p ublic key cryptography pkc
play

P UBLIC - KEY CRYPTOGRAPHY (PKC) E RROR - CORRECTING PAIRS FOR A - PowerPoint PPT Presentation

Nov 21, 2023 •222 likes •1.2k views

E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM E RROR - CORRECTING PAIRS P UBLIC - KEY CRYPTOGRAPHY FOR A PUBLIC - KEY CRYPTOSYSTEM C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES I. M RQUEZ -C ORBELLA 1 R. P

  1. E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM E RROR - CORRECTING PAIRS P UBLIC - KEY CRYPTOGRAPHY FOR A PUBLIC - KEY CRYPTOSYSTEM C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES I. M ÁRQUEZ -C ORBELLA 1 R. P ELLIKAAN 2 S TAR P RODUCT GRS CODES E RROR -C ORRECTING P AIRS 1INRIA Rocquencourt - SECRET Team D ECODING ALGORITHM FOR GRS - ECP 2Dept. of Mathematics and Computing Science, Eindhoven University of Technology C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION IICMA 2015 The 3rd IndoMS International Conference on Mathematics and Its Applications Depok, Indonesia, 3 November 2015 1 / 31

  2. E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY 1 P UBLIC - KEY CRYPTOGRAPHY C ODE BASED C ODE BASED CRYPTOGRAPHY 2 CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES P REREQUISITES 3 S TAR P RODUCT Error-correcting codes GRS CODES Star Product E RROR -C ORRECTING P AIRS GRS codes D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION E RROR -C ORRECTING P AIRS 4 C ONCLUSION Decoding algorithm for GRS - ECP Codes with a t-ECP ECP one-way function C ONCLUSION 5 2 / 31

  3. P UBLIC - KEY CRYPTOGRAPHY (PKC) E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT Diffie and Hellman in 1976 in the public domain GRS CODES Ellis in 1970 for secret service, not made public until 1997 E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - advantage with respect to symmetric-key cryptography ECP C ODES WITH A T -ECP no exchange of secret key between sender and receiver ECP ONE - WAY FUNCTION C ONCLUSION 3 / 31

  4. O NE - WAY FUNCTION E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY At the heart of any public-key cryptosystem is a P REREQUISITES one-way function E RROR - CORRECTING CODES S TAR P RODUCT a function y = f ( x ) that is GRS CODES easy to evaluate but E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - for which it is computationally infeasible, one hopes ECP to find the inverse x = f − 1 ( y ) C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION Example differentiation a function is easy integrating a function is difficult 4 / 31

  5. P UBLIC K EY C RYPTOGRAPHY E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY EASY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES HARD E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP EASY ECP ONE - WAY FUNCTION Trapdoor one-way C ONCLUSION function (given the TRAPDOOR information) 5 / 31

  6. I NTEGER FACTORIZATION E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES x = ( p , q ) is a pair of distinct prime numbers S TAR P RODUCT GRS CODES y = pq is its product E RROR -C ORRECTING P AIRS proposed by Cocks in 1973 in secret service D ECODING ALGORITHM FOR GRS - ECP Rivest-Shamir-Adleman (RSA) in 1978 in public domain C ODES WITH A T -ECP ECP ONE - WAY FUNCTION based on the hardness of factorizing integers C ONCLUSION 6 / 31

  7. D ISCRETE LOGARITHM E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES G is a group (written multiplicatively) S TAR P RODUCT with a ∈ G and x an integer GRS CODES E RROR -C ORRECTING P AIRS y = a x D ECODING ALGORITHM FOR GRS - ECP proposed by Williamson in 1974 in secret service C ODES WITH A T -ECP Diffie-Hellman in 1974 and 1976 in public domain ECP ONE - WAY FUNCTION C ONCLUSION based on difficulty of finding discrete logarithms in a finite field 7 / 31

  8. P REPARING FOR THE C RYPTOPOCALYPSE E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM M OST PKC ARE BASED ON N UMBER - THEORETIC PROBLEMS P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 8 / 31

  9. P REPARING FOR THE C RYPTOPOCALYPSE E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM M OST PKC ARE BASED ON N UMBER - THEORETIC PROBLEMS P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY ➜ It can be attacked in polynomial P REREQUISITES time using Shor’s algorithm E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES ECDSA E RROR -C ORRECTING P AIRS RSA D ECODING ALGORITHM FOR GRS - ECP ECC C ODES WITH A T -ECP ECP ONE - WAY FUNCTION DSA HECC C ONCLUSION 8 / 31

  10. P REPARING FOR THE C RYPTOPOCALYPSE E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM M OST PKC ARE BASED ON N UMBER - THEORETIC PROBLEMS P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY ➜ It can be attacked in polynomial P REREQUISITES time using Shor’s algorithm E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES ECDSA E RROR -C ORRECTING P AIRS RSA D ECODING ALGORITHM FOR GRS - ECP ECC C ODES WITH A T -ECP ECP ONE - WAY FUNCTION DSA HECC C ONCLUSION Code-based Cryptography is a powerful alternative 8 / 31

  11. C ODE BASED CRYPTOGRAPHY E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES h 1 , . . . , h n is a given n -tuple of vectors in F r q S TAR P RODUCT x is an n -tuple of elements in F q GRS CODES E RROR -C ORRECTING P AIRS y = � n j = 1 x j h j D ECODING ALGORITHM FOR GRS - ECP proposed by McEliece in 1978 C ODES WITH A T -ECP based on the difficulty of decoding error-correcting codes ECP ONE - WAY FUNCTION C ONCLUSION it is NP complete 9 / 31

  12. T RAPDOOR ONE - WAY FUNCTIONS - D ECODER E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM Encoder = Matrix Multiplication P UBLIC - KEY CRYPTOGRAPHY C ODE BASED EASY CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 10 / 31

  13. T RAPDOOR ONE - WAY FUNCTIONS - D ECODER E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM Encoder = Matrix Multiplication P UBLIC - KEY CRYPTOGRAPHY C ODE BASED EASY CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT Decoding is NP-complete GRS CODES E RROR -C ORRECTING P AIRS HARD D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 10 / 31

  14. T RAPDOOR ONE - WAY FUNCTIONS - D ECODER E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM Encoder = Matrix Multiplication P UBLIC - KEY CRYPTOGRAPHY C ODE BASED EASY CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT Decoding is NP-complete GRS CODES E RROR -C ORRECTING P AIRS HARD D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION Efficient decoder for certain families of codes EASY (with TRAPDOOR information) 10 / 31

  15. M C E LIECE CRYPTOSYSTEM E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC - KEY CRYPTOGRAPHY ➜ McEliece introduced the first PKC based on Error-Correcting Codes in 1978 . C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES E RROR -C ORRECTING P AIRS Advantages: D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ➣ Fast encryption ECP ONE - WAY FUNCTION Drawback: (matrix-vector multiplication) C ONCLUSION and decryption functions. ➣ Large key size. ➣ Interesting candidate for post-quantum cryptography. R. J. McEliece. A public-key cryptosystem based on algebraic coding theory . DSN Progress Report, 42-44:114-116, 1978. 11 / 31

  16. T HE M C E LIECE C RYPTOSYSTEM E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM � � P UBLIC - KEY CRYPTOGRAPHY Consider family of codes F C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES S TAR P RODUCT GRS CODES E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 12 / 31

  17. T HE M C E LIECE C RYPTOSYSTEM E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM � � P UBLIC - KEY CRYPTOGRAPHY Consider family of codes F C ODE BASED CRYPTOGRAPHY P REREQUISITES with an efficient E RROR - CORRECTING CODES S TAR P RODUCT decoding algorithm GRS CODES E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 12 / 31

  18. T HE M C E LIECE C RYPTOSYSTEM E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM � � P UBLIC - KEY CRYPTOGRAPHY Consider family of codes F C ODE BASED CRYPTOGRAPHY P REREQUISITES with an efficient E RROR - CORRECTING CODES Indistinguishable S TAR P RODUCT decoding algorithm from random codes GRS CODES E RROR -C ORRECTING P AIRS D ECODING ALGORITHM FOR GRS - ECP C ODES WITH A T -ECP ECP ONE - WAY FUNCTION C ONCLUSION 12 / 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
PUB UBLIC C PROCURE ROCUREMENT NT WORK ORKING GROUP NG GROUP GUI GUIDE DELINE NE FOR A

PUB UBLIC C PROCURE ROCUREMENT NT WORK ORKING GROUP NG GROUP GUI GUIDE DELINE NE FOR A

PUB UBLIC C PROCURE ROCUREMENT NT WORK ORKING GROUP NG GROUP GUI GUIDE DELINE NE FOR A OR AUDI UDITORS ORS Mic ichael l Hadjilo jiloiz izou AUDIT UDIT OFFICE ICE OF THE HE RE REPUB UBLIC O IC OF CY CYPRUS RUS PUB UBLIC

358 views • 22 slides
P ublic T ransport C onsult P ublic T ransport C onsult Poenkareova 12, 11000, Belgrade, Serbia;

P ublic T ransport C onsult P ublic T ransport C onsult Poenkareova 12, 11000, Belgrade, Serbia;

P ublic T ransport C onsult P ublic T ransport C onsult Poenkareova 12, 11000, Belgrade, Serbia; tel. +381 11 3293.651; e-mail: office@ptc.co.rs Who We Are PTC P ublic T ransport C onsult is one of the leading consultancies in Serbia and

506 views • 25 slides
Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -> C enciphering functions D: C x K

446 views • 40 slides
Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY Plaintext Cyphertext More definitions block cipher stream cipher hash function shared key public key digital signature

383 views • 16 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Uses of Cryptography What can we use cryptography for? Lots of things Secrecy

Uses of Cryptography What can we use cryptography for? Lots of things Secrecy

Uses of Cryptography What can we use cryptography for? Lots of things Secrecy Authentication Prevention of alteration Lecture 4 Page 1 CS 236 Online Cryptography and Secrecy Pretty obvious Only those knowing the

303 views • 15 slides
Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but

Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but

Cryptography Modern cryptography was born in 1970s when computationally easy-to-verify but hard-to-solve problems were discovered. Computational Complexity, by Fu Yuxi Cryptography 1 / 75 Cryptography is closely related to some

785 views • 76 slides
Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information:

Quantum Cryptography Lecture 28 Quantum Cryptography Quantum Cryptography Quantum information: Using microscopic physical state of quantum systems (spin of atoms/sub-atomic particles, polarization of photons etc.) to encode information

1.95k views • 154 slides
Dep epartm tment o ent of L f Local G l Gover ernment F ent Financ nce Publi ublic Mee

Dep epartm tment o ent of L f Local G l Gover ernment F ent Financ nce Publi ublic Mee

Dep epartm tment o ent of L f Local G l Gover ernment F ent Financ nce Publi ublic Mee Meeti ting & g & P Publi ublic Hea eari ring ng No Noti tice R e Req equi uirem remen ents ts Daniel Shackle Luke Britt

678 views • 65 slides
Decided to self-manage! Engineering Department Investigated options with outside firms and

Decided to self-manage! Engineering Department Investigated options with outside firms and

Westlake as a community. 17 square miles in N.W. Cuyahoga County. 33,000 residents. P ublic I nvolvement & 13,650 housing units w/ median value price +$200,000 (1999 Census) . Affluent & educated populace. P ublic E

260 views • 3 slides
Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography CSCI 470: Web Science Keith Vertanen Overview Modern cryptography Symmetric cryptography DES 3DES AES Asymmetric cryptography Diffie-Hellman key exchange 2 Modern cryptography Moving into

338 views • 16 slides
Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is cryptography? Related fields: Cryptography ("secret writing"): Making secret messages Turning plaintext (an ordinary readable message)

1.2k views • 57 slides
Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9

Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9

Public-Key Cryptography Public-Key Cryptography Lecture 9 Public-Key Cryptography Lecture 9 CCA Security SIM-CCA Security (PKE) Recv Send PK/Enc SK/Dec Replay Filter Secure (and correct) if: s.t. output of is distributed

1.26k views • 101 slides
Examples of Linear Block Codes Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of

Examples of Linear Block Codes Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of

Examples of Linear Block Codes Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical Engineering Indian Institute of Technology Bombay August 18, 2014 1 / 17 Hamming Code Hamming Code For any integer m 3, the code with

217 views • 17 slides
Zeta Functions of a Class of Artin-Schreier Curves With Many Automorphisms Renate Scheidler Joint

Zeta Functions of a Class of Artin-Schreier Curves With Many Automorphisms Renate Scheidler Joint

Zeta Functions of a Class of Artin-Schreier Curves With Many Automorphisms Renate Scheidler Joint work with Irene Bouw , Wei Ho , Beth Malmskog , Padmavathi Srinivasan and Christelle Vincent Thanks to WIN3 3 rd Women in Numbers BIRS Workshop

411 views • 21 slides
Locally decodable codes: from computational complexity to cloud computing Sergey Yekhanin

Locally decodable codes: from computational complexity to cloud computing Sergey Yekhanin

Locally decodable codes: from computational complexity to cloud computing Sergey Yekhanin Microsoft Research Error-correcting codes: paradigm 2 E() 2 E() +noise 0110001 011000100101 01*00*10010*

500 views • 34 slides
Yet another side-channel attack: Multi-linear Power Analysis attack (MLPA) Thomas Roche , C

Yet another side-channel attack: Multi-linear Power Analysis attack (MLPA) Thomas Roche , C

List decoding of RM(1,m) and Multi-linear cryptanalysis Application to Power Analysis attacks : MLPA Conclusion and Open persp Yet another side-channel attack: Multi-linear Power Analysis attack (MLPA) Thomas Roche , C edric Tavernier

625 views • 29 slides
Correlation bounds for polynomials, and the disproof of a conjecture on Gowers' norm using Ramsey

Correlation bounds for polynomials, and the disproof of a conjecture on Gowers' norm using Ramsey

Correlation bounds for polynomials, and the disproof of a conjecture on Gowers' norm using Ramsey theory Emanuele Viola Northeastern University May 2011 Polynomials Polynomials: degree d, n variables over F 2 = {0,1} E.g., p = x 1 + x 5 +

411 views • 17 slides
Randomized Algorithms Polynomial Identity Testing (PIT) Input : of

Randomized Algorithms Polynomial Identity Testing (PIT) Input : of

Randomized Algorithms Polynomial Identity Testing (PIT) Input : of degree d f, g F [ x 1 , x 2 , . . . , x n ] Output : f g ? F [ x 1 , x 2 , . . . , x n ] : ring of n -variate polynomials over field F f F [ x

923 views • 32 slides
DAAD Summerschool Curitiba 2011 Aspects of Large Scale High Speed Computing Building Blocks of a

DAAD Summerschool Curitiba 2011 Aspects of Large Scale High Speed Computing Building Blocks of a

DAAD Summerschool Curitiba 2011 Aspects of Large Scale High Speed Computing Building Blocks of a Cloud Storage Networks 2: Virtualization of Storage: RAID, SAN and Virtualization Christian Schindelhauer Technical Faculty Computer-Networks and

754 views • 37 slides
A classification of self-dual codes with a rank 3 automorphism group of almost simple type

A classification of self-dual codes with a rank 3 automorphism group of almost simple type

A classification of self-dual codes with a rank 3 automorphism group of almost simple type Bernardo Rodrigues School of Mathematics, Statistics and Computer Science University of KwaZulu-Natal Durban, South Africa Groups St Andrews 2017

413 views • 30 slides

More recommend