User Account

All Pages

Mechanism to achieve secure key exchange

Assignment Help C/C++ Programming
Reference no: EM13938687

In 1976 Diffie and Hellman have suggested their famous protocol for key exchange based on number theory. More recently (around 2002) I. Kanter, W. Kinzel and E. Kanter [1] proposed to use neural networks synchronization by mutual learning as the mechanism to achieve secure key exchange. Unlike in Diffie-Hellman protocol the common secret key is generated here by multiple message  exchange rounds at which every participant gets an approximation of the key.

It had turned out, however, that the Kanter-Kinzel-Kanter (KKK) protocol is not secure, and three different attacks on this protocol had been demonstrated in [2]. Later, it has been shown in [3, 4] that resistance of the protocol against different attacks can be improved by tuning the neural networks parameters. The neural cryptography is still very active area [5] further development of which may produce fast cryptographic protocols using simple arithmetic operations, parallelizable and implementable in hardware.

2 The KKK protocol and geometric attack

2.1 KKK protocol

In this section we briefly describe a variant of KKK scheme which uses an anti-Hebbian learning rule and for which a genetic attack has been first considered in [2].

Each of two parties A and B in KKK protocol uses a two layer neural network (parity machine in terms of [1]), see fugure 1.

The first layer consists of K perceptrons and the second layer computes the parity of the hiddent outputs of these K perceptrons. Each pereceptron has n inputs and therefore the whole network accepts N = Kn input values, which are assumed to be either 1 or

-1. The output node of kth perceptron (1 ≤ k ≤ K) has a connection with its ith input with the weight wk,i. All weights are integers from the set {-L, . . . , L} for some L.

When given n inputs xk,1, . . . xk,n the kth perceptron generates at its output the sign (+1 or -1) of the weighted sum of its inputs: ok = Σn i=1wk,ixk,i. The output O of the whole network is then generated as the parity of the outputs of K perceptrons: O = ΠK k=1ok.

In the KKK protocol with the fixed K, N, and L the both parties A and B start with the neural networks of the s ame publicly known structure, but with random uncorrelated weights, which assumed to be secret (i.e known only to A and B, respectively). At each round a new set of N random input values is chosen publicly and each party announces publicly the result of evaluation of its own network on that set of input values. If announced results are different (OA 6= OB) then both parties do not change their networks and proceed to the next round. If the results coincide OA = OB = O then both parties update the weights in those their perceptons which produced the same results (ok = O) at their (hidden) inputs. The anti-Hebbian learning rule is used to update the weights: wk,i := wk,i - okxk,i. If after update the weight gets the value outside of {-L, . . . L} this value is adjusted to the nearest bound (L or -L).

The remarkable property of the described protocol is that starting with random weights both parties eventually (with probability 1) will arrive to the same weights in their neural networks (networks are synchronized), which can be used then as the common secret key.

The detection of synchronization can be implemented by the testing that both networks have produced the same outputs for S consecutive rounds, with S some fixed in advance value.

The secrecy of the key relies on the (assumed) difficulty for an attacker to find out that secret key even assuming that the attacker does know all random inputs and outputs generated by both parties during the execution of the protocol. Notice that attacker is in a different position as compared with parties of the protocol and can not simply follow the protocol mimicking the moves. If the attacker E starts with the network of the same structure as those of A and B and with uncorrelated random weights then there is no problem for E to perfom steps of the protocol when OA = OB = OE. But in all other cases E is forced to deviate from the protocol.

In the paper [2] the authors have shown that the KKK key exchange scheme is unsecure and demonstrated three different types of attacks: genetic, geometric and probabilistic.

2.2 Geometric Attack

Here we describe briefly the geometric attack. The attacker constructs a neural network C with the same structure as these of A and B and randomly initializes its weights. At each step she trains C with the same input as the two parties, and updates its weights with the following rules:

  • If A and B have different outputs OA 6= OB, then the attacker doesn't update C
  • If all A, B and C have the same outputs OA = OB = OC then the attacker update

C by the usual learning rule.

  • If A and B have the same outputs OA = OB and QC 6= QA then the attacker finds

i0 ∈ {1, . . . K} that minimizes | Σ N j=0w C i,j · xi,j |. The attacker negates o C i0 and updates C assuming the new hidden bits and output QA.

3It is reported in [2] that such an attack can be successful for differen variants of the KKK protocol and different parameters.

Furthermore there is an opportunity for parallelization:

different attackers starting from randomly chosing states behave independently and thus multiple attackers have a higher probability to be successful.

How to make attacks less successfull?

In [3] it has been argued that increasing the range of weights in the neural networks, that is a parameter L, would provide a defense against geometric attacks and in [4] the argument has been extended to other types of attacks including genetic one. The efficiency of such a defense is based on the fact that synchronization time grows proportionally to L 2, while success rate of the attacks drops exponentially.

Such a defense may be cosidered theoretically sufficient, however quadratically increasing synchronization time may make the whole protocol not very impractical.

3 Empirical investigation of the geometric attack

This exercise asks you to write a program implementing geometric attack on KKK protocol using MPI and investigate how the success rate of the attack depends on

  • values of N,L,K;
  • execution on single host, or a cluster (with reasonable resources requested);
  • online or offline attack.

You need to write a C program(s) which

  • implements a KKK protocol;
  • implements two variants of parallel geometric attack on the protocol: online, where an attacker executes in parallel with the protocol, and offline when an attacker is given a record of public trace of the protocol.

Reference no: EM13938687

Questions Cloud

Identify and explore contemporary challenges : Identify and explore contemporary challenges and opportunities in information systems and to formulate an opinion or judgement and offer possible solutions.
Croissantonomics : Question 1Read the article "Croissantonomics" and use the demand and supply model with graphs to demonstrate the changes in the market for croissants at different times of the year. Briefly explain.
Ethical decision-making model : What are the available courses of action now that I have gathered knowledge and information and considered the range of value positions? (accountability)
What exactly will you tell your patient about her condition : What exactly will you tell your patient about her condition and what are your specific concerns about her treatment options at this time?
Mechanism to achieve secure key exchange : In 1976 Diffie and Hellman have suggested their famous protocol for key exchange based on number theory. More recently (around 2002) I. Kanter, W. Kinzel and E. Kanter [1] proposed to use neural networks synchronization by mutual learning as the m..
Textual table describing the catalogues of retail stores : Write a function to read a series of catalogue records from a file into a vector of catalogue objects. You will need to use the class ifstream, which is derived from istream, like so:
Calculate the standard fixed overhead rate : Compute the applied fixed overhead and the applied variable overhead. What is the total fixed overhead variance? Total variable overhead variance? Calculate the standard fixed overhead rate and the standard variable overhead rate.
How could you positively affect your profit using sales mix : How could you positively affect your profit using sales mix? What are some ways you can decrease your break-even point?" 3 paragraph
Identify the organs of the respiratory passageways : An essential part of maintaining homeostasis in the body is supplying tissues with oxygen and eliminating carbon dioxide from the tissues. Identify the organs of the respiratory passageways. Then we will examine how Boyle's law relates to the even..

Reviews

Write a Review

C/C++ Programming Questions & Answers

  Write c program which compute acceleration of jet fighter

Write a C++ program which compute the acceleration (m/s 2) of jet fighter launched from aircraft-carrier based catapult, provided jet's takeoff speed in km/hr

  We base our need to implement composition upon

What criterion, or criteria, should be used to include objects of a class as data members of another class? In other words, what should we base our need to implement composition upon?

  Develop an application for the game of memory

Use object-oriented programming to develop an application for the game of memory. Memory consists of a 20 × 20 grid of face down cards where there is at most one pair of each card in the grid. The types of cards that are available in this versi..

  What is encapsulation?

What is encapsulation? Why encapsulate in object oriented development?

  Program which opens a data file and displays its content

writing a C++ program which opens a data file and then displays its contents with line numbers. That is the program should display the number 1 and then the first line of the file, then the number 2 and the second line of the file, etc.

  Ansi-c program complete assignment as per written in the

complete assignment as per written in the attachment

  Write the class declaration for a class named complex

Write the class declaration for a class named Complex using the class diagram

  Implement a matrix class for two-by-two matrices

Implement a Matrix class for 2-by-2 matrices. Include a default constructor, a copy constructor, an inverse() function that returns the inverse of the matrix.

  Converts a number from roman numerals to decimal

Write a program that converts a number from Roman numerals to decimal. It needs to consist of a class, romanType. And object type of the type romanType should do the following:

  Write a small program scropy

You are supposed to write a small program scropy, which takes two arguments on the command line: the names of a source file and a destination file.

  Inheritance and output formatting

Inheritance and Output Formatting, finish the implementation of class name and derived classes person and employee in the following code. Format the output neatly using setw() and or other setioflags features

  Use selection sort to sort a[48] into increasing order

Use selection sort to sort A[48] into increasing order, and then print out the sorted list in four rows. There may be duplicates, but that's OK. (65 and 53 appear twice.) Duplicates will appear next to each other in the sorted list.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd