JoshuaZ comments on Cryptographic Boxes for Unfriendly AI - Less Wrong

24 Post author: paulfchristiano 18 December 2010 08:28AM

You are viewing a comment permalink. View the original post to see all comments and the full post content.

Article Navigation

Comments (155)
Tags: ai

Comments (155)

You are viewing a single comment's thread. Show more comments above.

Comment author: paulfchristiano 18 December 2010 07:07:04PM 1 point [-]

I think most people strongly suspect that there exist cryptographic schemes which can't be broken, because they are actually hard. RSA is probably such a scheme against classical adversaries (as our AI would be). Its true that they could break it without factoring numbers, but they can't break it without defeating the RSA assumption.

Comment author: JoshuaZ 19 December 2010 02:15:04AM 0 points [-]

I think most people strongly suspect that there exist cryptographic schemes which can't be broken, because they are actually hard.

We know that there exist such schemes. One times pads are an example. What we don't know is whether there exist secure crypto schemes without a shared source of randomness.

Note however that the existence of such systems implies that P != NP, so this is a fairly strong statement. The existence of secure homomorphic encryption implies that P != NP. So whatever your confidence is that P != NP your confidence in this should be lower.

Comment author: paulfchristiano 19 December 2010 02:16:44AM 1 point [-]

I think we've had this very discussion before :)

Comment author: JoshuaZ 19 December 2010 02:18:28AM 0 points [-]

Well, we had it about P ?= NP. So how much does your confidence go down for the stronger claim?

Comment author: paulfchristiano 19 December 2010 02:32:20AM 0 points [-]

Significantly. Its very hard to put probabilities on this sort of thing, but I'd take a bet if the odds were... 100:1? I don't know if I would take significantly worse odds. My brain doesn't handle either small probabilities or epistemic uncertainty very well.

Comment author: JoshuaZ 19 December 2010 02:50:05AM 0 points [-]

Hmm, that's very interesting. I'm surprised that the estimates aren't closer together. My own estimate for the existence of provably secure homomorphic encryption given that P != NP is very high, around, .75. So it seems that you much more strongly believe that P !=NP but are much less comfortable given that P !=NP assigning a high probability to the existence of homomorphic encryption.

Comment author: timtyler 19 December 2010 07:22:40PM 0 points [-]

Best to be careful with the term "provably secure" - since "provable security" is a technical term with a rather counter-intuitive meaning.

Powered by Reddit Powered by Reddit