|
|
|
IBM Discovers Encryption Scheme That Could Improve Cloud Security, Spam Filtering
By: Brian Prince
2009-06-25
Article Rating: / 3
There are 0 user comments on this Network Security & Hardware story.
A researcher at IBM reports having developed a fully homomorphic encryption scheme that allows data to be manipulated without being exposed. Researcher Craig Gentry's discovery could prove to be important in securing cloud computing environments and fighting encrypted spam.An IBM researcher has
uncovered a way to analyze data while it is still encrypted, in what could be a
boon for both spam-filtering applications and cloud computing environments.
The challenge of manipulating data without exposing it has bugged
cryptographers for decades. But in a breakthrough, IBM
researcher and Stanford University Ph.D. candidate Craig Gentry has developed a
"fully homomorphic encryption" scheme that keeps data
protected.
"Basically, an annoying property
of encryption is that it typically traps data inside a box that prevents
the data from being used or analyzed until you open the box with the secret
decryption key," Gentry said. "What a fully homomorphic encryption
scheme allows you to do is analyze or compute a function of the data while it
remains securely inside the box.
"For example, suppose you want to store your files on an untrusted
server," he continued. "You don't want the server to see your files;
so, you want to encrypt them. On the other hand, you want to be able to access
your files in an 'intelligent' way ... There is a way to express this query as
a function f. If your files are encrypted with the fully homomorphic encryption
scheme, you can send your query to the server, which expresses it as some
function f; the server then homomorphically computes an encryption of f(m_1,
..., m_t) -- where f(m_1, ..., m_t) outputs the relevant filesand sends this
ciphertext back to you. You decrypt to recover the files."
It is also possible to encrypt the query as well, he said.
According to IBM, Gentry's solution could
help strengthen the business model of cloud computing when vendors are hosting
confidential customer data, by enabling them to perform computations on data at
their clients' request without exposing the original data.
It also represents a potential boost for spam filtering of encrypted
e-mails. Spam filtering, he noted, doesn't need to be done online because of
the relative asynchronicity of e-mail, and because the amount of data is likely
to be small.
"The idea for spam-filtering encrypted e-mails is as follows: I encrypt
e-mails to you under your public key pk using the fully homomorphic encryption
scheme. Maybe some spammers also send you some e-mails encrypted under
pk. Now, a spam filter can be expressed as some function f that is applied
to (unencrypted) e-mail data, which outputs a '0' if it is spam, and a '1' if
it is not," Gentry explained.
"To spam-filter encrypted e-mails, the spam filter uses the fully
homomorphic encryption scheme to compute a ciphertext that encrypts f(m), where
the encrypted e-mail is the encryption of m. The filter prepends this
ciphertext to the encryption of m. Now, when you check your encrypted e-mail,
you first decrypt the prepended ciphertext. If the ciphertext encrypted a
'0', indicating the message is spam, you don't bother decrypting the rest of
the e-mail. Otherwise, you decrypt the rest."
At this point, Gentry said, the next step is to work on improving the efficiency
of his discovery. He admitted it takes many times longer to process data
homomorphically while it is in the encryption box than it would to process the
data in the clear.
"Before it becomes a tool, more theoretical work will need to be done
to make it more efficient," he said. "But now that researchers know
that fully homomorphic encryption is possible and have an actual construction
that they can sink their teeth into, I think there is reason to be optimistic
that the efficiency will be improved dramatically."
|
|
�������x}r8qվ�Fsvg�H)ْcm,k)$uT� I�SlkK쟯Kg<�xэl'/-�Dn4�����Qȥ3"mלٔ�N\Sã�}�$��~M�2q5*_3dz&�%C�jT7�R}f]S� �����Gl&J~x#A��b�H��j��1F㠪X�=z([�}D}�q^vd
�k�.htL�Il_P�$ȁ_MܦՌ�%yHcL�ODRNO�mH|��oau�ɷ~{
�w"�Ntod9�Q�cW�*FXP~��D�c~v��=;B�
18o`T�K>?&�5ë�ؓ�[v+x.D�y!f23�#�g߶�03d#7t!205bR#��-�XFrTZ���6�C;@oڮ�S,�HfIJ��ݳt#Գ@u|ף&Z�.&�$g���_FB?$Js;8Q�*�z>Ķ|h�{'�) �]�u~CoczZ;u�w#ϝ91yq�LWQԒ(9ac*] c
��@2zz`N-2谚A\eY7;�Ͱ-.@6�M-�*ZYQNr|+'[Q!`9ۖ3{p*sYÝ3JQ4EW� �]`�vdu]i��vUchI"C[O���%ތ��E���NPg}2=�jZIu;Ni(|���I�8hƋC�r]Xn-�r�Ӈz�!L�
wlh��x:4,Ab��&a`M?f
FAтMz>kI��-ߟ�L=�s#08�w�ɽ�5��,�Q5ҁ4}a���q�jS?‧ !Tgx3��=�g>�ݷ|�{
њ�u�
&��QsfPB�ԁ.q<Ȝk)
�!P CRS$S�]HPw9�J�
B�!L��0H��V0(� a�|
.�<��®�B�Ic!vn<���,BV-KᗄPf%�a���X�9�{DM�f�T`B[ụLKa�k`F]bN+IJMCA�IYB�Z��U*�5�YQՙcMq3r`!-gי�G�fo�3p#Eq")2�T�ph��,�O#6�m"/9d>�)Ln�4Wl>L>hQoxD6}=we�
l4���A�0>A̞P��,j܄r�9YsI�$ך^sdp? �X(�ܼ?
b>H 8C��_gM������Y�h(d'pC!hZp�uIY(�iJ ~�5��
L�yO).EcwBl㜜;F]s;tOV#Zbxh6JՍE[�1(�a]jk-�;�?��7�BjXa1�F]��RXJKHDl�P.^0ske�zdy�M*�&J�O]u�>{j
-j&{|UMΩR?��xz#[rAS҉U|>v�g%�A qsG�I͔�m�,�׳9wN"c=`tu��Lg�bф0ې�t1���J�[Y�*,b;)4jkzF
���o�f`�׆ �K ؈|ȁUraҝereQ=o);U]]J07&�y+D�*>���1f&6XC˦>oMqAʫ�u�fl v6,�ƴ'i?怚H|A��2e�&GmܡkC:euE��s�ƱԧSt�ҶY�4���hDsk@b4""paLH�a0�]sE�laؼ/kь^�4:E�80�9N܁e�6l*I��bSb)��&�;alâ�#_=��C��)epIl�_��a@C^���9)& S\,a\FL�k��
ZCbP$܄h�@�.�&�Ŵ�谢��Ԙy}R�ː
0gtWed��-�흧�ITʥ�vrhEU-NjT9�D+�9NԀN�_�㬯8�f^vb-Z7ȝR*}zK]�{]+\s~g^�l^��cv"O`��Q$,p2HUY�}`c/Mqс,�`�ˊ�?�+;+_>�F����]h���C\4�<�`�c�4�pf�mWq=[J+j9[�`�Zp;z6G}�
!��,rѹm?Qe_>"Q�e�ڟs;t跸�@^5k8`Ȍ�)Ĩ�UU)U9}gF�zJ>Eu0Ȁ�N{�Wlȡ5Քkd7��8o�Fm�ϛ=G$1�*@7Z �Ɇ~oV٪ �
"lEIpR|=��θ�^7
=/"JL7Ϧ7<�s�{B, %r}䯆gS�!gp+�RL>8lv'g<�
hr�ݵm��7f>��"c'۽>�R�쪟d��sM%�nu*�X́Y��i
r1|]�ܩe>t1VOg;*})c��ʌ�y(SYmq'&F.R�,ex.N3 akgc>��
4yQVk�oZ�KEeD��/)rJY-�AV]lz�
�|a:tGM426H!I{(uO(syj�rR�zϢ
v\u�9-&�v�eN�6qa�?n͕g7ckX?"�B�5)Vr0u%hzGSYqza\/�n/$h ^�1M�aOt53~p0͎3{�QlgiV6p]t3c>ԁ�h
0>2Rlɪ�+> 2,irNRϢswDF:Lpz�]�zߍ
WuR݅GTT7FogM�GD�0|/�W>0�T%U�R1iy�mP*fNr 0�i[ }��( bQ-��ã,z2/d�2bQ)*%�Nd��[x��
�"!ck?��"MMxhc
�R�g3ɖB�x�K��LC�V��3,�q�v_ōyAhhqLL�^�?����֏ZY9|}�?"}QL
�p�ف�b�ß91�V̶Rfo'��n[1ilsՓc<�d¼zO;Vչ:|B.w�(@?^.L��~_i\00��U1)�XwpՐZ&?�pȾYM�$(��X��^.Ƹ�O^LE"^�;a
]6{a��孀��
vzN[ioėE:�~\R��^s-= rBp�B_]�(d�0
sv٬߄g#6b�7�BvMF��zV֏5C2ҝa��쐶Cվtn��,�r�uXKr!�j,r9Aϐa(�nԏl_�k*�ٿ+,k�̚]�f·$Ã2X��AQN��@�RPOh5[#�eSt{Qgp{"��
B�B�0FG_TZ(BShDO�g4<9S%jw E/JN�ns3tR/ҷoHW蘧Kw��tE�t_(���h,�UfsF;H:G��Ծluާ&���z?!�v)�o��mG "HŦ:�7dl&u"N M5�W"6vvLӎ'>�fax!w�m88D@Y@'�=NfPvƓΨˢ
ݖ2x�9'K:%SBw&��?d@T7�]���X9z�}�D{OG,�ik�n;�;g�?PV5s#h*�
2Nm/hU5fX%�sgNt.&F\uz~kސէ�arڄ.cA#Y��=GgWO+u�\�>e>x>HА[#=p>~䌜0n3|ukUe��Oÿ�_Q:C"vo�7-*A5sK�<�L>?Fvdc:� M"�IVU)Ȫ̅S9�G#�pZx>2�M�#}l�%3��۵�wD�Z
AY�^eؖrdbL��2��HB%�;e�ܝ)³��$`GDA|g˩fgfvA
j��wpfUE0p>�~��~1 ߉;vbE�#Ɠt�-໊6YQ|=�M8S{G�4�l�p*_r
w1� |gM5�%&p$~�qI�M{fr+��(?8��̛'VD��吸�[bT�[0ׇ| |rK��ֈe[a32OrYfU>,0eR]QEX3㯇bi}:mk2�:4�;c-3H0gx}�9g��,q�ꎜb^Vv%�ϯ&5`lS/$�&%�TRI�(�繞��,)�D-���p`�4�h_ԞVoGz1�Ebo�[[`�3�S�蘠s�V�;�Y(�Cҵ8},WRJ�r�leo
;~ o�I%�Kwl-"� o�̓ID4I\��K~uFt}iz^�|^x]�W�2RˤT*E5üȘ'9*o��ۥWa�4�CoNh ]�6F�R?�ݲg-vH�}�ᒚ-Q4̂��2iJ�D�]�O{$�Ly/OeYt���R�,%,
?$oq�Go�RìaL0P��(�9D���A�E(��9i�Â_\K\$
՞Qygk ~~~V|mf[=i4���DG$w.-Ni@c��ǤAXu}��uV]^/-}{:�>K��íe/G�n(HXItrpņ�:�s[�k[^ڮ(6$hq&n]ῢ4nQ4ݬCm��,.s/uv�'�'q�9 qokz�v*/e_ۻu1KЗ5E�tʜa�O4\]�T�^�rL4Z�D�"����v/Oүf3u�"]?@/8Ң!U��I\$+~3'��S;[1EڸfNh[vuH깰��SoGIM+ꑰjwhǭ]m{c�'L�N;��.(/{hr�\[]o~Y}Z�r#��i_g+P[n}J+j�
`NuCn�Bo2�_f0+73�xc"]o�T�l_��BS��YS6$y}�]+h'
P|F0���_�X�'YEQj\ӧS�@^�{Ľ+^[
-^XNu�v�G
�(Zdph6�+3$6d
[IHg�c9}Fpv8aY[Ɠ@�I�
�Sr�
yS݃^&=:\ãC9Ą(|Lw-�E5~bśW^�/m'),�'�Ɨ+`m{72О$oc]��Dq(�!Z�z8R;�~�x~1UC�1?@1#뀳�\=ó�^i=T60Q�P��G?Lʑr���PRo|֊�[^4��U;{��}_�+� 3gJ1!"$t���w�Yo�}^c�*�'y}Bdb�K��4K4�`a�L['��]|py�#/?z? �C_߹q��6;�h�]l҈S
b�fBz&4)Y`�+c�rQtj͢\iFwۻ/�|�T�j'a.IG�Oc�<;9ﴉnlI㗍ն�b}D3'�9�*�'A0�^J�>d{KB.>ew<�abVDDW#
`�VytFm�$WektZ���`�2wg)B&8"Ξ+n..Hns>NQhp�#qn�x�l�+J&�I�O
xt%m"B.�;η�P"?�pqI:m#!k�c9҄娑�RQrx.�IݺJa?ч�r&p:8TdL4B&(qTik$<49|?_o]&l$[,NNL�dH)P�7��-ɮ#9�f3�3��oX,�;�'I}:i(۸l�1@#Ӻfb��WoP$P ث!a2bI�l|�9g[T�`j�_�$�MJt(�(�� �I�[P[,(?B5D�u�SJHbnBw>~3;3dB��AuZ/|~~Xo�[IP}�c*�0�Ln
0���:�N�%E9�Y����|1ay3`<�P�0$Lk{Ir~$�P!%�h$^�9`%1x1WbXqd�+e�:�
=܇>RXX_oՒR�&uY}%>1XU��9k<>,�4�ex%L�zeQ!er��f$-ClK,1=TG$͈ɵ7֝>XZ�9ܐ:9i6IiuWIpG�Z[8">^v�:ן[WU/S;m?{�m}Yx<:EM@Ц۫Ja7V3%N.{0<��(�"vͳ�\53Ф�ŻK`˔P>3N)guzJy�;)
AR~�gρ>)y�K�(]6�ZR�RCL*�o璉O/�e
|jiC)o�v�|o;mO;>m;mv
?)2zP1�/R�O)oCy;�*e|@~R
*e:'��N~k�)onR���K/P�_�R#L+}LG�BmZ9m
B)�ݦ_ry�)rVƅ)�iJy!S;MB�EZ�SZ9,S+Pϊ
�k�~-2:\�~�y/�> u}i$�R�W�*7ӖKV`�[Zt�tb}at�5Ru$X2f�1O�2
N2 h�< X>rnm<\n`0v)�ͣ,��e*o�3?8� =�Po�].�wqShג�3%�|
pr�Ӛܴ_ȗhg?�<2kSյ/cjkp'k͠?~�%k`!0`p<㵴0=:u?�5�OKD,J��EU.h_m˹0׀�z;��[�,�?f�Tz�*8�UߚL�G�8��%��� ~�M
qJq`�FCn-3 !�M�
7\5�;�}ö0J2@*5-Z,�J_�俑�$2������zD�+kUMV�Y)I2ZQ�%rF(x�-<#
��.=]�-��eM-ˡs�yx(6+Ř�h#LɖP���p
E�?&GG�3UyFx,�3�'�æ8|pޤv,�P�@0�=���s��T;X^F�,�؞.F^�$�b"Hw-ߟE�ǤK�4l!%bn�1v�fuƿ�>ЗNGLn��~�f|`�u�ԛ+تG�Ѩǜ5#7C�;xLJ���OW�>M�F��r&߲)t_�;W�UM9P�727\t"�|3˸ [2FlX jXJr��X\Nķ
�ɱz?]b�s,&��Bpe^�h08
8dי^C?c��7yt)��1�$�;YͿ�`=1BVV5W
�ƅg،̓�b(SL�i�U/μv�Z�z`�,�wvS�t�:aJ�w -4"f̓�)[3�F�-'�T�LSod �o6Nώ{;Y;u�kQݏ;�h5 œj@@r6,�k&�,Ԧaw?8~1,D*�9מ+ƕwO$koN7
4~ʴ៵:^Wt_"Dl;�Yz#Oޒ{ξ(� ;Cb�ЄΧM:SA\W �]r�⁜1ӛ>D1�ue|�nHHUΧf2{N�:�h���-j>�J݂)0toi�}r:7Y �96O�-�Q-�0pkWp!@>pMT'*QTD
KQ)Yb���d㜹F\@9
3/�&u@NEqDg뫥k٢^|:ym랮�E
@8l:�ؖ?^�c/p�5�"`w;|i_��1
bdkq=3�G(q32,@P�̰S}'k7V`��=H�S^s(�R>hvp#b��c�ݾÀ��
f���KϲU\M(�4l-^�FM}EtA;=���/+k_�46�*�s,&Il}C5���ᘭ��m{~k�C'> �:qu2^GB"8z�I,���Ma4,Lb5��"[]QI
�BF�kY�1'(���R9(t�&0 '�Ɣ
ϰ�"�= s�k9)��,�3w:gy�|%h72bo�_g�sOg�3}E. Ƹ0X��+Ƌ�XM鲙4|�4P�b!睫t^o.?�{9?R���v"<~v�>7
|
Network Security & Hardware 
