JA
J.S. Abrahams
info
Please Note
<p>This page displays the records of the person named above and is not linked to a unique person identifier. This record may need to be merged to a profile.</p>
2 records found
1
Quantum networks allow multiple devices to exchange information encoded within quantum systems.
Such quantum networks use classical control messages to coordinate entanglement between nodes.
Third parties which can forge such control messages may interfere with the workings of quantum links, however:
They may either perform fraudulent requests for entanglement, destroying local quantum memory of nodes as a result, or interfere with the inner workings of protocols within the quantum stack targeting the availability of the link(s).
We, therefore, conclude that all link and physical layer control messages must be transmitted via authenticated channels.
Typically one uses a Message Authentication Code (MAC) to do so, which takes as input a message and outputs a tag which is transmitted alongside the message.
Additionally, it takes as input a unique number each time (nonce) to prevent replay-type attacks.
In this work, we first investigate the use of information-theoretic MACs combined with quantum key distribution (QKD) to authenticate control messages. We find that the fastest QKD solutions provide key material at a rate that is sufficient to not become a bottleneck in current quantum links.
Second, we survey multiple computationally secure MAC solutions and benchmarks to get an indication of their performance when authenticating short messages.
While not information-theoretically secure, their latency is generally speaking greater than or equal to that of information-theoretic solutions.
Finally, we augment the existing simulation of a single quantum link by Dahlberg et al. by inserting delays based on the performance of these MACs.
The performance of the link is evaluated using the mean throughput:
The rate at which successfully entangled pairs are delivered.
We find that the introduction of transmission time overhead, without any authentication, causes a noticeable decrease in throughput of the link.
When considering an authenticated channel that uses SipHash (a popular MAC) we find that throughput decreases even further, though less significantly.
Therefore, the overall decrease in throughput appears to not be detrimental to the working of the quantum link, which remains functional even when the classical channel is authenticated. ...
Such quantum networks use classical control messages to coordinate entanglement between nodes.
Third parties which can forge such control messages may interfere with the workings of quantum links, however:
They may either perform fraudulent requests for entanglement, destroying local quantum memory of nodes as a result, or interfere with the inner workings of protocols within the quantum stack targeting the availability of the link(s).
We, therefore, conclude that all link and physical layer control messages must be transmitted via authenticated channels.
Typically one uses a Message Authentication Code (MAC) to do so, which takes as input a message and outputs a tag which is transmitted alongside the message.
Additionally, it takes as input a unique number each time (nonce) to prevent replay-type attacks.
In this work, we first investigate the use of information-theoretic MACs combined with quantum key distribution (QKD) to authenticate control messages. We find that the fastest QKD solutions provide key material at a rate that is sufficient to not become a bottleneck in current quantum links.
Second, we survey multiple computationally secure MAC solutions and benchmarks to get an indication of their performance when authenticating short messages.
While not information-theoretically secure, their latency is generally speaking greater than or equal to that of information-theoretic solutions.
Finally, we augment the existing simulation of a single quantum link by Dahlberg et al. by inserting delays based on the performance of these MACs.
The performance of the link is evaluated using the mean throughput:
The rate at which successfully entangled pairs are delivered.
We find that the introduction of transmission time overhead, without any authentication, causes a noticeable decrease in throughput of the link.
When considering an authenticated channel that uses SipHash (a popular MAC) we find that throughput decreases even further, though less significantly.
Therefore, the overall decrease in throughput appears to not be detrimental to the working of the quantum link, which remains functional even when the classical channel is authenticated. ...
Quantum networks allow multiple devices to exchange information encoded within quantum systems.
Such quantum networks use classical control messages to coordinate entanglement between nodes.
Third parties which can forge such control messages may interfere with the workings of quantum links, however:
They may either perform fraudulent requests for entanglement, destroying local quantum memory of nodes as a result, or interfere with the inner workings of protocols within the quantum stack targeting the availability of the link(s).
We, therefore, conclude that all link and physical layer control messages must be transmitted via authenticated channels.
Typically one uses a Message Authentication Code (MAC) to do so, which takes as input a message and outputs a tag which is transmitted alongside the message.
Additionally, it takes as input a unique number each time (nonce) to prevent replay-type attacks.
In this work, we first investigate the use of information-theoretic MACs combined with quantum key distribution (QKD) to authenticate control messages. We find that the fastest QKD solutions provide key material at a rate that is sufficient to not become a bottleneck in current quantum links.
Second, we survey multiple computationally secure MAC solutions and benchmarks to get an indication of their performance when authenticating short messages.
While not information-theoretically secure, their latency is generally speaking greater than or equal to that of information-theoretic solutions.
Finally, we augment the existing simulation of a single quantum link by Dahlberg et al. by inserting delays based on the performance of these MACs.
The performance of the link is evaluated using the mean throughput:
The rate at which successfully entangled pairs are delivered.
We find that the introduction of transmission time overhead, without any authentication, causes a noticeable decrease in throughput of the link.
When considering an authenticated channel that uses SipHash (a popular MAC) we find that throughput decreases even further, though less significantly.
Therefore, the overall decrease in throughput appears to not be detrimental to the working of the quantum link, which remains functional even when the classical channel is authenticated.
Such quantum networks use classical control messages to coordinate entanglement between nodes.
Third parties which can forge such control messages may interfere with the workings of quantum links, however:
They may either perform fraudulent requests for entanglement, destroying local quantum memory of nodes as a result, or interfere with the inner workings of protocols within the quantum stack targeting the availability of the link(s).
We, therefore, conclude that all link and physical layer control messages must be transmitted via authenticated channels.
Typically one uses a Message Authentication Code (MAC) to do so, which takes as input a message and outputs a tag which is transmitted alongside the message.
Additionally, it takes as input a unique number each time (nonce) to prevent replay-type attacks.
In this work, we first investigate the use of information-theoretic MACs combined with quantum key distribution (QKD) to authenticate control messages. We find that the fastest QKD solutions provide key material at a rate that is sufficient to not become a bottleneck in current quantum links.
Second, we survey multiple computationally secure MAC solutions and benchmarks to get an indication of their performance when authenticating short messages.
While not information-theoretically secure, their latency is generally speaking greater than or equal to that of information-theoretic solutions.
Finally, we augment the existing simulation of a single quantum link by Dahlberg et al. by inserting delays based on the performance of these MACs.
The performance of the link is evaluated using the mean throughput:
The rate at which successfully entangled pairs are delivered.
We find that the introduction of transmission time overhead, without any authentication, causes a noticeable decrease in throughput of the link.
When considering an authenticated channel that uses SipHash (a popular MAC) we find that throughput decreases even further, though less significantly.
Therefore, the overall decrease in throughput appears to not be detrimental to the working of the quantum link, which remains functional even when the classical channel is authenticated.
Schaapi
Early detection of breaking changes based on API usage
Bachelor thesis
(2018)
-
Joel Abrahams, Georgios Andreadis, Casper Boone, Florine Dekker, Maurício Finavaro Aniche, Asterios Katsifodimos
Library developers are often unaware of how their library is used exactly in practice. When a library developer changes the internals of a library, this may unintentionally affect or even break the working of the library users' code. While it is possible to detect when a syntactic breaking change occurs, it is not as easy to detect semantic breaking changes, where the implicit contract of a functionality changes, sometimes unbeknownst to the library developer. Because library users rarely test the behaviour they expect of the library, neither the library developer nor the library user will be aware of the new behaviour.
As a library developer, you want to be able to see how a change in your library will affect your users before a new version of the library is deployed. More specifically, you want to gain insight into how users use the library, and want to see if and how changes affect users. This will allow you to determine whether the new version of the library is backwards compatible. Finally, after deploying the breaking changes, you want to notify the affected users of the changes and of a solution to the issue.
Schaapi, a tool for early detection of breaking changes based on API usages, addresses these needs. It mines public repositories for projects using a given library, analyses their usage of the API of that library, and generates tests that capture this behaviour. Finally, it offers a continuous integration service that automatically executes these tests against new versions of the library and warns developers of any potentially breaking changes in functionality. The tool has also been validated against real-world data to demonstrate its performance in realistic usage scenarios and to answer a selection of related research questions. ...
As a library developer, you want to be able to see how a change in your library will affect your users before a new version of the library is deployed. More specifically, you want to gain insight into how users use the library, and want to see if and how changes affect users. This will allow you to determine whether the new version of the library is backwards compatible. Finally, after deploying the breaking changes, you want to notify the affected users of the changes and of a solution to the issue.
Schaapi, a tool for early detection of breaking changes based on API usages, addresses these needs. It mines public repositories for projects using a given library, analyses their usage of the API of that library, and generates tests that capture this behaviour. Finally, it offers a continuous integration service that automatically executes these tests against new versions of the library and warns developers of any potentially breaking changes in functionality. The tool has also been validated against real-world data to demonstrate its performance in realistic usage scenarios and to answer a selection of related research questions. ...
Library developers are often unaware of how their library is used exactly in practice. When a library developer changes the internals of a library, this may unintentionally affect or even break the working of the library users' code. While it is possible to detect when a syntactic breaking change occurs, it is not as easy to detect semantic breaking changes, where the implicit contract of a functionality changes, sometimes unbeknownst to the library developer. Because library users rarely test the behaviour they expect of the library, neither the library developer nor the library user will be aware of the new behaviour.
As a library developer, you want to be able to see how a change in your library will affect your users before a new version of the library is deployed. More specifically, you want to gain insight into how users use the library, and want to see if and how changes affect users. This will allow you to determine whether the new version of the library is backwards compatible. Finally, after deploying the breaking changes, you want to notify the affected users of the changes and of a solution to the issue.
Schaapi, a tool for early detection of breaking changes based on API usages, addresses these needs. It mines public repositories for projects using a given library, analyses their usage of the API of that library, and generates tests that capture this behaviour. Finally, it offers a continuous integration service that automatically executes these tests against new versions of the library and warns developers of any potentially breaking changes in functionality. The tool has also been validated against real-world data to demonstrate its performance in realistic usage scenarios and to answer a selection of related research questions.
As a library developer, you want to be able to see how a change in your library will affect your users before a new version of the library is deployed. More specifically, you want to gain insight into how users use the library, and want to see if and how changes affect users. This will allow you to determine whether the new version of the library is backwards compatible. Finally, after deploying the breaking changes, you want to notify the affected users of the changes and of a solution to the issue.
Schaapi, a tool for early detection of breaking changes based on API usages, addresses these needs. It mines public repositories for projects using a given library, analyses their usage of the API of that library, and generates tests that capture this behaviour. Finally, it offers a continuous integration service that automatically executes these tests against new versions of the library and warns developers of any potentially breaking changes in functionality. The tool has also been validated against real-world data to demonstrate its performance in realistic usage scenarios and to answer a selection of related research questions.