Information-Theoretic Secret-Key Agreement: The Asymptotically Tight Relation Between the Secret-Key Rate and the Channel Quality Ratio
- 523 Downloads
Information-theoretic secret-key agreement between two parties Alice and Bob is a well-studied problem that is provably impossible in a plain model with public (authenticated) communication, but is known to be possible in a model where the parties also have access to some correlated randomness. One particular type of such correlated randomness is the so-called satellite setting, where uniform random bits (e.g., sent by a satellite) are received by the parties and the adversary Eve over inherently noisy channels. The antenna size determines the error probability, and the antenna is the adversary’s limiting resource much as computing power is the limiting resource in traditional complexity-based security. The natural assumption about the adversary is that her antenna is at most Q times larger than both Alice’s and Bob’s antenna, where, to be realistic, Q can be very large.
The goal of this paper is to characterize the secret-key rate per transmitted bit in terms of Q. Traditional results in this so-called satellite setting are phrased in terms of the error probabilities \(\epsilon _A\), \(\epsilon _B\), and \(\epsilon _E\), of the binary symmetric channels through which the parties receive the bits and, quite surprisingly, the secret-key rate has been shown to be strictly positive unless Eve’s channel is perfect (\(\epsilon _E=0\)) or either Alice’s or Bob’s channel output is independent of the transmitted bit (i.e., \(\epsilon _A=0.5\) or \(\epsilon _B=0.5\)). However, the best proven lower bound, if interpreted in terms of the channel quality ratio Q, is only exponentially small in Q. The main result of this paper is that the secret-key rate decreases asymptotically only like \(1/Q^2\) if the per-bit signal energy, affecting the quality of all channels, is treated as a system parameter that can be optimized. Moreover, this bound is tight if Alice and Bob have the same antenna sizes.
Motivated by considering a fixed sending signal power, in which case the per-bit energy is inversely proportional to the bit-rate, we also propose a definition of the secret-key rate per second (rather than per transmitted bit) and prove that it decreases asymptotically only like 1/Q.
- 2.Calabro, C.: The exponential complexity of satisfiability problems. Ph.D. thesis, University of California, San Diego (2009)Google Scholar
- 3.Cover, T., Thomas, J.: Elements of Information Theory (Wiley Series in Telecommunications and Signal Processing). Wiley, Hoboken (2006)Google Scholar
- 6.Gander, M.J., Maurer, U.M.: On the secret-key rate of binary random variables. In: Proceedings of the 1994 IEEE International Symposium on Information Theory (ISIT 1994), p. 351. IEEE (1994)Google Scholar
- 9.Jost, D., Maurer, U., Ribeiro, J.L.: Information-theoretic secret-key agreement: the asymptotically tight relation between the secret-key rate and the channel quality ratio. Cryptology ePrint Archive, Report 2017/1130 (2017). https://eprint.iacr.org/2017/1130
- 13.Maurer, U.: The strong secret key rate of discrete random triples. In: Blahut, R.E., Costello, D.J., Maurer, U., Mittelholzer, T. (eds.) Communications and Cryptography. The Springer International Series in Engineering and Computer Science (Communications and Information Theory), vol. 276, pp. 271–285. Springer, Boston, MA (1994). https://doi.org/10.1007/978-1-4615-2694-0_27CrossRefGoogle Scholar
- 18.Naito, M., Watanabe, S., Matsumoto, R., Uyematsu, T.: Secret key agreement by reliability information of signals in Gaussian Maurer’s Model. In: Proceedings of the 2008 IEEE International Symposium on Information Theory (ISIT 2008), pp. 727–731. IEEE (2008)Google Scholar
- 20.Renner, R., Skripsky, J., Wolf, S.: A new measure for conditional mutual information and its properties. In: Proceedings of the 2003 IEEE International Symposium on Information Theory (ISIT 2003), p. 259. IEEE (2003)Google Scholar