Персона: Запечников, Сергей Владимирович
Загружается...
Email Address
Birth Date
Научные группы
Организационные подразделения
Организационная единица
Институт интеллектуальных кибернетических систем
Цель ИИКС и стратегия развития - это подготовка кадров, способных противостоять современным угрозам и вызовам, обладающих знаниями и компетенциями в области кибернетики, информационной и финансовой безопасности для решения задач разработки базового программного обеспечения, повышения защищенности критически важных информационных систем и противодействия отмыванию денег, полученных преступным путем, и финансированию терроризма.
Статус
Фамилия
Запечников
Имя
Сергей Владимирович
Имя
13 results
Результаты поиска
Теперь показываю 1 - 10 из 13
- ПубликацияОткрытый доступSystematization of knowledge: privacy methods and zero knowledge proofs in corporate blockchains(2023) Konkin, A.; Zapechnikov, S.; Запечников, Сергей ВладимировичNowadays enterprises implement blockchain technology in various industries, including finance, logistics, and other sectors. While the core idea behind blockchain is to decentralize storage, enterprises need to address privacy issues of replicated data. One of the methods to solve privacy in the blockchain is to adjust zero-knowledge-proof protocols. We comprehensively review blockchain privacy techniques employing zero-knowledge proofs and other cryptographic techniques and discuss the World and Russian standardization processes in blockchain privacy techniques.
- ПубликацияОткрытый доступHistorical notes on Russian cryptography(2023) Epishkina, A.; Zapechnikov, S.; Belozubova, A.; Епишкина, Анна Васильевна; Белозубова, Анна Игоревна; Запечников, Сергей ВладимировичThe article is devoted to the main milestones in the development of encryption techniques and mathematical methods of cryptography in Russia from the period of ancient Russia up to the nowadays. We break down the history of Russian cryptography into several periods and highlight the periods of cryptography development, analyze the most notable achievements and summarize the main results and applications of each period. The review of scientific research and standardization of cryptography in modern Russia is given. The progress of related areas is briefly analyzed: steganography and protection against falsification of documents.
- ПубликацияТолько метаданныеProtocols for Secure Management of Multidimensional Data Arrays(2019) Gorlatykh, A.; Zapechnikov, S.; Запечников, Сергей ВладимировичPopular technologies such as data mining and online analytical processing are widely known as technologies heavy-based on the usage of multidimensional data structures. However, at the same time, development of the security countermeasures leaves much to be desired. Currently, there is no complex multidimensional data processing system capable to ensure proper security levels exist. In the paper, we propose security protocols which formed the basis of our solution aimed to provide security for multidimensional data storage and processing. We describe basic protocols for data read and write operations adopted for the features of multidimensional data structures and security assumptions.
- ПубликацияТолько метаданныеPrоtоcоls fоr secure management оf multidimensiоnal data arrays(2019) Gorlatykh, A.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2019 IEEE Pоpular technоlоgies such as data mining and online analytical prоcessing are widely knоwn as technоlоgies heavy-based оn the usage оf multidimensiоnal data structures. Hоwever, at the same time, develоpment оf the security cоuntermeasures leaves much tо be desired. Currently, there is nо cоmplex multidimensiоnal data prоcessing system capable tо ensure prоper security levels exist. In the paper, we prоpоse security prоtоcоls which fоrmed the basis оf оur sоlutiоn aimed tо prоvide security fоr multidimensiоnal data stоrage and prоcessing. We describe basic prоtоcоls fоr data read and write оperatiоns adоpted fоr the features оf multidimensiоnal data structures and security assumptiоns.
- ПубликацияТолько метаданныеPost-quantum security of communication and messaging protocols: Achievements, challenges and new perspectives(2019) Bobrysheva, J.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2019 IEEE Widely used communication and messaging protocols, e.g., TLS 1.3 and Signal, are insecure against an adversary with a quantum computer. We expect that post-quantum security will become mandatory for a new generation of cryptographic protocols in the nearest 10-15 years. The analysis of existing post-quantum secure cryptographic tools for key exchange, encryption and message authentication based on hard problems in codes, lattices, ring learning with errors and elliptic curve isogenies revealed their advantages and drawbacks. In particular, we conclude, that the main threat to communication and messaging protocols is only pre-quantum security of currently used Diffie-Hellman key exchange protocols. We summarize efficiency and safety results for each class of post-quantum cryptographic schemes and present an experimental implementation of isogeny-based Diffie-Hellman-like key exchange protocol as an illustration of their applicability.
- ПубликацияОткрытый доступAnalysis of Secure Protocols and Authentication Methods for Messaging(2020) Sukhodolskiy, I.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2020 The Authors. Published by Elsevier B.V.Messengers became popular means of communication among people for both personal and corporate purposes. However, there are many cases of data leakage, as well as the facts of hacking and wiretapping messages by third parties. This paper explores the security of popular messaging protocols both among individual users and user groups.
- ПубликацияОткрытый доступPrivacy-Preserving Machine Learning as a Tool for Secure Personalized Information Services(2020) Zapechnikov, S.; Запечников, Сергей Владимирович© 2020 The Authors. Published by Elsevier B.V.The article deals with the problems of cryptographic protection of data processing algorithms and techniques. They are novel techniques allowing to process private information without disclosing it to persons engaged in processing. One of the main applications of such security tools is the creation of personalized information services, which opens up new opportunities for business and reduces the risks of unauthorized access to personal data. We review important building blocks for cryptographic protection of data processing, such as zero-knowledge proofs, secure multi-party computations, and homomorphic encryption. Often, personalized information services are based on data mining and machine learning, so privacy-preserved machine learning is a very important building block for them. We analyze the concept of differential privacy which serves as the basis for privacy-preserving machine learning and some other cryptographic schemes. At the end of the paper, we forecast the perspectives of encrypted data processing.
- ПубликацияТолько метаданныеOrder-preserving Encryption as a Tool for Privacy-Preserving Machine Learning(2020) Lisin, N.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2020 IEEE.An order-preserving encryption is an encryption scheme based on strictly increasing functions. It allows mapping a set of plaintext into a set of ciphertexts with the order relation specified on a set of plaintexts. Thus, data comparisons and search for the minimum or maximum elements become possible without decrypting data. This type of encryption is mainly used to protect cloud databases in the case when it is necessary to make queries to them. However, it is almost not used in privacy-preserving data mining and machine learning. Nevertheless, it is possible to use this type of encryption in privacy-preserving machine learning, but only for certain algorithms. In this paper, we consider some existing order-preserving encryption schemes and suggest some cases of machine learning, where they can be applied to obtain correctly working privacy-preserving machine learning algorithms. An explanation is also given how and why it is possible to apply order-preserving encryption to these algorithms.
- ПубликацияТолько метаданныеPost-Quantum Security of Messaging Protocols: Analysis of Double Ratcheting Algorithm(2020) Bobrysheva, J.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2020 IEEE.Development in the area of quantum technologies led to the appearance of first quantum computers. The threat of using a quantum computer for cryptanalysis requires wide implementing post-quantum security in computing algorithms and communication protocols. We evaluate the computational power of some existing quantum computers to illustrate the relevance of research in post-quantum security. One of the best ways to test post-quantum protocols is to embed them into some non-critical but widely-used sphere. Secure messaging is an excellent example of such an application. In the paper, we analyze the post-quantum security of well-known messaging specification Signal, which is considered to have high-security properties. The core of Signal specification is the Double Ratchet protocol. We notice and explain why it is not a post-quantum secure scheme. After that, we suggest some possible ways to improve the security features of Signal specification.
- ПубликацияТолько метаданныеMethods and Algorithms for Detecting Compromise of Secret Keys(2020) Kuzmicheva, S.; Kiryakina, M.; Zapechnikov, S.; Запечников, Сергей Владимирович© 2020, Springer Nature Switzerland AG.It is not uncommon for a single user to use multiple devices to access applications, such as messengers. The legitimacy of using client devices and access rights should be monitored to ensure the necessary level of information security. In the paper authors analyze and discuss some approaches to detect unauthorized usage of cryptographic keys. The first approach is known as trace-independent inconsistency, the second approach is an observation of contradiction, the third approach called an observation of acausality. All three approaches are based on the additional dedicated audit service to the application under protection. The main result of our investigation is the technique for applying these principles to the secure communication and messaging protocols. In the paper authors suggest a cryptographically protocol for detecting compromise of secret keys based on blockchain technology.