IBM develops crypto-peeking tech

Author: Gareth Halfacree
Published: 26th June 2009
Comments (9) Stumble
IBM develops crypto-peeking tech

IBM's Charles Lickel likens homomorphic encryption to performing "flawless neurosurgery while blindfolded."

IBM believes it has cracked – if you'll pardon the pun – the tricky subject of handling and processing sensitive encrypted data.

As reported over on TechRadar, IBM researcher Craig Gentry has figured out a way to analyse and process encrypted data without actually decrypting it first – ensuring total data security at all points.

The technique, known as homomorphic encryption, allows encrypted data to be worked with in the same way as unencrypted data – with the exception that the original clear-text data is never at risk of exposure. While homomorphic encryption was first mooted around thirty years ago by cryptography giants Ron Rivest and Leonard Adleman – two of the three people behind the popular RSA public-key crypto algorithm - it's not until now that a workable implementation has been developed.

Gentry's discovery – made as a summer student at IBM's Research division while working on his PhD thesis - that ideal lattices can be used to work with encrypted data could prove to be a real boon for the burgeoning cloud computing industry, which still suffers from a concern – especially in big business – that private data is shipped to a third party over a public network. The process could also be used to detect viruses in encrypted e-mails and even to allow complete privacy when using a web search engine.

The vice president of Software Research at IBM Charles Lickel described the technique as being similar to “enabling a layperson to perform flawless neurosurgery while blindfolded, and without later remembering the episode,” which is just about the most awesome thing any IBM employee has ever said.

While it'll take a while for IBM to iron out the kinks in the new technology, it's likely that analysis of encrypted data will be a feature of most servers before too long.

Does the thought that systems can peek inside your encrypted data stores without your knowledge give you the heebie-jeebies, or are you looking forward to the day when true end-to-end encryption is a reality? Share your thoughts over in the forums.
Quote mclean007 26th June 2009, 15:26
Quote:
Does the thought that systems can peek inside your encrypted data stores without your knowledge give you the heebie-jeebies
Surely the whole point is they CAN'T - this is about a technology that allows the manipulation of encrypted data without decryption. At the most basic level, this might involve an encryption system that preserves the ordinality of numbers - so E(3) (the result of encrypting the number 3) is less than E(5), E(10) < E(20) etc., and for any x < y, E(x) < E(y). That way you could sort encrypted data without decrypting it.

As a simple example, you could do this with a very simple but very weak encryption algorithm and very poor data efficiency (encrypted files would be larger than plaintext) - pick a large number as your key (k). Then to encrypt, E(x) = x * k + a random integer between 0 and (k-1). Because an attacker doesn't know k, he can't decrypt. The use of the random number prevents an attacker deducing k by factoring E(x). To decrypt, just round down E(x)/k to give an integer, x. This is flawed because the encryption is ludicrously weak, and also because if you encrypt two equal plaintexts there is no way to predict which will give a higher value after encryption, so sorting would not preserve the order of equal values, but it is an illustration.

I don't know what sort of operations you'd want to perform on encrypted data, but I guess sorting might be one of them. Addition and subtraction might be another. In any event, it will entail a different encryption algorithm to the usual suspects (RSA, AES etc.).

I look forward to reading about this in more detail.
Quote mjm25 26th June 2009, 15:32
^ wow. not sure i understood more than 30 percent of that
Quote _DTM2000_ 26th June 2009, 15:52
“enabling a layperson to perform flawless neurosurgery while blindfolded, and without later remembering the episode”

Hmm, sounds like an episode of Dollhouse.
Quote B1GBUD 26th June 2009, 15:52
Quote:
Originally Posted by mjm25
^ wow. not sure i understood more than 30 percent of that

Agreed, now my head hurts.... thanks
Quote mclean007 26th June 2009, 15:55
Sorry, I tend not to explain myself very well! Basically the idea is to allow some (presumably fairly basic) manipulation of encrypted data without needing to decrypt it and re-encrypt it. I'm sure it has applications, not sure exactly what!
Quote Jenny_Y8S 26th June 2009, 16:51
Very sceptical of the security within this one. Searching is one area where encryption is a barrier to function and for good reason.

I build fundraising systems for some of the big name charities and you have to be clever to work around the FACT!! that you cannot search within encypted data without either A) compromising your encryption methods or B) decrypting everthing before you search.

Any technique that allows basic manipulation (even sorting) poses a potential risk of exposing the contents or content distribution of your encrypted data.

It also has it's flaws, as you will see here: http://portal.acm.org/citation.cfm?doid=1536414.1536440
Quote nicae 26th June 2009, 17:34
Quote:
Originally Posted by mclean007
Sorry, I tend not to explain myself very well! Basically the idea is to allow some (presumably fairly basic) manipulation of encrypted data without needing to decrypt it and re-encrypt it. I'm sure it has applications, not sure exactly what!

I understood your first post. It was very clear, actually. Thanks!
Quote:
Originally Posted by Jenny_Y8S
I build fundraising systems for some of the big name charities and you have to be clever to work around the FACT!! that you cannot search within encypted data without either A) compromising your encryption methods or B) decrypting everthing before you search.

It's your FACT!!s that are being challenged by this man's discovery.
Quote thehippoz 27th June 2009, 02:40
homo encryption huh
Quote boggsi 28th June 2009, 19:47
A quick look at wikipedia sheds plenty of light on this subject. Homomorphic encryption in the past has existed but only allowed one of two operations on the encrypted data, addition or multiplication. I'm assuming this IBM breakthrough allows both.

To do this as an example, if you were the only one that could decrypt information from your bank. Homorphic encryption would allow you to pass this encrypted data on to a third party and they could for example add up all the debits and credits returning you a balance. But they would do this purely with the encrypted information from your bank and return the answer to you encrypted in the same way. They would never need (or be able to) to decrypt and see the actual amounts of money you transacted.

Obviously this is a limited example, but you can imagine the possibilities for third parties processing your personal information without ever having access to its actual details.
Log in

You are not logged in, please login with your forum account below. If you don't already have an account please register to start contributing.