Publication

Bayes Security: A Not So Average Metric

Carmela González Troncoso, Giovanni Cherubin
2023
Conference paper

Abstract

Security system designers favor worst-case security metrics, such as those derived from differential privacy (DP), due to the strong guarantees they provide. On the downside, these guarantees result in a high penalty on the system's performance. In this paper, we study Bayes security, a security metric inspired by the cryptographic advantage. Similarly to DP, Bayes security i) is independent of an adversary's prior knowledge, ii) it captures the worst-case scenario for the two most vulnerable secrets (e.g., data records); and iii) it is easy to compose, facilitating security analyses. Additionally, Bayes security iv) can be consistently estimated in a black-box manner, contrary to DP, which is useful when a formal analysis is not feasible; and v) provides a better utility-security trade-off in high-security regimes because it quantifies the risk for a specific threat model as opposed to threat-agnostic metrics such as DP. We formulate a theory around Bayes security, and we provide a thorough comparison with respect to well-known metrics, identifying the scenarios where Bayes Security is advantageous for designers.

Official source

https://infoscience.epfl.ch/record/305889?ln=en

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Ontological neighbourhood

Business

Business administration: Risk management

Logic

Classical logic: First-order logic

Related concepts (34)

Related publications (63)

Related MOOCs (2)

Graph Chatbot

Chat with Graph Search

Ask any question about EPFL courses, lectures, exercises, research, news, etc. or try the example questions below.

DISCLAIMER: The Graph Chatbot is not programmed to provide explicit or categorical answers to your questions. Rather, it transforms your questions into API requests that are distributed across the various IT services officially administered by EPFL. Its purpose is solely to collect and recommend relevant references to content that you can explore to help you answer your questions.

Bayes Security: A Not So Average Metric

Graph Chatbot

Chat with Graph Search

Using automated design appraisal to model building-specific devaluation risk due to land-use change

Correlation of powers of Hüsler-Reiss vectors and Brown-Resnick fields, and application to insured wind losses

Re-evaluating the mythical divide between traditional and novel cardiovascular risk factors in rheumatoid arthritis

Correlation of powers of Hüsler-Reiss vectors and Brown-Resnick fields, and application to insured wind losses

Using automated design appraisal to model building-specific devaluation risk due to land-use change

Re-evaluating the mythical divide between traditional and novel cardiovascular risk factors in rheumatoid arthritis