%R 10.1007/978-3-642-23822-2_32
%N 6879
%B Computer Security ? ESORICS 2011
%X We put forward a general model intended for assessment of system security against passive eavesdroppers, both quantitatively ( how much information is leaked) and qualitatively ( what properties are leaked). To this purpose, we extend information hiding systems ( ihs ), a model where the secret-observable relation is represented as a noisy channel, with views : basically, partitions of the state-space. Given a view W and n independent observations of the system, one is interested in the probability that a Bayesian adversary wrongly predicts the class of W the underlying secret belongs to. We offer results that allow one to easily characterise the behaviour of this error probability as a function of the number of observations, in terms of the channel matrices defining the ihs and the view W . In particular, we provide expressions for the limit value as n ? ?, show by tight bounds that convergence is exponential, and also characterise the rate of convergence to predefined error thresholds. We then show a few instances of statistical attacks that can be assessed by a direct application of our model: attacks against modular exponentiation that exploit timing leaks, against anonymity in mix-nets and against privacy in sparse datasets.
%E Vijay Atluri
%E Claudia Diaz
%D 2011
%L eprints1244
%K Quantitative information flow; statistical attacks; anonymity; privacy; information theory 
%A Michele Boreale
%A Francesca Pampaloni
%A Michela Paolini
%S Lecture Notes in Computer Science
%I Springer
%V 6879
%O Proceedings of the 16th European Symposium on Research in Computer Security, Leuven, Belgium, September 12-14,2011
%P 588-606
%T Quantitative information flow, with a view