 |
morecomment=[s][\color{javadocblue}]{/**}{*/},
|
|
90 |
numbers=left, |
|
91 |
numberstyle=\tiny\color{black},
|
|
92 |
stepnumber=1, |
|
93 |
numbersep=10pt, |
|
94 |
tabsize=2, |
|
95 |
showspaces=false, |
|
96 |
showstringspaces=false} |
|
97 |
||
98 |
% beamer stuff |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
99 |
\renewcommand{\slidecaption}{APP 07, King's College London, 19 November 2013}
|
| 65 | 100 |
\newcommand{\dn}{\stackrel{\mbox{\scriptsize def}}{=}}% for definitions
|
101 |
\newcommand{\bl}[1]{\textcolor{blue}{#1}}
|
|
| 67 | 102 |
|
103 |
||
104 |
||
| 65 | 105 |
\begin{document}
|
106 |
||
107 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
108 |
\mode<presentation>{
|
|
109 |
\begin{frame}<1>[t]
|
|
110 |
\frametitle{%
|
|
111 |
\begin{tabular}{@ {}c@ {}}
|
|
112 |
\\ |
|
113 |
\LARGE Access Control and \\[-3mm] |
|
114 |
\LARGE Privacy Policies (7)\\[-6mm] |
|
115 |
\end{tabular}}\bigskip\bigskip\bigskip
|
|
116 |
||
117 |
%\begin{center}
|
|
118 |
%\includegraphics[scale=1.3]{pics/barrier.jpg}
|
|
119 |
%\end{center}
|
|
120 |
||
121 |
\normalsize |
|
122 |
\begin{center}
|
|
123 |
\begin{tabular}{ll}
|
|
124 |
Email: & christian.urban at kcl.ac.uk\\ |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
125 |
Office: & S1.27 (1st floor Strand Building)\\ |
| 65 | 126 |
Slides: & KEATS (also homework is there)\\ |
127 |
\end{tabular}
|
|
128 |
\end{center}
|
|
129 |
||
130 |
||
131 |
\end{frame}}
|
|
132 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
133 |
||
| 66 | 134 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
135 |
\mode<presentation>{
|
|
136 |
\begin{frame}[c]
|
|
137 |
\frametitle{}
|
|
138 |
||
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
139 |
Recall the following scenario: |
| 66 | 140 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
141 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
142 |
\item If \textcolor{blue}{Admin} says that \textcolor{blue}{\isa{file}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
143 |
should be deleted, then this file must be deleted. |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
144 |
\item \textcolor{blue}{Admin} trusts \textcolor{blue}{Bob} to decide whether
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
145 |
\textcolor{blue}{\isa{file}} should be deleted (delegation).
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
146 |
\item \textcolor{blue}{Bob} wants to delete \textcolor{blue}{\isa{file}}.
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
147 |
\end{itemize}\bigskip
|
| 66 | 148 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
149 |
\small |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
150 |
\textcolor{blue}{\isa{{\isaliteral{5C3C47616D6D613E}{\isasymGamma}}\ {\isaliteral{3D}{\isacharequal}}}\small\begin{tabular}{l}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
151 |
\isa{{\isaliteral{28}{\isacharparenleft}}Admin\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}},\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
152 |
\isa{{\isaliteral{28}{\isacharparenleft}}Admin\ says\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}Bob\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}},\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
153 |
\isa{Bob\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
154 |
\end{tabular}}\medskip
|
| 66 | 155 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
156 |
\textcolor{blue}{\isa{{\isaliteral{5C3C47616D6D613E}{\isasymGamma}}\ {\isaliteral{5C3C7475726E7374696C653E}{\isasymturnstile}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
157 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
158 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 66 | 159 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
160 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
161 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
162 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
163 |
\frametitle{\begin{tabular}{@ {\hspace{-2mm}}c@ {}}The Access Control Problem\end{tabular}}
|
| 66 | 164 |
|
165 |
||
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
166 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
167 |
\begin{tikzpicture}[scale=1]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
168 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
169 |
\draw[line width=1mm] (-.3, -0.5) rectangle (1.5,2); |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
170 |
\draw (-2.7,1) node {\begin{tabular}{l}access\\request\\ (\bl{$F$})\end{tabular}};
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
171 |
\draw (4.2,1) node {\begin{tabular}{l}provable/\\not provable\end{tabular}};
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
172 |
\draw (0.6,0.8) node {\footnotesize \begin{tabular}{l}AC-\\ Checker:\\ applies\\ inference\\ rules\end{tabular}};
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
173 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
174 |
\draw[red, ->, line width = 2mm] (1.7,1) -- (2.7,1); |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
175 |
\draw[red,<-, line width = 2mm] (-0.6,1) -- (-1.6,1); |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
176 |
\draw[red, <-, line width = 3mm] (0.6,2.2) -- (0.6,3.2); |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
177 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
178 |
\draw (0.6,4) node {\begin{tabular}{l}\large Access Policy (\boldmath\bl{$\Gamma$})\end{tabular}};
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
179 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
180 |
\end{tikzpicture}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
181 |
\end{center}
|
| 66 | 182 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
183 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
184 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
185 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
186 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
187 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
188 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
189 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
190 |
\item \bl{$P \,\text{says}\, F$} means \bl{$P$} can send a ``signal'' \bl{$F$} through a wire, or
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
191 |
can make a ``statement'' \bl{$F$}\bigskip\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
192 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
193 |
\item \bl{$P$} is entitled to do \bl{$F$}\smallskip\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
194 |
\bl{$P \,\text{controls}\, F \,\dn\, (P\,\text{says}\, F) \Rightarrow F$}\medskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
195 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
196 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
197 |
\bl{\infer{\Gamma \vdash F}{\Gamma \vdash P\,\text{controls}\, F & \Gamma \vdash P\,\text{says}\,F}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
198 |
\end{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
199 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
200 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
201 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
202 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
203 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
204 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
205 |
|
| 66 | 206 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
207 |
\mode<presentation>{
|
|
208 |
\begin{frame}[c]
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
209 |
\frametitle{Security Levels}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
210 |
\small |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
211 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
212 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
213 |
\item Top secret (\bl{$T\!S$})
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
214 |
\item Secret (\bl{$S$})
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
215 |
\item Public (\bl{$P$})
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
216 |
\end{itemize}
|
| 66 | 217 |
|
218 |
\begin{center}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
219 |
\bl{$slev(P) < slev(S) < slev(T\!S)$}\pause
|
| 66 | 220 |
\end{center}
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
221 |
|
| 66 | 222 |
\begin{itemize}
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
223 |
\item Bob has a clearance for ``secret'' |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
224 |
\item Bob can read documents that are public or sectret, but not top secret |
| 66 | 225 |
\end{itemize}
|
226 |
||
227 |
\end{frame}}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
228 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
229 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
230 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
231 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
232 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
233 |
\frametitle{Reading a File}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
234 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
235 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
236 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
237 |
\begin{tabular}{@ {}l@ {}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
238 |
\only<2->{\textcolor{red}{$slev($File$)$ $<$ $slev($Bob$)$ $\Rightarrow$}}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
239 |
\only<2->{\hspace{3cm}}Bob controls Permitted $($File, read$)$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
240 |
Bob says Permitted $($File, read$)$\only<2->{\\}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
241 |
\only<2>{\textcolor{red}{$slev($File$)$ $<$ $slev($Bob$)$}}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
242 |
\only<3>{\textcolor{red}{$slev($File$)$ $=$ $P$}\\}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
243 |
\only<3>{\textcolor{red}{$slev($Bob$)$ $=$ $S$}\\}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
244 |
\only<3>{\textcolor{red}{$slev(P)$ $<$ $slev(S)$}\\}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
245 |
\end{tabular}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
246 |
\hline |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
247 |
Permitted $($File, read$)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
248 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
249 |
\end{center}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
250 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
251 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
252 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
253 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
254 |
|
| 66 | 255 |
|
| 65 | 256 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 67 | 257 |
\mode<presentation>{
|
258 |
\begin{frame}[c]
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
259 |
\frametitle{Substitution Rule}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
260 |
\small |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
261 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
262 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
263 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
264 |
$\Gamma \vdash slev(P) = l_1$ \hspace{4mm} $\Gamma \vdash slev(Q) = l_2$
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
265 |
\hspace{4mm} $\Gamma \vdash l_1 < l_2$\\\hline
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
266 |
$\Gamma \vdash slev(P) < slev(Q)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
267 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
268 |
\end{center}}\bigskip\pause
|
| 67 | 269 |
|
270 |
\begin{itemize}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
271 |
\item \bl{$slev($Bob$)$ $=$ $S$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
272 |
\item \bl{$slev($File$)$ $=$ $P$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
273 |
\item \bl{$slev(P) < slev(S)$}
|
| 67 | 274 |
\end{itemize}
|
275 |
||
276 |
\end{frame}}
|
|
277 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
278 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
279 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
280 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
281 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
282 |
\frametitle{Reading a File}
|
| 67 | 283 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
284 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
285 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
286 |
\begin{tabular}{@ {}l@ {}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
287 |
$slev($File$)$ $<$ $slev($Bob$)$ $\Rightarrow$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
288 |
\hspace{3cm}Bob controls Permitted $($File, read$)$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
289 |
Bob says Permitted $($File, read$)$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
290 |
$slev($File$)$ $=$ $P$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
291 |
$slev($Bob$)$ $=$ $T\!S$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
292 |
\only<1>{\textcolor{red}{$?$}}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
293 |
\only<2>{\textcolor{red}{$slev(P) < slev(S)$}\\}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
294 |
\only<2>{\textcolor{red}{$slev(S) < slev(T\!S)$}}%
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
295 |
\end{tabular}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
296 |
\hline |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
297 |
Permitted $($File, read$)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
298 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
299 |
\end{center}}
|
| 67 | 300 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
301 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
302 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
303 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
304 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
305 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
306 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
307 |
\frametitle{Transitivity Rule}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
308 |
\small |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
309 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
310 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
311 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
312 |
$\Gamma \vdash l_1 < l_2$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
313 |
\hspace{4mm} $\Gamma \vdash l_2 < l_3$\\\hline
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
314 |
$\Gamma \vdash l_1 < l_3$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
315 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
316 |
\end{center}}\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
317 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
318 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
319 |
\item \bl{$slev(P) < slev (S)$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
320 |
\item \bl{$slev(S) < slev (T\!S)$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
321 |
\item[] \bl{$slev(P) < slev (T\!S)$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
322 |
\end{itemize}
|
| 67 | 323 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
324 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
325 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
326 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
327 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
328 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
329 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
330 |
\frametitle{Reading Files}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
331 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
332 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
333 |
\item Access policy for Bob for reading |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
334 |
\end{itemize}
|
| 67 | 335 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
336 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
337 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
338 |
\begin{tabular}{@ {}l@ {}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
339 |
$\forall f.\;slev(f)$ \only<1>{$<$}\only<2>{\textcolor{red}{$\le$}} $slev($Bob$)$ $\Rightarrow$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
340 |
\hspace{3cm}Bob controls Permitted $(f$, read$)$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
341 |
Bob says Permitted $($File, read$)$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
342 |
$slev($File$)$ $=$ \only<1>{$P$}\only<2>{\textcolor{red}{$T\!S$}}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
343 |
$slev($Bob$)$ $=$ $T\!S$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
344 |
$slev(P) < slev(S)$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
345 |
$slev(S) < slev(T\!S)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
346 |
\end{tabular}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
347 |
\hline |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
348 |
Permitted $($File, read$)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
349 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
350 |
\end{center}}
|
| 68 | 351 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
352 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
353 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
354 |
% |
| 68 | 355 |
|
| 67 | 356 |
|
357 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
358 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
359 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
360 |
\frametitle{Writing Files}
|
| 65 | 361 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
362 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
363 |
\item Access policy for Bob for {\bf writing}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
364 |
\end{itemize}
|
| 65 | 365 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
366 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
367 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
368 |
\begin{tabular}{@ {}l@ {}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
369 |
$\forall f.\;slev($Bob$)$ $\le$ $slev(f)$ $\Rightarrow$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
370 |
\hspace{3cm}Bob controls Permitted $(f$, write$)$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
371 |
Bob says Permitted $($File, write$)$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
372 |
$slev($File$)$ $=$ $T\!S$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
373 |
$slev($Bob$)$ $=$ $S$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
374 |
$slev(P) < slev(S)$\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
375 |
$slev(S) < slev(T\!S)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
376 |
\end{tabular}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
377 |
\hline |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
378 |
Permitted $($File, write$)$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
379 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
380 |
\end{center}}
|
| 65 | 381 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
382 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
383 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
384 |
% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
385 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 65 | 386 |
\mode<presentation>{
|
387 |
\begin{frame}[c]
|
|
388 |
\frametitle{Encrypted Messages}
|
|
389 |
||
390 |
\begin{itemize}
|
|
391 |
\item Alice sends a message \bl{$m$}
|
|
392 |
\begin{center}
|
|
393 |
\bl{Alice says $m$}
|
|
394 |
\end{center}\medskip\pause
|
|
395 |
||
396 |
\item Alice sends an encrypted message \bl{$m$}\\ (with key \bl{$K$})
|
|
397 |
\begin{center}
|
|
398 |
\bl{Alice says $\{m\}_K$}
|
|
399 |
\end{center}\medskip\pause
|
|
400 |
||
401 |
\item Decryption of Alice's message\smallskip |
|
402 |
\begin{center}
|
|
403 |
\bl{\mbox{\infer{\Gamma \vdash \text{Alice}\;\text{says}\;m}
|
|
404 |
{\Gamma \vdash \text{Alice}\;\text{says}\;\{m\}_K & \Gamma \vdash \text{Alice}\,\text{says}\,K}}}
|
|
405 |
\end{center}
|
|
406 |
\end{itemize}
|
|
407 |
||
408 |
\end{frame}}
|
|
409 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
410 |
||
411 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
412 |
\mode<presentation>{
|
|
413 |
\begin{frame}[c]
|
|
414 |
\frametitle{Encryption}
|
|
415 |
||
416 |
\begin{itemize}
|
|
417 |
\item Encryption of a message\smallskip |
|
418 |
\begin{center}
|
|
419 |
\bl{\mbox{\infer{\Gamma \vdash \text{Alice}\;\text{says}\;\{m\}_K}
|
|
420 |
{\Gamma \vdash \text{Alice}\;\text{says}\;m & \Gamma \vdash \text{Alice}\,\text{says}\,K}}}
|
|
421 |
\end{center}
|
|
422 |
\end{itemize}
|
|
423 |
||
424 |
\end{frame}}
|
|
425 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
426 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
427 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
428 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
429 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
430 |
\frametitle{Trusted Third Party}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
431 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
432 |
Simple protocol for establishing a secure connection via a mutually |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
433 |
trusted 3rd party (server): |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
434 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
435 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
436 |
\begin{tabular}{@ {\hspace{-7mm}}l@{\hspace{2mm}}r@ {\hspace{1mm}}l}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
437 |
Message 1 & \bl{$A \rightarrow S :$} & \bl{$A, B$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
438 |
Message 2 & \bl{$S \rightarrow A :$} & \bl{$\{K_{AB}\}_{K_{AS}}$} and \bl{$\{\{K_{AB}\}_{K_{BS}} \}_{K_{AS}}$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
439 |
Message 3 & \bl{$A \rightarrow B :$} & \bl{$\{K_{AB}\}_{K_{BS}} $}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
440 |
Message 4 & \bl{$A \rightarrow B :$} & \bl{$\{m\}_{K_{AB}}$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
441 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
442 |
\end{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
443 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
444 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
445 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
446 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
447 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
448 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
449 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
450 |
\frametitle{Sending Rule}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
451 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
452 |
\bl{\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
453 |
\mbox{\infer{\Gamma \vdash Q \;\text{says}\; F}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
454 |
{\Gamma \vdash P \;\text{says}\; F & \Gamma \vdash P \;\text{sends}\; Q : F}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
455 |
\end{center}}\bigskip\pause
|
| 65 | 456 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
457 |
\bl{$P \,\text{sends}\, Q : F \dn$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
458 |
\hspace{6mm}\bl{$(P \,\text{says}\, F) \Rightarrow (Q \,\text{says}\, F)$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
459 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
460 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
461 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
462 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
463 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 65 | 464 |
\mode<presentation>{
|
465 |
\begin{frame}[c]
|
|
466 |
\frametitle{Trusted Third Party}
|
|
467 |
||
468 |
\begin{center}
|
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
469 |
\bl{\begin{tabular}{l}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
470 |
$A$ sends $S$ : $\text{Connect}(A,B)$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
471 |
\bl{$S \,\text{says}\, (\text{Connect}(A,B) \Rightarrow$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
472 |
\hspace{2.5cm}\bl{$\{K_{AB}\}_{K_{AS}} \wedge
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
473 |
\{\{K_{AB}\}_{K_{BS}}\}_{K_{AS}})$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
474 |
$S$ sends $A$ : $\{K_{AB}\}_{K_{AS}}$ \bl{$\wedge$} $\{\{K_{AB}\}_{K_{BS}}\}_{K_{AS}}$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
475 |
$A$ sends $B$ : $\{K_{AB}\}_{K_{BS}}$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
476 |
$A$ sends $B$ : $\{m\}_{K_{AB}}$
|
| 65 | 477 |
\end{tabular}}
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
478 |
\end{center}\bigskip\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
479 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
480 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
481 |
\bl{$\Gamma \vdash B \,\text{says} \, m$}?
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
482 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
483 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
484 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
485 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
486 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
487 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
488 |
\frametitle{Public/Private Keys}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
489 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
490 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
491 |
\item Bob has a private and public key: \bl{$K_{Bob}^{pub}$}, \bl{$K_{Bob}^{priv}$}\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
492 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
493 |
\bl{\mbox{\infer{\Gamma \vdash \text{Alice}\;\text{says}\;m}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
494 |
{\Gamma \vdash \text{Alice}\;\text{says}\;\{m\}_{K_{Bob}^{pub}} &
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
495 |
\Gamma \vdash K_{Bob}^{priv}}}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
496 |
\end{center}\bigskip\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
497 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
498 |
\item this is {\bf not} a derived rule!
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
499 |
\end{itemize}
|
| 65 | 500 |
|
501 |
\end{frame}}
|
|
502 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
503 |
||
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
504 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
505 |
% \begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
506 |
% \item Alice calls Sam for a key to communicate with Bob |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
507 |
% \item Sam responds with a key that Alice can read and a key Bob can read (pre-shared) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
508 |
% \item Alice sends the message encrypted with the key and the second key it recieved |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
509 |
% \end{itemize}\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
510 |
|
| 65 | 511 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
512 |
\mode<presentation>{
|
|
513 |
\begin{frame}[c]
|
|
514 |
\frametitle{Sending Rule}
|
|
515 |
||
| 70 | 516 |
|
| 65 | 517 |
\bl{\begin{center}
|
518 |
\mbox{\infer{\Gamma \vdash Q \;\textit{says}\; F}
|
|
519 |
{\Gamma \vdash P \;\textit{says}\; F & \Gamma \vdash P \;\textit{sends}\; Q : F}}
|
|
520 |
\end{center}}\bigskip\pause
|
|
521 |
||
522 |
\bl{$P \,\text{sends}\, Q : F \dn$}\\
|
|
523 |
\hspace{6mm}\bl{$(P \,\text{says}\, F) \Rightarrow (Q \,\text{says}\, F)$}
|
|
524 |
||
525 |
\end{frame}}
|
|
526 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
527 |
||
528 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
529 |
\mode<presentation>{
|
|
530 |
\begin{frame}[c]
|
|
531 |
\frametitle{Trusted Third Party}
|
|
532 |
||
533 |
\begin{center}
|
|
534 |
\bl{\begin{tabular}{l}
|
|
535 |
$A$ sends $S$ : $\textit{Connect}(A,B)$\\
|
|
536 |
\bl{$S \,\text{says}\, (\textit{Connect}(A,B) \Rightarrow$}\\
|
|
537 |
\hspace{2.5cm}\bl{$\{K_{AB}\}_{K_{AS}} \wedge
|
|
538 |
\{\{K_{AB}\}_{K_{BS}}\}_{K_{AS}})$}\\
|
|
539 |
$S$ sends $A$ : $\{K_{AB}\}_{K_{AS}}$ \bl{$\wedge$} $\{\{K_{AB}\}_{K_{BS}}\}_{K_{AS}}$\\
|
|
540 |
$A$ sends $B$ : $\{K_{AB}\}_{K_{BS}}$\\
|
|
541 |
$A$ sends $B$ : $\{m\}_{K_{AB}}$
|
|
542 |
\end{tabular}}
|
|
543 |
\end{center}\bigskip\pause
|
|
544 |
||
545 |
||
546 |
\bl{$\Gamma \vdash B \,\text{says} \, m$}?
|
|
547 |
\end{frame}}
|
|
548 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
549 |
||
550 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
551 |
\mode<presentation>{
|
|
552 |
\begin{frame}[c]
|
|
553 |
\frametitle{Challenge-Response Protocol}
|
|
554 |
||
555 |
\begin{itemize}
|
|
556 |
\item an engine \bl{$E$} and a transponder \bl{$T$} share a key \bl{$K$}\bigskip
|
|
557 |
\item \bl{$E$} sends out a \alert{nonce} \bl{$N$} (random number) to \bl{$T$}\bigskip
|
|
558 |
\item \bl{$T$} responds with \bl{$\{N\}_K$}\bigskip
|
|
| 68 | 559 |
\item if \bl{$E$} receives \bl{$\{N\}_K$} from \bl{$T$}, it starts engine
|
| 65 | 560 |
\end{itemize}
|
561 |
||
562 |
\end{frame}}
|
|
563 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
564 |
||
565 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
566 |
\mode<presentation>{
|
|
567 |
\begin{frame}[c]
|
|
| 68 | 568 |
\frametitle{Challenge-Response Protocol}
|
| 65 | 569 |
|
570 |
\begin{center}
|
|
571 |
\bl{\begin{tabular}{l}
|
|
572 |
$E \;\text{says}\; N$\hfill(start)\\
|
|
573 |
$E \;\text{sends}\; T : N$\hfill(challenge)\\
|
|
574 |
$(T \;\text{says}\; N) \Rightarrow (T \;\text{sends}\; E : \{N\}_K \wedge$\\
|
|
575 |
\hspace{3.5cm} $T \;\text{sends}\; E : \text{Id}(T))$\;\;\;\hfill(response)\\
|
|
576 |
$T \;\text{says}\; K$\hfill(key)\\
|
|
577 |
$T \;\text{says}\; \text{Id}(T)$\hfill(identity)\\
|
|
578 |
$(E \;\text{says}\; \{N\}_K \wedge E \;\text{says}\; \text{Id}(T)) \Rightarrow$\\
|
|
579 |
\hspace{5cm}$ \text{start\_engine}(T)$\hfill(engine)\\
|
|
580 |
\end{tabular}}
|
|
581 |
\end{center}\bigskip
|
|
582 |
||
583 |
\bl{$\Gamma \vdash \text{start\_engine}(T)$}?
|
|
584 |
\end{frame}}
|
|
585 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
586 |
||
| 68 | 587 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
588 |
\mode<presentation>{
|
|
589 |
\begin{frame}[c]
|
|
590 |
\frametitle{Exchange of a Fresh Key}
|
|
591 |
||
| 70 | 592 |
\bl{$A$} and \bl{$B$} share a (``super-secret'') key \bl{$K_{AB}$} and want to share another key
|
| 69 | 593 |
|
| 68 | 594 |
\begin{itemize}
|
595 |
\item assumption \bl{$K_{AB}$} is only known to \bl{$A$} and \bl{$B$}\bigskip
|
|
596 |
\item \bl{$A \,\text{sends}\, B : A, \{N_A\}_{K_{AB}}$}
|
|
597 |
\item \bl{$B\,\text{sends}\, A : \{N_A + 1, N_B\}_{K_{AB}}$}
|
|
598 |
\item \bl{$A \,\text{sends}\, B : \{N_B + 1\}_{K_{AB}}$}
|
|
599 |
\item \bl{$B \,\text{sends}\, A : \{K^{new}_{AB}, N^{new}_B\}_{K_{AB}}$}
|
|
| 69 | 600 |
\item<2> \bl{$A \,\text{sends}\, B : \{msg\}_{K^{new}_{AB}}$}
|
601 |
\end{itemize}\bigskip
|
|
| 68 | 602 |
|
| 69 | 603 |
Assume \bl{$K^{new}_{AB}$} is compromised by \bl{$I$}
|
| 68 | 604 |
\end{frame}}
|
605 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
606 |
||
607 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
608 |
\mode<presentation>{
|
|
609 |
\begin{frame}[c]
|
|
610 |
\frametitle{The Attack}
|
|
611 |
||
| 69 | 612 |
An intruder \bl{$I$} convinces \bl{$A$} to accept the compromised key \bl{$K^{new}_{AB}$}\medskip
|
| 68 | 613 |
|
| 69 | 614 |
\begin{minipage}{1.1\textwidth}
|
| 68 | 615 |
\begin{itemize}
|
616 |
\item \bl{$A \,\text{sends}\, B : A, \{N_A\}_{K_{AB}}$}
|
|
617 |
\item \bl{$B\,\text{sends}\, A : \{N_A + 1, N_B\}_{K_{AB}}$}
|
|
618 |
\item \bl{$A \,\text{sends}\, B : \{N_B + 1\}_{K_{AB}}$}
|
|
| 69 | 619 |
\item \bl{$B \,\text{sends}\, A : \{K^{new}_{AB}, N^{new}_B\}_{K_{AB}}$}\;\;recorded by \bl{$I$}\pause
|
620 |
\item \bl{$A \,\text{sends}\, B : A, \{M_A\}_{K_{AB}}$}
|
|
621 |
\item \bl{$B\,\text{sends}\, A : \{M_A + 1, M_B\}_{K_{AB}}$}
|
|
622 |
\item \bl{$A \,\text{sends}\, B : \{M_B + 1\}_{K_{AB}}$}
|
|
| 70 | 623 |
\item \bl{$B \,\text{sends}\, I : \{K^{newer}_{AB}, N^{newer}_B\}_{K_{AB}}$}\;intercepted by \bl{$I$}
|
| 69 | 624 |
\item \bl{$I \,\text{sends}\, A : \{K^{new}_{AB}, N^{new}_B\}_{K_{AB}}$}\pause
|
| 70 | 625 |
\item \bl{$A \,\text{sends}\, B : \{msg\}_{K^{new}_{AB}}$}\;\;\;\;\bl{$I$} can read it also
|
| 68 | 626 |
\end{itemize}
|
| 69 | 627 |
\end{minipage}
|
| 68 | 628 |
|
629 |
\end{frame}}
|
|
630 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
631 |
||
| 70 | 632 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
633 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
634 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
635 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
636 |
A Man-in-the-middle attack in real life: |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
637 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
638 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
639 |
\item the card only says yes or no to the terminal if the PIN is correct |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
640 |
\item trick the card in thinking transaction is verified by signature |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
641 |
\item trick the terminal in thinking the transaction was verified by PIN |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
642 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
643 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
644 |
\begin{minipage}{1.1\textwidth}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
645 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
646 |
\mbox{}\hspace{-6mm}\includegraphics[scale=0.5]{pics/chip-attack.png}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
647 |
\includegraphics[scale=0.3]{pics/chipnpinflaw.png}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
648 |
\end{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
649 |
\end{minipage}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
650 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
651 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
652 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
653 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
654 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
655 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
656 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
657 |
\frametitle{Problems with EMV}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
658 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
659 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
660 |
\item it is a wrapper for many protocols |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
661 |
\item specification by consensus (resulted unmanageable complexity) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
662 |
\item its specification is 700 pages in English plus 2000+ pages for testing, additionally some |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
663 |
further parts are secret |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
664 |
\item other attacks have been found |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
665 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
666 |
\item one solution might be to require always online verification of the PIN with the bank |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
667 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
668 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
669 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
670 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
671 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
672 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
673 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
674 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
675 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
676 |
\frametitle{\begin{tabular}{c}Problems with WEP (Wifi)\end{tabular}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
677 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
678 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
679 |
\item a standard ratified in 1999 |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
680 |
\item the protocol was designed by a committee not including cryptographers |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
681 |
\item it used the RC4 encryption algorithm which is a stream cipher requiring a unique nonce |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
682 |
\item WEP did not allocate enough bits for the nonce |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
683 |
\item for authenticating packets it used CRC checksum which can be easily broken |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
684 |
\item the network password was used to directly encrypt packages (instead of a key negotiation protocol)\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
685 |
\item encryption was turned off by default |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
686 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
687 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
688 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
689 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
690 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
691 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
692 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
693 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
694 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
695 |
\frametitle{Protocols are Difficult}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
696 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
697 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
698 |
\item even the systems designed by experts regularly fail\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
699 |
\item try to make everything explicit (you need to authenticate all data you might rely on)\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
700 |
\item the one who can fix a system should also be liable for the losses\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
701 |
\item cryptography is often not {\bf the} answer\bigskip\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
702 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
703 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
704 |
logic is one way protocols are studied in academia |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
705 |
(you can use computers to search for attacks) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
706 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
707 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
708 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
709 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
710 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
711 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
712 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
713 |
\frametitle{Public-Key Infrastructure}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
714 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
715 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
716 |
\item the idea is to have a certificate authority (CA) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
717 |
\item you go to the CA to identify yourself |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
718 |
\item CA: ``I, the CA, have verified that public key \bl{$P^{pub}_{Bob}$} belongs to Bob''\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
719 |
\item CA must be trusted by everybody |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
720 |
\item What happens if CA issues a false certificate? Who pays in case of loss? (VeriSign |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
721 |
explicitly limits liability to \$100.) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
722 |
\end{itemize}
|
| 70 | 723 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
724 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
725 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
726 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
727 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
728 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
729 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
730 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
731 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
732 |
\frametitle{Privacy, Anonymity et al}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
733 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
734 |
Some terminology: |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
735 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
736 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
737 |
\item \alert{secrecy} is the mechanism used to limit the number of
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
738 |
principals with access to information (eg, cryptography or access controls) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
739 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
740 |
\item \alert{confidentiality} is the obligation to protect the secrets of other people
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
741 |
or organizations (secrecy for the benefit of an organisation) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
742 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
743 |
\item \alert{anonymity} is the ability to leave no evidence of an activity (eg, sharing a secret)
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
744 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
745 |
\item \alert{privacy} is the ability or right to protect your personal secrets
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
746 |
(secrecy for the benefit of an individual) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
747 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
748 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
749 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
750 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
751 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
752 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
753 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
754 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
755 |
\begin{frame}[t]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
756 |
\frametitle{Privacy vs Anonymity}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
757 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
758 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
759 |
\item everybody agrees that anonymity has its uses (e.g., voting, whistleblowers, peer-review) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
760 |
\end{itemize}\bigskip\bigskip\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
761 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
762 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
763 |
But privacy?\bigskip\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
764 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
765 |
``You have zero privacy anyway. Get over it.''\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
766 |
\hfill{}Scott Mcnealy (CEO of Sun)\bigskip\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
767 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
768 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
769 |
If you have nothing to hide, you have nothing to fear. |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
770 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
771 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
772 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
773 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
774 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
775 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
776 |
\begin{frame}[t]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
777 |
\frametitle{Privacy}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
778 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
779 |
private data can be often used against me |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
780 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
781 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
782 |
\item if my location data becomes public, thieves will switch off their phones and help themselves in my home |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
783 |
\item if supermarkets can build a profile of what I buy, they can use it to their advantage (banks - mortgages) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
784 |
\item my employer might not like my opinions\bigskip\pause |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
785 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
786 |
\item one the other hand, Freedom-of-Information Act |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
787 |
\item medical data should be private, but medical research needs data |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
788 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
789 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
790 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
791 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
792 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
793 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
794 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
795 |
\begin{frame}[t]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
796 |
\frametitle{Privacy Problems}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
797 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
798 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
799 |
\item Apple takes note of every dictation (send over the Internet to Apple) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
800 |
\item markets often only work, if data is restricted (to build trust) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
801 |
\item Social network can reveal data about you |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
802 |
\item have you tried the collusion extension for FireFox? |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
803 |
\item I do use Dropbox and store cards\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
804 |
\item next week: anonymising data |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
805 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
806 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
807 |
\begin{textblock}{5}(12,9.8)
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
808 |
\includegraphics[scale=0.2]{pics/gattaca.jpg}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
809 |
\small Gattaca (1997) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
810 |
\end{textblock}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
811 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
812 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
813 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
814 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
815 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
816 |
|
| 70 | 817 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
818 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
819 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
820 |
\begin{frame}[t]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
821 |
\frametitle{Privacy}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
822 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
823 |
\begin{minipage}{1.05\textwidth}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
824 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
825 |
\item we \alert{do} want that government data is made public (free maps for example)
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
826 |
\item we \alert{do not} want that medical data becomes public (similarly tax data, school
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
827 |
records, job offers)\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
828 |
\item personal information can potentially lead to fraud |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
829 |
(identity theft) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
830 |
\end{itemize}\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
831 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
832 |
{\bf ``The reality'':}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
833 |
\only<2>{\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
834 |
\item London Health Programmes lost in June last year unencrypted details of more than 8 million people |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
835 |
(no names, but postcodes and details such as gender, age and ethnic origin) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
836 |
\end{itemize}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
837 |
\only<3>{\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
838 |
\item also in June last year, Sony got hacked: over 1M users' personal information, including passwords, email addresses, home addresses, dates of birth, and all Sony opt-in data associated with their accounts. |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
839 |
\end{itemize}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
840 |
\end{minipage}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
841 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
842 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
843 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
844 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
845 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
846 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
847 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
848 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
849 |
\frametitle{Privacy and Big Data}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
850 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
851 |
Selected sources of ``Big Data'':\smallskip{}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
852 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
853 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
854 |
\item Facebook |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
855 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
856 |
\item 40+ Billion photos (100 PB) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
857 |
\item 6 Billion messages daily (5 - 10 TB) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
858 |
\item 900 Million users |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
859 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
860 |
\item Common Crawl |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
861 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
862 |
\item covers 3.8 Billion webpages (2012 dataset) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
863 |
\item 50 TB of data |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
864 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
865 |
\item Google |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
866 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
867 |
\item 20 PB daily (2008) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
868 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
869 |
\item Twitter |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
870 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
871 |
\item 7 Million users in the UK |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
872 |
\item a company called Datasift is allowed to mine all tweets since 2010 |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
873 |
\item they charge 10k per month for other companies to target advertisement |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
874 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
875 |
\end{itemize}\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
876 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
877 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
878 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
879 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
880 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
881 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
882 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
883 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
884 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
885 |
\frametitle{Cookies\ldots}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
886 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
887 |
``We have published a new cookie policy. It explains what cookies are |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
888 |
and how we use them on our site. To learn more about cookies and |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
889 |
their benefits, please view our cookie policy.\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
890 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
891 |
If you'd like to disable cookies on this device, please view our information |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
892 |
pages on 'How to manage cookies'. Please be aware that parts of the |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
893 |
site will not function correctly if you disable cookies. \medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
894 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
895 |
By closing this |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
896 |
message, you consent to our use of cookies on this device in accordance |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
897 |
with our cookie policy unless you have disabled them.'' |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
898 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
899 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
900 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
901 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
902 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
903 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
904 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
905 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
906 |
\frametitle{Scare Tactics}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
907 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
908 |
The actual policy reads:\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
909 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
910 |
``As we explain in our Cookie Policy, cookies help you to get the most |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
911 |
out of our websites.\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
912 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
913 |
If you do disable our cookies you may find that certain sections of our |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
914 |
website do not work. For example, you may have difficulties logging in |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
915 |
or viewing articles.'' |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
916 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
917 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
918 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
919 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
920 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
921 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
922 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
923 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
924 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
925 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
926 |
\frametitle{Netflix Prize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
927 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
928 |
Anonymity is \alert{necessary} for privacy, but \alert{not} enough!\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
929 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
930 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
931 |
\item Netflix offered in 2006 (and every year until 2010) a 1 Mio \$ prize for improving their movie rating algorithm |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
932 |
\item dataset contained 10\% of all Netflix users (appr.~500K) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
933 |
\item names were removed, but included numerical ratings as well as times of rating |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
934 |
\item some information was \alert{perturbed} (i.e., slightly modified)
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
935 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
936 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
937 |
\hfill{\bf\alert{All OK?}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
938 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
939 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
940 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
941 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
942 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
943 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
944 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
945 |
\frametitle{Re-identification Attack}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
946 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
947 |
Two researchers analysed the data: |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
948 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
949 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
950 |
\item with 8 ratings (2 of them can be wrong) and corresponding dates that can have a margin 14-day error, 98\% of the |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
951 |
records can be identified |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
952 |
\item for 68\% only two ratings and dates are sufficient (for movie ratings outside the top 500)\bigskip\pause |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
953 |
\item they took 50 samples from IMDb (where people can reveal their identity) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
954 |
\item 2 of them uniquely identified entries in the Netflix database (either by movie rating or by dates) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
955 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
956 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
957 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
958 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
959 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
960 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
961 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
962 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
963 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
964 |
\frametitle{}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
965 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
966 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
967 |
\item Birth data, postcode and gender (unique for\\ 87\% of the US population) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
968 |
\item Preferences in movies (99\% of 500K for 8 ratings) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
969 |
\end{itemize}\bigskip
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
970 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
971 |
Therefore best practices / or even law (HIPAA, EU): |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
972 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
973 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
974 |
\item only year dates (age group for 90 years or over), |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
975 |
\item no postcodes (sector data is OK, similarly in the US)\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
976 |
\textcolor{gray}{no names, addresses, account numbers, licence plates}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
977 |
\item disclosure information needs to be retained for 5 years |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
978 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
979 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
980 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
981 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
982 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
983 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
984 |
\begin{frame}<2>[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
985 |
\frametitle{How to Safely Disclose Information?}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
986 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
987 |
\only<1>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
988 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
989 |
\item Assume you make a survey of 100 randomly chosen people. |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
990 |
\item Say 99\% of the surveyed people in the 10 - 40 age group have seen the |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
991 |
Gangnam video on youtube.\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
992 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
993 |
\item What can you infer about the rest of the population? |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
994 |
\end{itemize}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
995 |
\only<2>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
996 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
997 |
\item Is it possible to re-identify data later, if more data is released. \bigskip\bigskip\pause |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
998 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
999 |
\item Not even releasing only aggregate information prevents re-identification attacks. |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1000 |
(GWAS was a public database of gene-frequency studies linked to diseases; |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1001 |
you only needed partial DNA information in order |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1002 |
to identify whether an individual was part of the study --- DB closed in 2008) |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1003 |
\end{itemize}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1004 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1005 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1006 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 70 | 1007 |
|
1008 |
||
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1009 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1010 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1011 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1012 |
\frametitle{Differential Privacy}
|
| 70 | 1013 |
|
| 71 | 1014 |
\begin{center}
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1015 |
User\;\;\;\; |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1016 |
\begin{tabular}{c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1017 |
tell me \bl{$f(x)$} $\Rightarrow$\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1018 |
$\Leftarrow$ \bl{$f(x) + \text{noise}$}
|
| 71 | 1019 |
\end{tabular}
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1020 |
\;\;\;\;\begin{tabular}{@{}c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1021 |
Database\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1022 |
\bl{$x_1, \ldots, x_n$}
|
| 71 | 1023 |
\end{tabular}
|
1024 |
\end{center}
|
|
1025 |
||
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1026 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1027 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1028 |
\item \bl{$f(x)$} can be released, if \bl{$f$} is insensitive to
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1029 |
individual entries \bl{$x_1, \ldots, x_n$}\\
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1030 |
\item Intuition: whatever is learned from the dataset would be learned regardless of whether |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1031 |
\bl{$x_i$} participates\bigskip\pause
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1032 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1033 |
\item Noised needed in order to prevent queries:\\ Christian's salary $=$ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1034 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1035 |
\bl{\large$\Sigma$} all staff $-$ \bl{\large$\Sigma$} all staff $\backslash$ Christian
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1036 |
\end{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1037 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1038 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1039 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1040 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1041 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1042 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1043 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1044 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1045 |
\frametitle{Adding Noise}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1046 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1047 |
Adding noise is not as trivial as one would wish: |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1048 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1049 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1050 |
\item If I ask how many of three have seen the Gangnam video and get a result |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1051 |
as follows |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1052 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1053 |
\begin{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1054 |
\begin{tabular}{l|c}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1055 |
Alice & yes\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1056 |
Bob & no\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1057 |
Charlie & yes\\ |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1058 |
\end{tabular}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1059 |
\end{center}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1060 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1061 |
then I have to add a noise of \bl{$1$}. So answers would be in the
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1062 |
range of \bl{$1$} to \bl{$3$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1063 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1064 |
\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1065 |
\item But if I ask five questions for all the dataset (has seen Gangnam video, is male, below 30, \ldots), |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1066 |
then one individual can change the dataset by \bl{$5$}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1067 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1068 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1069 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1070 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 70 | 1071 |
|
|
135
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1072 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1073 |
\mode<presentation>{
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1074 |
\begin{frame}[c]
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1075 |
\frametitle{\begin{tabular}{@{}c@{}}Take Home Point\end{tabular}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1076 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1077 |
According to Ross Anderson: \bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1078 |
\begin{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1079 |
\item Privacy in a big hospital is just about doable.\medskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1080 |
\item How do you enforce privacy in something as big as Google |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1081 |
or complex as Facebook? No body knows.\bigskip |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1082 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1083 |
Similarly, big databases imposed by government |
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1084 |
\end{itemize}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1085 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1086 |
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1087 |
\end{frame}}
|
|
e78af5feb655
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
1088 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 70 | 1089 |
|
| 65 | 1090 |
\end{document}
|
1091 |
||
1092 |
%%% Local Variables: |
|
1093 |
%%% mode: latex |
|
1094 |
%%% TeX-master: t |
|
1095 |
%%% End: |
|
1096 |