Computational indistinguishability

In computational complexity and cryptography, two families of distributions are computationally indistinguishable if no efficient algorithm can tell the difference between them except with small probability.

Formal definition

Let and be two distribution ensembles indexed by a security parameter n (which usually refers to the length of the input); we say they are computationally indistinguishable if for any non-uniform probabilistic polynomial time algorithm A, the following quantity is a negligible function in n:

denoted .[1] In other words, every efficient algorithm A's behavior does not significantly change when given samples according to Dn or En in the limit as . Another interpretation of computational indistinguishability, is that polynomial-time algorithms actively trying to distinguish between the two ensembles cannot do so: that any such algorithm will only perform negligibly better than if one were to just guess.

Implicit in the definition is the condition that the algorithm, , must decide based on a single sample from one of the distributions. One might conceive of a situation in which the algorithm trying to distinguish between two distributions, could access as many samples as it needed. Hence two ensembles that cannot be distinguished by polynomial-time algorithms looking at multiple samples are deemed indistinguishable by polynomial-time sampling.[2]:107 If the polynomial-time algorithm can generate samples in polynomial time, or has access to a random oracle that generates samples for it, then indistinguishability by polynomial-time sampling is equivalent to computational indistinguishability.[2]:108

gollark: But several hours to go across the country is still quite significant, and if your passenger transport system cannot be used as a weapon of mass destruction it is not very good, so the obvious solution is ridiculously expensive rocket-based travel.
gollark: But rail would be quite fast, possibly cheaper if you ignore the huge initial investment, and could ship cargo!
gollark: Consider: interstate travel by road is quite slow, thus making the US significantly more divided. Airports are faster, but also more expensive and not good for bulk goods, plus security queues make things slower.
gollark: Small brain: interstate highway system.Large brain: airports everywhere or something.Large glowy brain or something: interstate high-speed maglev railway.Galaxy brain: interstate suborbital rocket system.Transcendent universe brain: interstate passenger railgun.
gollark: I'd hope shadowy conspiracies would be better.

References

  1. Lecture 4 - Computational Indistinguishability, Pseudorandom Generators
  2. Goldreich, O. (2003). Foundations of cryptography. Cambridge, UK: Cambridge University Press.


This article incorporates material from computationally indistinguishable on PlanetMath, which is licensed under the Creative Commons Attribution/Share-Alike License.

This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.