The Science of Quantitative Information Flow (Information Security and Cryptography) - Tapa dura

Acerca del autor

Mário S. Alvim is assistant professor in the Computer Science Department of the Universidade Federal de Minas Gerais in Belo Horizonte. His current research interests include formal methods for security and pri­vacy, as well as applications of quantitative information flow to fields beyond security. Kostas Chatzikokolakis is associate professor at the University of Athens. He works on security and pri­vacy, in particular quantitative information flow, location privacy, and differential privacy. Annabelle McIver is professor in the Dept. of Computing at Macquarie University in Sydney. She works on mathematical techniques for the verification of probabilistic systems. Carroll Morgan is professor in the School of Engineering and Computer Science at the University of New South Wales, and is affiliated with the Trustworthy Systems Group of CSIRO’s Data61. His current interests are quantitative information flow, program derivation (including security), and proved correctness of multi­core operating-system kernels. Catuscia Palamidessi is director of research at Inria Saclay. She is the leader of COMÈTE, a research team in the Inria and École Polytechnique shared lab. Her main research interests are quantitative information flow, privacy, and concurrency theory. Geoffrey Smith is professor in the School of Computing and Information Sciences of Florida International University in Miami. His current research interests include quantitative information flow and its applications to cryptography.

De la contraportada

This book presents a comprehensive mathematical theory that explains precisely what information flow is, how it can be assessed quantitatively – so bringing precise meaning to the intuition that certain information leaks are small enough to be tolerated – and how systems can be constructed that achieve rigorous, quantitative information-flow guarantees in those terms. It addresses the fundamental challenge that functional and practical requirements frequently conflict with the goal of preserving confidentiality, making perfect security unattainable.

Topics include: a systematic presentation of how unwanted information flow, i.e., "leaks", can be quantified in operationally significant ways and then bounded, both with respect to estimated benefit for an attacking adversary and by comparisons between alternative implementations; a detailed study of capacity, refinement, and Dalenius leakage, supporting robust leakage assessments; a unification of information-theoretic channels and information-leaking sequential programs within the same framework; and a collection of case studies, showing how the theory can be applied to interesting realistic scenarios.

The text is unified, self-contained and comprehensive, accessible to students and researchers with some knowledge of discrete probability and undergraduate mathematics, and contains exercises to facilitate its use as a course textbook.