The science of quantitative information flow

This book presents a comprehensive mathematical theory that explains precisely what information flow is, how it can be assessed quantitatively - so bringing precise meaning to the intuition that certain information leaks are small enough to be tolerated - and how systems can be constructed that achieve rigorous, quantitative information-flow guarantees in those terms. It addresses the fundamental challenge that functional and practical requirements frequently conflict with the goal of preserving confidentiality, making perfect security unattainable. Topics include: a systematic presentation of how unwanted information flow, i.e., "leaks", can be quantified in operationally significant ways and then bounded, both with respect to estimated benefit for an attacking adversary and by comparisons between alternative implementations; a detailed study of capacity, refinement, and Dalenius leakage, supporting robust leakage assessments; a unification of information-theoretic channels and information-leaking sequential programs within the same framework; and a collection of case studies, showing how the theory can be applied to interesting realistic scenarios. The text is unified, self-contained and comprehensive, accessible to students and researchers with some knowledge of discrete probability and undergraduate mathematics, and contains exercises to facilitate its use as a course textbook.

Part I, Motivation.- Introduction.- Part II, Secrets and How to Measure Them.- Modeling Secrets.- On g-Vulnerability.- Part III, Channels and Information Leakage.- Channels.- Posterior Vulnerability and Leakage.- Robustness.- Capacity.- Composition of Channels.- Refinement.- The Dalenius Perspective.- Axiomatics.- The Geometry of Hypers, Gains, and Losses.- Part IV, Information Leakage in Sequential Programs.- Quantitative Information Flow in Sequential Computer Programs.- Hidden-Markov Modeling of QIF in Programs.- Program Algebra for QIF.- Iteration and Non-termination.- A Demonic Lattice of Information.- Part V, Applications.- The Crowds Protocol.- Timing Attacks on Blinded and Bucketed Cryptography.- Defense Against Side Channels.- Multi-party Computation: The Three Judges Protocol.- Voting Systems.- Differential Privacy.- Glossary and Index.