© University of Kent - Contact | Feedback | Legal | FOI | Cookies
Abstract for Seminar
In this talk I will outline some results that make it possible to estimate measures of information leakage based on mutual information and min-entropy from trial runs of a system alone. We propose statistical estimation as a method of applying more theoretical work on quantitative security directly to implemented systems, and we will demonstrate this by measuring the information leak in MIX nodes and from encrypted Tor traffic. We will then present a model of leakage for complete, probabilistic, non-terminating programs and show how we can use this to estimate the information leakage from large Java Programs.