Digital signatures with RSA and other public-key cryptosystems
Communications of the ACM
A security model for the statistical database problem
SSDBM'83 Proceedings of the 2nd international workshop on Proceedings of the Second International Workshop on Statistical Database Management
| Hi-index | 0.02 |
The man-time pad is a method of subverting thesecurity controls of a system to obtain data that is notdirectly accessible(e.g., because the data is confidential,classified, or otherwise deemed sensitive). It is theantithesis of the one-time pad, the only theoreticallyunbreakable cipher, in two respects: 1) whereas theone-time pad is a method of protection,the many-timepad is a method of attack; and 2) whereas the one-timepad is used just once, the many-time pad is reusable.A1so, whereas the interpretation of "pad" m the one-timepad comes from a "pad of paper", its interpretation in the many-time pad comes from "stuffing".What makes the many-time pad attack interesting isthat it arises in three different contexts: cryptographicsystems, where digital signatures can be forged ormessages decrypted; statistical databases, wheretrackers can be used to obtain confidential data; andprogramming systems, where Trojan Horses can beplanted in programs to leak sensitive input data, Weshall first describe the basic structure of the attack andcountermeasures for foiling it. We shall then show howthese three seemingly unrelated security threats arevariations of a common theme.