Search

Your search keyword '"Alomair, Basel"' showing total 174 results
Start Over Author "Alomair, Basel"
174 results on '"Alomair, Basel"'

1. Vulnerability Detection with Code Language Models: How Far Are We?

Author

Ding, Yangruibo, Fu, Yanjun, Ibrahim, Omniyyah, Sitawarin, Chawin, Chen, Xinyun, Alomair, Basel, Wagner, David, Ray, Baishakhi, and Chen, Yizheng

Subjects
Computer Science - Software Engineering, Computer Science - Computation and Language
Abstract

In the context of the rising interest in code language models (code LMs) and vulnerability detection, we study the effectiveness of code LMs for detecting vulnerabilities. Our analysis reveals significant shortcomings in existing vulnerability datasets, including poor data quality, low label accuracy, and high duplication rates, leading to unreliable model performance in realistic vulnerability detection scenarios. Additionally, the evaluation methods used with these datasets are not representative of real-world vulnerability detection. To address these challenges, we introduce PrimeVul, a new dataset for training and evaluating code LMs for vulnerability detection. PrimeVul incorporates a novel set of data labeling techniques that achieve comparable label accuracy to human-verified benchmarks while significantly expanding the dataset. It also implements a rigorous data de-duplication and chronological data splitting strategy to mitigate data leakage issues, alongside introducing more realistic evaluation metrics and settings. This comprehensive approach aims to provide a more accurate assessment of code LMs' performance in real-world conditions. Evaluating code LMs on PrimeVul reveals that existing benchmarks significantly overestimate the performance of these models. For instance, a state-of-the-art 7B model scored 68.26% F1 on BigVul but only 3.09% F1 on PrimeVul. Attempts to improve performance through advanced training techniques and larger models like GPT-3.5 and GPT-4 were unsuccessful, with results akin to random guessing in the most stringent settings. These findings underscore the considerable gap between current capabilities and the practical requirements for deploying code LMs in security roles, highlighting the need for more innovative research in this domain., Comment: Accepted for the 47th IEEE/ACM International Conference on Software Engineering (ICSE 2025); Camera-ready Work in Progress

Published
2024

2. Jatmo: Prompt Injection Defense by Task-Specific Finetuning

Author

Piet, Julien, Alrashed, Maha, Sitawarin, Chawin, Chen, Sizhe, Wei, Zeming, Sun, Elizabeth, Alomair, Basel, and Wagner, David

Subjects
Computer Science - Cryptography and Security, Computer Science - Artificial Intelligence, Computer Science - Computation and Language
Abstract

Large Language Models (LLMs) are attracting significant research attention due to their instruction-following abilities, allowing users and developers to leverage LLMs for a variety of tasks. However, LLMs are vulnerable to prompt-injection attacks: a class of attacks that hijack the model's instruction-following abilities, changing responses to prompts to undesired, possibly malicious ones. In this work, we introduce Jatmo, a method for generating task-specific models resilient to prompt-injection attacks. Jatmo leverages the fact that LLMs can only follow instructions once they have undergone instruction tuning. It harnesses a teacher instruction-tuned model to generate a task-specific dataset, which is then used to fine-tune a base model (i.e., a non-instruction-tuned model). Jatmo only needs a task prompt and a dataset of inputs for the task: it uses the teacher model to generate outputs. For situations with no pre-existing datasets, Jatmo can use a single example, or in some cases none at all, to produce a fully synthetic dataset. Our experiments on seven tasks show that Jatmo models provide similar quality of outputs on their specific task as standard LLMs, while being resilient to prompt injections. The best attacks succeeded in less than 0.5% of cases against our models, versus 87% success rate against GPT-3.5-Turbo. We release Jatmo at https://github.com/wagner-group/prompt-injection-defense., Comment: 24 pages, 6 figures

Published
2023

3. Can LLMs Follow Simple Rules?

Author

Mu, Norman, Chen, Sarah, Wang, Zifan, Chen, Sizhe, Karamardian, David, Aljeraisy, Lulwa, Alomair, Basel, Hendrycks, Dan, and Wagner, David

Subjects
Computer Science - Artificial Intelligence, Computer Science - Computation and Language, Computer Science - Machine Learning
Abstract

As Large Language Models (LLMs) are deployed with increasing real-world responsibilities, it is important to be able to specify and constrain the behavior of these systems in a reliable manner. Model developers may wish to set explicit rules for the model, such as "do not generate abusive content", but these may be circumvented by jailbreaking techniques. Existing evaluations of adversarial attacks and defenses on LLMs generally require either expensive manual review or unreliable heuristic checks. To address this issue, we propose Rule-following Language Evaluation Scenarios (RuLES), a programmatic framework for measuring rule-following ability in LLMs. RuLES consists of 14 simple text scenarios in which the model is instructed to obey various rules while interacting with the user. Each scenario has a programmatic evaluation function to determine whether the model has broken any rules in a conversation. Our evaluations of proprietary and open models show that almost all current models struggle to follow scenario rules, even on straightforward test cases. We also demonstrate that simple optimization attacks suffice to significantly increase failure rates on test cases. We conclude by exploring two potential avenues for improvement: test-time steering and supervised fine-tuning., Comment: Project website: https://eecs.berkeley.edu/~normanmu/llm_rules; revised content

Published
2023

4. Jatmo: Prompt Injection Defense by Task-Specific Finetuning

Author

Piet, Julien, Alrashed, Maha, Sitawarin, Chawin, Chen, Sizhe, Wei, Zeming, Sun, Elizabeth, Alomair, Basel, Wagner, David, Goos, Gerhard, Series Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Garcia-Alfaro, Joaquin, editor, Kozik, Rafał, editor, Choraś, Michał, editor, and Katsikas, Sokratis, editor

Published
2024
Full Text
View/download PDF

5. On the Structure and Computation of Random Walk Times in Finite Graphs

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control
Abstract

We consider random walks in which the walk originates in one set of nodes and then continues until it reaches one or more nodes in a target set. The time required for the walk to reach the target set is of interest in understanding the convergence of Markov processes, as well as applications in control, machine learning, and social sciences. In this paper, we investigate the computational structure of the random walk times as a function of the set of target nodes, and find that the commute, hitting, and cover times all exhibit submodular structure, even in non-stationary random walks. We provide a unifying proof of this structure by considering each of these times as special cases of stopping times. We generalize our framework to walks in which the transition probabilities and target sets are jointly chosen to minimize the travel times, leading to polynomial-time approximation algorithms for choosing target sets. Our results are validated through numerical study.

Published
2017

6. Combinatorial Algorithms for Control of Biological Regulatory Networks

Author

Clark, Andrew, Lee, Phillip, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control
Abstract

Biological processes, including cell differentiation, organism development, and disease progression, can be interpreted as attractors (fixed points or limit cycles) of an underlying networked dynamical system. In this paper, we study the problem of computing a minimum-size subset of control nodes that can be used to steer a given biological network towards a desired attractor, when the networked system has Boolean dynamics. We first prove that this problem cannot be approximated to any nontrivial factor unless P=NP. We then formulate a sufficient condition and prove that the sufficient condition is equivalent to a target set selection problem, which can be solved using integer linear programming. Furthermore, we show that structural properties of biological networks can be exploited to reduce the computational complexity. We prove that when the network nodes have threshold dynamics and certain topological structures, such as block cactus topology and hierarchical organization, the input selection problem can be solved or approximated in polynomial time. For networks with nested canalyzing dynamics, we propose polynomial-time algorithms that are within a polylogarithmic bound of the global optimum. We validate our approach through numerical study on real-world gene regulatory networks.

Published
2017

7. Submodularity in Input Node Selection for Networked Systems

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control
Abstract

Networked systems are systems of interconnected components, in which the dynamics of each component are influenced by the behavior of neighboring components. Examples of networked systems include biological networks, critical infrastructures such as power grids, transportation systems, and the Internet, and social networks. The growing importance of such systems has led to an interest in control of networks to ensure performance, stability, robustness, and resilience. A widely-studied method for controlling networked systems is to directly control a subset of input nodes, which then steer the remaining nodes to their desired states. This article presents submodular optimization approaches for input node selection in networked systems. Submodularity is a property of set functions that enables the development of computationally tractable algorithms with provable optimality bounds. For a variety of physically relevant systems, the physical dynamics have submodular structures that can be exploited to develop efficient input selection algorithms. This article will describe these structures and the resulting algorithms, as well as discuss open problems.

Published
2016

8. Secret-Key Agreement with Public Discussion subject to an Amplitude Constraint

Author

Zorgui, Marwen, Rezki, Zouheir, Alomair, Basel, and Alouini, Mohamed-Slim

Subjects
Computer Science - Information Theory
Abstract

This paper considers the problem of secret-key agreement with public discussion subject to a peak power constraint $A$ on the channel input. The optimal input distribution is proved to be discrete with finite support. The result is obtained by first transforming the secret-key channel model into an equivalent Gaussian wiretap channel with better noise statistics at the legitimate receiver and then using the fact that the optimal distribution of the Gaussian wiretap channel is discrete. To overcome the computationally heavy search for the optimal discrete distribution, several suboptimal schemes are proposed and shown numerically to perform close to the capacity. Moreover, lower and upper bounds for the secret-key capacity are provided and used to prove that the secret-key capacity converges for asymptotic high values of $A$, to the secret-key capacity with an average power constraint $A^2$. Finally, when the amplitude constraint A is small ($A \to 0$), the secret-key capacity is proved to be asymptotically equal to the capacity of the legitimate user with an amplitude constraint A and no secrecy constraint.

Published
2016
Full Text
View/download PDF

9. Adaptive Mitigation of Multi-Virus Propagation: A Passivity-Based Approach

Author

Lee, Phillip, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control, Computer Science - Cryptography and Security
Abstract

Malware propagation poses a growing threat to networked systems such as computer networks and cyber-physical systems. Current approaches to defending against malware propagation are based on patching or filtering susceptible nodes at a fixed rate. When the propagation dynamics are unknown or uncertain, however, the static rate that is chosen may be either insufficient to remove all viruses or too high, incurring additional performance cost. In this paper, we formulate adaptive strategies for mitigating multiple malware epidemics when the propagation rate is unknown, using patching and filtering-based defense mechanisms. In order to identify conditions for ensuring that all viruses are asymptotically removed, we show that the malware propagation, patching, and filtering processes can be modeled as coupled passive dynamical systems. We prove that the patching rate required to remove all viruses is bounded above by the passivity index of the coupled system, and formulate the problem of selecting the minimum-cost mitigation strategy. Our results are evaluated through numerical study.

Published
2016

10. Input Selection for Performance and Controllability of Structured Linear Descriptor Systems

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Mathematics - Optimization and Control
Abstract

A common approach to controlling complex networks is to directly control a subset of input nodes, which then controls the remaining nodes via network interactions. While techniques have been proposed for selecting input nodes based on either performance metrics or controllability, a unifying approach based on joint consideration of performance and controllability is an open problem. In this paper, we develop a submodular optimization framework for selecting input nodes based on joint performance and controllability in structured linear descriptor systems. We develop our framework for arbitrary linear descriptor systems. In developing our framework, we first prove that selecting a minimum-size set of input nodes for controllability is a matroid intersection problem that can be solved in polynomial-time in the network size. We then prove that input selection to maximize a performance metric with controllability as a constraint is equivalent to maximizing a monotone submodular function with two matroid basis constraints, and derive efficient approximation algorithms with provable optimality bounds for input selection. Finally, we present a graph controllability index metric, which characterizes the largest controllable subgraph of a given complex network, and prove its submodular structure, leading to input selection algorithms that trade-off performance and controllability. We provide improved optimality guarantees for known systems such as strongly connected networks, consensus networks, networks of double integrators, and networks where all system parameters (e.g., link weights) are chosen independently and at random.

Published
2014

11. Global Practical Node and Edge Synchronization in Kuramoto Networks: A Submodular Optimization Framework

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control
Abstract

Synchronization underlies phenomena including memory and perception in the brain, coordinated motion of animal flocks, and stability of the power grid. These synchronization phenomena are often modeled through networks of phase-coupled oscillating nodes. Heterogeneity in the node dynamics, however, may prevent such networks from achieving the required level of synchronization. In order to guarantee synchronization, external inputs can be used to pin a subset of nodes to a reference frequency, while the remaining nodes are steered toward synchronization via local coupling. In this paper, we present a submodular optimization framework for selecting a set of nodes to act as external inputs in order to achieve synchronization from almost any initial network state. We derive threshold-based sufficient conditions for synchronization, and then prove that these conditions are equivalent to connectivity of a class of augmented network graphs. Based on this connection, we map the sufficient conditions for synchronization to constraints on submodular functions, leading to efficient algorithms with provable optimality bounds for selecting input nodes. We illustrate our approach via numerical studies of synchronization in networks from power systems, wireless networks, and neuronal networks.

Published
2014

12. Minimizing Convergence Error in Multi-Agent Systems via Leader Selection: A Supermodular Optimization Approach

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Subjects
Computer Science - Systems and Control
Abstract

In a leader-follower multi-agent system (MAS), the leader agents act as control inputs and influence the states of the remaining follower agents. The rate at which the follower agents converge to their desired states, as well as the errors in the follower agent states prior to convergence, are determined by the choice of leader agents. In this paper, we study leader selection in order to minimize convergence errors experienced by the follower agents, which we define as a norm of the distance between the follower agents' intermediate states and the convex hull of the leader agent states. By introducing a novel connection to random walks on the network graph, we show that the convergence error has an inherent supermodular structure as a function of the leader set. Supermodularity enables development of efficient discrete optimization algorithms that directly approximate the optimal leader set, provide provable performance guarantees, and do not rely on continuous relaxations. We formulate two leader selection problems within the supermodular optimization framework, namely, the problem of selecting a fixed number of leader agents in order to minimize the convergence error, as well as the problem of selecting the minimum-size set of leader agents to achieve a given bound on the convergence error. We introduce algorithms for approximating the optimal solution to both problems in static networks, dynamic networks with known topology distributions, and dynamic networks with unknown and unpredictable topology distributions. Our approach is shown to provide significantly lower convergence errors than existing random and degree-based leader selection methods in a numerical study., Comment: 33 pages, 4 figures

Published
2013

13. Joint Performance and Controllability of Networked Systems

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

14. Input Selection for Robustness to Noise

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

15. Resilience to Link Noise Injection Attacks

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

16. Background on Control of Networked Systems

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

17. Selecting Catalyst Nodes for Synchronization

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

18. Submodular Optimization for Smooth Convergence

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

19. Emerging Topics: Submodularity in Energy Systems

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

20. Submodular Functions and Matroids

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

21. Distributed Submodular Maximization

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

22. Centralized Submodular Optimization

Author

Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Isidori, Alberto, Series editor, van Schuppen, Jan H., Series editor, Sontag, Eduardo D., Series editor, Krstic, Miroslav, Series editor, Clark, Andrew, Alomair, Basel, Bushnell, Linda, and Poovendran, Radha

Published
2016
Full Text
View/download PDF

23. Secure Error-Tolerant Graph Matching Protocols

Author

Mandal, Kalikinkar, Alomair, Basel, Poovendran, Radha, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Foresti, Sara, editor, and Persiano, Giuseppe, editor

Published
2016
Full Text
View/download PDF

24. Passivity-Based Distributed Strategies for Stochastic Stackelberg Security Games

Author

Lee, Phillip, Clark, Andrew, Alomair, Basel, Bushnell, Linda, Poovendran, Radha, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Khouzani, MHR, editor, Panaousis, Emmanouil, editor, and Theodorakopoulos, George, editor

Published
2015
Full Text
View/download PDF

25. Universal Hash-Function Families: From Hashing to Authentication

Author

Alomair, Basel, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Kobsa, Alfred, editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Weikum, Gerhard, editor, Pointcheval, David, editor, and Vergnaud, Damien, editor

Published
2014
Full Text
View/download PDF

26. Authenticated Encryption: How Reordering Can Impact Performance

Author

Alomair, Basel, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Bao, Feng, editor, Samarati, Pierangela, editor, and Zhou, Jianying, editor

Published
2012
Full Text
View/download PDF

27. -MACs: Towards More Secure and More Efficient Constructions of Secure Channels

Author

Alomair, Basel, Poovendran, Radha, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Rhee, Kyung-Hyune, editor, and Nyang, DaeHun, editor

Published
2011
Full Text
View/download PDF

28. Efficient Authentication for Mobile and Pervasive Computing

Author

Alomair, Basel, Poovendran, Radha, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Soriano, Miguel, editor, Qing, Sihan, editor, and López, Javier, editor

Published
2010
Full Text
View/download PDF

29. Efficient Generic Forward-Secure Signatures and Proxy Signatures

Author

Alomair, Basel, Sampigethaya, Krishna, Poovendran, Radha, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Mjølsnes, Stig F., editor, Mauw, Sjouke, editor, and Katsikas, Sokratis K., editor

Published
2008
Full Text
View/download PDF

30. Passive Attacks on a Class of Authentication Protocols for RFID

Author

Alomair, Basel, Lazos, Loukas, Poovendran, Radha, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Nam, Kil-Hyun, editor, and Rhee, Gwangsoo, editor

Published
2007
Full Text
View/download PDF

43. The power of primes: security of authentication based on a universal hash-function family

Author

Alomair Basel, Clark Andrew, and Poovendran Radha

Subjects
cryptography, authentication, finite integer rings, universal hash-function families, Mathematics, QA1-939
Abstract

Message authentication codes (MACs) based on universal hash-function families are becoming increasingly popular due to their fast implementation. In this paper, we investigate a family of universal hash functions that has been appeared repeatedly in the literature and provide a detailed algebraic analysis for the security of authentication codes based on this universal hash family. In particular, the universal hash family under analysis, as appeared in the literature, uses operation in the finite field ℤp. No previous work has studied the extension of such universal hash family when computations are performed modulo a non-prime integer n. In this work, we provide the first such analysis. We investigate the security of authentication when computations are performed over arbitrary finite integer rings ℤn and derive an explicit relation between the prime factorization of n and the bound on the probability of successful forgery. More specifically, we show that the probability of successful forgery against authentication codes based on such a universal hash-function family is bounded by the reciprocal of the smallest prime factor of the modulus n.

Published
2010
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results