On a Relationship between the Correct Probability of Estimation from Correlated Data and Mutual Information
Yasutada Oohama

TL;DR
This paper establishes an inequality linking the probability of correctly estimating a discrete variable from correlated data to the mutual information, with implications for cryptographic security analysis.
Contribution
It introduces a new inequality connecting estimation success probability and mutual information, aiding security evaluations in cryptography.
Findings
Derived an inequality relating estimation probability and mutual information.
Provides insights into the secrecy exponent in strong secrecy criteria.
Useful for analyzing security in cryptographic systems.
Abstract
Let , be two correlated discrete random variables. We consider an estimation of from encoded data of by some encoder function . We derive an inequality describing a relation of the correct probability of estimation and the mutual information between and . This inequality may be useful for the secure analysis of crypto system when we use the success probability of estimating secret data as a security criterion. It also provides an intuitive meaning of the secrecy exponent in the strong secrecy criterion.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
On a Relationship between the Correct Probability of Estimation from Correlated
Data and Mutual Information
Yasutada Oohama
Y. Oohama is with University of Electro-Communications, 1-5-1 Chofugaoka Chofu-shi, Tokyo 182-8585, Japan.
Abstract
Let , be two correlated discrete random variables. We consider an estimation of from encoded data of by some encoder function . We derive an inequality describing a relation of the correct probability of estimation and the mutual information between and . This inequality may be useful for the secure analysis of crypto system when we use the success probability of estimating secret data as a security criterion. It also provides an intuitive meaning of the secrecy exponent in the strong secrecy criterion.
I Introduction
It is well known that the mutual information is a very important quantity for an evaluation of the security of communication system. In the crypto system introduced by Shannon [1] perfect secrecy is defined by the condition that the mutual information between secret data and encrypted data vanishes. In the wiretap channel investigated by Wyner [2] and in the broadcast channel with confidential messages investigated Csiszár and Körner [3], perfect secrecy is defined by an asymptotically vanishing mutual information rate per channel use between the secret messages and the channel outputs obtained by the unauthorized user.
In the several recent researches on the information theorytical security, the strong secrecy condition where the value of mutual information should asymptotically be zero is well used. Specifically, Hayashi [4] has derived the relevant secrecy exponent function to specify the exponentially decreasing speed (i.e., exponent) of the leaked information under the average secrecy criterion when no cost constraint is considered. Han et al.[5] extend his result to the case with cost constraint. The secrecy condition used by Wyner [2] and Csiszár and Körner [3] now called the weak secrecy condition has a clear intuitive meaning that the leak of inforamtion rate on the secret messages is asymptotically zero. On the other hand in the strong secrecy criterion the intuitive meaning of the secrecy exponent function does not seem to be so clear.
In this paper we consider a problem which is related to the intuitive meaning the secrecy exponent. Our problem is as follows. Let , be two correlated discrete random variables. We consider an estimation of from encoded data of by some encoder function . We derive an inequality describing a relation of the correct probability of estimation and the mutual information between and . This inequality may be useful for the secure analysis of crypto system when we use the success probability of estimating secret data as a security criterion. It also provides an intuitive meaning of the secrecy exponent in the strong secrecy criterion.
II Problem Statement and Results
II-A Data Estimation from Correlated Data
Let and be discrete sets. We admit the case where those are countably infinite. Let be a disrete random pair taking vaules in and having a probability distribution
[TABLE]
We consider a source estimation system depicted in Fig. 1. Data sequences and are separately encoded to and and those are sent to the information processing center. At the center the estimater observes to output the estimation of . The encoder functions and are defined by
[TABLE]
The estimater is defined by
[TABLE]
The error probability of estimation is
[TABLE]
where . The correct probability of estimation is
[TABLE]
We condsier the following three cases.
The case where the side information serves as a helper to estimate from .(Case 1)
- 2.
The case where only the helper is avairable for an estimation of .(Case 2) Case 2 corresponds to the case where and is a constant function given by . The decoder function in this case is given by .
- 3.
The case where no information is avairable for an estimation of .(Case 3) Case 3 corresponds to the case where and and are constant functions given by and . The decoer function in this case is given by .
Let the correct probability of estimation in Case 2 is denoted by Let the correct probability of estimation in Case 3 is denoted by Set
[TABLE]
Our aim is to clarify relationships between the above three quantities. By definition it is obvious that
[TABLE]
Set
[TABLE]
Then we have
[TABLE]
We are particularly interested in a difference between and . If there is no difference between those to quantities. The side information is of no use to estimate . In this paper we derive an inequality stating that the difference is upper bounded by the mutual information between the side information and the source .
II-B Main Results
In this subsection we sate our main result. We first give a proposition which plays a key role in deriving our main results. Set . The joint distribution of is given by
[TABLE]
It is obvious that the random variables form Markov chain . The following proposition providing an upper bound of is useful to derive our main result.
Proposition 1
For any and for any , , we have
[TABLE]
Specifically, we have
[TABLE]
Proof of this proposition is given in the next section. Using this proposition, we obtain the following result.
Theorem 1
For any , we have
[TABLE]
Proof of this theorem is given in the next section. From Theorem 1 and we have the following corollary.
Corollary 1
For any , we have
[TABLE]
III Proofs of the Results
In this section we prove Proposition 1 and Theorem 1. We first prove Proposition 1. To prove this proposition, we prepare a lemma. Set
[TABLE]
Then we have the following lemma.
Lemma 1
[TABLE]
Proof: We first observe that
[TABLE]
We have the following chain of inequalities:
[TABLE]
Step (a) follows from that the number of correctly decoded does not exceed . ∎
Proof of Proposition 1: By definition we have
[TABLE]
Hence, it suffices to show
[TABLE]
to prove Proposition 1. By definition we have
[TABLE]
Then we have the following.
[TABLE]
Step (a) follows from Lemma 1. ∎
*Proof of Theorem 1: * We have the following chain of inequalities:
[TABLE]
In step (a) we use Proposition 1 for . Step (b) follows from the Markov’s inequality. In (6), we choose so that
[TABLE]
Since
[TABLE]
must satisfy , For this chooice of , we have
[TABLE]
The reference list from the paper itself. Each links out to its DOI / PubMed record.
- 1[1] C. E. Shannon, “Communication theory of secrecy systems,” Bell Sys. Tech. Journal , vol. 28, pp. 656-715, 1949.
- 2[2] A. D. Wyner, “The wire-tap channel,” Bell Sys. Tech. Journal , vol. 54, pp. 1355-1387, 1975.
- 3[3] I. Csiszár and J. Körner, “Broadcast channels with confidential messages,” IEEE Trans. Inform. Theory , vol. IT-24, pp. 339-348, 1978.
- 4[4] M. Hayashi,“Exponential decreasing rate of leaked information in universal random privacy amplification,” IEEE Trans. Inf. Theory , vol. 57, no. 6, pp. 3989-4001, Jun. 2011.
- 5[5] T.S. Han, H. Endo, and M. Sasaki, “Reliability and secrecy functions of the wiretap channel under cost constraint,” IEEE Trans. Inf. Theory , vol. 60, no. 11, pp. 6819-6843, Nov. 2014.
