Cloud-based and distributed computations are of growing interest in modern control systems. However, these technologies require performing computations on not necessarily trustworthy platforms and, thus, put the confidentiality of sensitive control-related data at risk. Encrypted control has dealt with this issue by utilizing modern cryptosystems with homomorphic properties, which allow a secure evaluation at the cost of an increased computation or communication effort (among others). Recently, a cipher based on a random affine transformation gained attention in the encrypted control community. Its appeal stems from the possibility to construct security providing homomorphisms that do not suffer from the restrictions of ``conventional'' approaches. This paper provides a cryptanalysis of random affine transformations in the context of encrypted control. To this end, a deterministic and probabilistic variant of the cipher over real numbers are analyzed in a generalized setup, where we use cryptographic definitions for security and attacker models. It is shown that the deterministic cipher breaks under a known-plaintext attack, and unavoidably leaks information of the closed-loop, which opens another angle of attack. For the probabilistic variant, statistical indistinguishability of ciphertexts can be achieved, which makes successful attacks unlikely. We complete our analysis by investigating a floating point realization of the probabilistic random affine transformation cipher, which unfortunately suggests the impracticality of the scheme if a security guarantee is needed.
翻译:云计算和分布式计算在现代控制系统中越来越受到关注。然而,这些技术需要在不一定可信的平台上执行计算,因此会危及敏感的与控制相关的数据的机密性。加密控制通过利用具有同态属性的现代密码系统来处理此问题,这些同态属性允许在付出更多计算或通信等代价的前提下进行安全的评估。最近,在加密控制群体中引起了关注的是基于随机仿射变换的密码。其吸引力在于可能构建安全性提供的同态性,而不会遭受“传统”方法的限制。本文在加密控制的上下文中对随机仿射变换进行密码分析。为此,在一个广义的设置中,分析了在实数上的确定性和概率变量,我们使用密码学定义进行安全性和攻击模型。结果表明,确定性密码在已知明文攻击下会被破解,并不可避免地泄露闭环的信息,这开启了另一个攻击角度。对于概率变量,可以实现密文的统计不可分辨性,这使成功攻击变得不太可能。通过调查概率随机仿射变换密码的浮点实现,我们完成了分析,但不幸的是,这表明如果需要安全保证,该方案将不实用。