sphf friendly non interactive commitments
play

SPHF-Friendly Non-Interactive Commitments Michel Abdalla, Fabrice - PowerPoint PPT Presentation

Jun 10, 2023 •332 likes •950 views

SPHF-Friendly Non-Interactive Commitments Michel Abdalla, Fabrice Benhamouda , Olivier Blazy, Cline Chevalier, and David Pointcheval cole Normale Suprieure, CNRS and INRIA Ruhr University Bochum Universit Panthon-Assas Asiacrypt 2013

  1. SPHF-Friendly Non-Interactive Commitments Michel Abdalla, Fabrice Benhamouda , Olivier Blazy, Céline Chevalier, and David Pointcheval École Normale Supérieure, CNRS and INRIA Ruhr University Bochum Université Panthéon-Assas Asiacrypt 2013 — Bangalore, India Monday, December 1

  2. Introduction Formalization Construction PAKE: Password-Authenticated Key Exchange Goal: establishing a common secret key from only a common low-entropy password superpass superpass . . . Alice Bob Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 2 / 21

  3. Introduction Formalization Construction PAKE: Password-Authenticated Key Exchange Goal: establishing a common secret key from only a common low-entropy password superpass superpass . . . Alice Bob = K K’ Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 2 / 21

  4. Introduction Formalization Construction PAKE: Password-Authenticated Key Exchange Goal: establishing a common secret key from only a common low-entropy password superpass superpass? . . . Alice Eve = K K’ Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 2 / 21

  5. Introduction Formalization Construction PAKE: Password-Authenticated Key Exchange Goal: establishing a common secret key from only a common low-entropy password superpass thepass? . . . Alice Eve � = K K’ Intuitive security notion: only online dictionary attack works: at most one password can be tested per interaction; impossible to test password from an honest transcript. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 2 / 21

  6. Introduction Formalization Construction PAKE: Password-Authenticated Key Exchange Model Used one-round: one flow per user (possibly simultaneous), UC [Can01], with adaptive corruptions (with erasures): corruption of a user = learning the internal state, possible at any time, in the standard model: without random oracle. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 3 / 21

  7. Introduction Formalization Construction UC PAKE: State of the Art Adaptive One-round Complexity Assumption (group elements) [BCLPR05] ✓ ✗ very high [ACP09] ≈ 44 · m · K DDH ✓ ✗ [KV11] ✗ ✓ ≈ 140 DLIN [BBCPV13] ≈ 22 SXDH ✗ ✓ m : size of the password K : security parameter Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 4 / 21

  8. Introduction Formalization Construction UC PAKE: State of the Art Adaptive One-round Complexity Assumption (group elements) [BCLPR05] ✓ ✗ very high [ACP09] ≈ 44 · m · K DDH ✓ ✗ [KV11] ✗ ✓ ≈ 140 DLIN [BBCPV13] ≈ 22 SXDH ✗ ✓ here ✓ ✓ ≈ 24 · m SXDH m : size of the password K : security parameter Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 4 / 21

  9. Introduction Formalization Construction PAKE: Construction Sketch In most efficient PAKE schemes: each user commits to his password, and using an SPHF (Smooth Projective Hash Function), they prove that they committed to the good password. Construction introduced and used in [KOY01, GL03, KV11]. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 5 / 21

  10. Introduction Formalization Construction Non-Interactive Commitment Com ( π ) generates a commitment C of π and a decommitment information δ VerCom ( C , π, δ ) checks C commits to π using δ Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 6 / 21

  11. Introduction Formalization Construction Non-Interactive Commitment Com ( π ) generates a commitment C of π and a decommitment information δ VerCom ( C , π, δ ) checks C commits to π using δ Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 6 / 21

  12. Introduction Formalization Construction Non-Interactive Commitment Com ( π ) generates a commitment C of π and a decommitment information δ VerCom ( C , π, δ ) checks C commits to π using δ binding no poly-time adv. can find C , δ, δ ′ and π � = π ′ s.t.: VerCom ( C , π ′ , δ ′ ) = 1 VerCom ( C , π, δ ) = 1 and hiding no poly-time adv. can distinguish: Com ( π 0 ) and Com ( π 1 ) for chosen π 0 and π 1 . Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 6 / 21

  13. Introduction Formalization Construction Non-Interactive Commitment Com ( π ) generates a commitment C of π and a decommitment information δ VerCom ( C , π, δ ) checks C commits to π using δ binding no poly-time adv. can find C , δ, δ ′ and π � = π ′ s.t.: VerCom ( C , π ′ , δ ′ ) = 1 VerCom ( C , π, δ ) = 1 and hiding no poly-time adv. can distinguish: Com ( π 0 ) and Com ( π 1 ) for chosen π 0 and π 1 . $ ← SetupCom ( 1 K ) . Implicit CRS: ρ Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 6 / 21

  14. Introduction Formalization Construction SPHF: Smooth Projective Hash Function [CS02, KV11] NP language family L aux = { C ∈ X | ∃ w , R aux ( C , w ) = 1 } ( w : witness) HashKG ( 1 K ) generates a hashing key hk Hash ( hk , aux , C ) computes the hash value H of C ∈ X ProjKG ( hk ) derives a projection key hp ProjHash ( hp , aux , C , w ) computes the hash value H of C ∈ L aux (if R aux ( C , w ) = 1) In this talk: hp does not depend on C (contrary to [GL03]) nor on aux. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 7 / 21

  15. Introduction Formalization Construction SPHF: Smooth Projective Hash Function [CS02, KV11] NP language family L aux = { C ∈ X | ∃ w , R aux ( C , w ) = 1 } ( w : witness) HashKG ( 1 K ) generates a hashing key hk Hash ( hk , aux , C ) computes the hash value H of C ∈ X ProjKG ( hk ) derives a projection key hp ProjHash ( hp , aux , C , w ) computes the hash value H of C ∈ L aux (if R aux ( C , w ) = 1) In this talk: hp does not depend on C (contrary to [GL03]) nor on aux. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 7 / 21

  16. Introduction Formalization Construction SPHF: Smooth Projective Hash Function [CS02, KV11] NP language family L aux = { C ∈ X | ∃ w , R aux ( C , w ) = 1 } ( w : witness) HashKG ( 1 K ) generates a hashing key hk Hash ( hk , aux , C ) computes the hash value H of C ∈ X ProjKG ( hk ) derives a projection key hp ProjHash ( hp , aux , C , w ) computes the hash value H of C ∈ L aux (if R aux ( C , w ) = 1) In this talk: hp does not depend on C (contrary to [GL03]) nor on aux. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 7 / 21

  17. Introduction Formalization Construction SPHF: Smooth Projective Hash Function [CS02, KV11] NP language family L aux = { C ∈ X | ∃ w , R aux ( C , w ) = 1 } ( w : witness) HashKG ( 1 K ) generates a hashing key hk Hash ( hk , aux , C ) computes the hash value H of C ∈ X ProjKG ( hk ) derives a projection key hp ProjHash ( hp , aux , C , w ) computes the hash value H of C ∈ L aux (if R aux ( C , w ) = 1) In this talk: hp does not depend on C (contrary to [GL03]) nor on aux. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 7 / 21

  18. Introduction Formalization Construction SPHF: Smooth Projective Hash Function [CS02, KV11] NP language family L aux = { C ∈ X | ∃ w , R aux ( C , w ) = 1 } ( w : witness) HashKG ( 1 K ) generates a hashing key hk Hash ( hk , aux , C ) computes the hash value H of C ∈ X ProjKG ( hk ) derives a projection key hp ProjHash ( hp , aux , C , w ) computes the hash value H of C ∈ L aux (if R aux ( C , w ) = 1) In this talk: hp does not depend on C (contrary to [GL03]) nor on aux. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 7 / 21

  19. Introduction Formalization Construction Properties of SPHF correctness for any hk and corresponding hp, for all C ∈ L aux and w such that R aux ( C , w ) = 1: Hash ( hk , aux , C ) = ProjHash ( hp , aux , C , w ); smoothness (definition of [KV11]) for any function f onto X \ L aux , given a projection key hp, C = f ( hp ) / ∈ L aux , Hash ( hk , aux , C ) ≈ s random. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 8 / 21

  20. Introduction Formalization Construction Contributions formalization of SPHF-friendly commitments: ⋄ implicit in [ACP09]; construction of an efficient SPHF-friendly commitment: ⋄ inspired by [CF01, CLOS02, ACP09]; + O ( m ) elements instead of O ( m K ) elements; applications: adaptive UC commitment; first one-round adaptive UC PAKE; 1-out-of- k UC OT more efficient than [CKWZ13]. Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 9 / 21

  21. Introduction Formalization Construction PAKE Construction Sketch CRS Alice Bob ρ π π ′ $ ( C , δ ) ← Com ( π ) C Language for SPHF: valid commitments of aux ( = π or π ′ ): R aux ( C , δ ) = 1 ⇐ ⇒ VerCom ( C , aux , δ ) = 1 . Correctness if π = π ′ , H A = H ′ A ; Fabrice Benhamouda (ENS) SPHF-Friendly Commitments Asiacrypt 2013 — Bangalore 10 / 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Access and Opportunity Committee Agenda 1. Construction Commitments 2. Design Commitments 3.

Access and Opportunity Committee Agenda 1. Construction Commitments 2. Design Commitments 3.

Access and Opportunity Committee Agenda 1. Construction Commitments 2. Design Commitments 3. Construction Workforce Construction Commitments Construction Commitments Through May 31, 2015 Group Project Goals Commitments Variance

430 views • 15 slides
Demonstration of Friendly Interactive Grid Under the Background of Electricity Market Reform in

Demonstration of Friendly Interactive Grid Under the Background of Electricity Market Reform in

ZJU Demonstration of Friendly Interactive Grid Under the Background of Electricity Market Reform in China Hongxun Hui, Xing Jiang, Yi Ding*, Yonghua Song College of Electrical Engineering, Zhejiang University Li Guo State Grid Jiangsu

482 views • 17 slides
Tax Strategies for Real Estate LLC and LP Agreements: Capital Commitments, Tax Allocations,

Tax Strategies for Real Estate LLC and LP Agreements: Capital Commitments, Tax Allocations,

Presenting a live 90-minute webinar with interactive Q&A Tax Strategies for Real Estate LLC and LP Agreements: Capital Commitments, Tax Allocations, Distributions, and More Structuring Provisions to Achieve Tax Benefits and Avoid Common

833 views • 51 slides
Hash Proof Systems and Password Protocols III SPHF-based PAKE David Pointcheval CNRS, Ecole

Hash Proof Systems and Password Protocols III SPHF-based PAKE David Pointcheval CNRS, Ecole

Hash Proof Systems and Password Protocols III SPHF-based PAKE David Pointcheval CNRS, Ecole normale sup erieure/PSL & INRIA 8th BIU Winter School Key Exchange February 2018 CNRS/ENS/PSL/INRIA David Pointcheval 1/53 Intuition

475 views • 18 slides
Photo: Bird Island. Seychelles. Commitments Strategy 2012 to 2015 GOALS: Support successful

Photo: Bird Island. Seychelles. Commitments Strategy 2012 to 2015 GOALS: Support successful

Photo: Bird Island. Seychelles. Commitments Strategy 2012 to 2015 GOALS: Support successful implementation of partner commitments Catalyze new commitments to address critical island issues Establish and maintain a flexible and

671 views • 12 slides
(BFI) 2009 Update What is the Baby Friendly Initiative? The Baby - Friendly Initiative

(BFI) 2009 Update What is the Baby Friendly Initiative? The Baby - Friendly Initiative

Baby Friendly Initiative (BFI) 2009 Update What is the Baby Friendly Initiative? The Baby - Friendly Initiative (BFI) is a joint global campaign of the World Health Organization (WHO) and the United Nations Childrens Fund

633 views • 19 slides
For Eco-friendly Gifts and Stationery Have an all new shopping experience of eco-friendly best

For Eco-friendly Gifts and Stationery Have an all new shopping experience of eco-friendly best

For Eco-friendly Gifts and Stationery Have an all new shopping experience of eco-friendly best quality products and nurture nature for the future. You will not only be doing your bit to keep the environment Green, but also will be helping the

280 views • 17 slides
CDPHE/EPA PPA Commitments Presentation CDPHE/EPA PPA Commitments Presentation By Dick Parachini

CDPHE/EPA PPA Commitments Presentation CDPHE/EPA PPA Commitments Presentation By Dick Parachini

CDPHE/EPA PPA Commitments Presentation CDPHE/EPA PPA Commitments Presentation By Dick Parachini Clean Water Program Manager Clean Water Program Manager National Environmental Performance Partnership System EPA commits annual funding.

418 views • 13 slides
Wage and Hour Compliance Under California's Employee-Friendly Framework and New Legislation

Wage and Hour Compliance Under California's Employee-Friendly Framework and New Legislation

Presenting a live 90-minute webinar with interactive Q&A Wage and Hour Compliance Under California's Employee-Friendly Framework and New Legislation Navigating Unique Overtime Pay, Increased Minimum Wage, Mandated Recovery Periods, and

913 views • 30 slides
Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What

Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What

Williamsburg, MA Belchertown, MA Age-Friendly Walking in Small and Rural Towns April 18, 2018 What is Age-Friendly Walking? What is Age-Friendly Walking? Sidewalk conditions/maintenance ADA compliance Benches Lighting Shade

677 views • 50 slides
Environmentally Environmentally Friendly Friendly Drilling Systems Drilling Systems EFD

Environmentally Environmentally Friendly Friendly Drilling Systems Drilling Systems EFD

Environmentally Environmentally Friendly Friendly Drilling Systems Drilling Systems EFD David Burnett, GPRI, Texas A&M University Tom Williams & John D. Rogers, Noble Technology Services Richard C. Haut, Houston Advanced Research

277 views • 24 slides
. The Women Friendly Space (WFS) and Child Friendly Space (CFS) as Protective Response in

. The Women Friendly Space (WFS) and Child Friendly Space (CFS) as Protective Response in

. The Women Friendly Space (WFS) and Child Friendly Space (CFS) as Protective Response in Emergencies 1 1 Responsibilities of DSWD as Cluster Lead 1. Aims to support and enhance the Governments capacity to ensure that protection

957 views • 31 slides
Commitments as Elements of a Contract A kind of normative relationship: Express meanings of

Commitments as Elements of a Contract A kind of normative relationship: Express meanings of

Commitments Commitments as Elements of a Contract A kind of normative relationship: Express meanings of interactions Are atoms of contractual relationships Enable correctness checking of contracts Yield precise meanings and

564 views • 19 slides
Commitments as Elements of a Contract A kind of normative relationship: Express meanings of

Commitments as Elements of a Contract A kind of normative relationship: Express meanings of

Commitments Commitments as Elements of a Contract A kind of normative relationship: Express meanings of interactions Are atoms of contractual relationships Enable correctness checking of contracts Yield precise meanings and

400 views • 14 slides
A $-Family Friendly Approach to Prototype Selection Corey Pittman Eugene M. Taranta II Joseph

A $-Family Friendly Approach to Prototype Selection Corey Pittman Eugene M. Taranta II Joseph

Introduction Selection Method Details Evaluation Summary A $-Family Friendly Approach to Prototype Selection Corey Pittman Eugene M. Taranta II Joseph J. LaViola Jr. Interactive Systems & User Experience Lab Department of Computer

190 views • 15 slides
San Rafael City Council Age-Friendly San Rafael San Rafael Age-Friendly Task Force Members

San Rafael City Council Age-Friendly San Rafael San Rafael Age-Friendly Task Force Members

San Rafael City Council Age-Friendly San Rafael San Rafael Age-Friendly Task Force Members Chris Asimos, Caran Cuneo, Gail Gifford, Linda Jackson, Salamah Locks, Diana Lpez, Patty McCulley, Susie Pollak, and Sparkie Spaeth Process

235 views • 22 slides
B L-722 ADVANCED TOPICS IN COMPUTER VISION a da Ba , N10266943 Paper: Robust Object

B L-722 ADVANCED TOPICS IN COMPUTER VISION a da Ba , N10266943 Paper: Robust Object

B L-722 ADVANCED TOPICS IN COMPUTER VISION a da Ba , N10266943 Paper: Robust Object Tracking with Online Multi-lifespan Dictionary Learning Authors: Junliang Xing, Jin Gao, Bing Li, Weiming Hu and Shuicheng Yan TRACKING Images

552 views • 20 slides
Building an online Indonesian dictionary from Word and Excel fjles David Moeljadi Division of

Building an online Indonesian dictionary from Word and Excel fjles David Moeljadi Division of

Building an online Indonesian dictionary from Word and Excel fjles David Moeljadi Division of Linguistics and Multilingual Studies, Nanyang Technological University, Singapore NIE-ELL Postgraduate Conference (PGC), National Institute of

798 views • 31 slides
IN INDUC NG NG A DOM DOMA N INDEPENDENT DEPENDENT SENT SENT ME MENT NT LEX LEX CO

IN INDUC NG NG A DOM DOMA N INDEPENDENT DEPENDENT SENT SENT ME MENT NT LEX LEX CO

IN INDUC NG NG A DOM DOMA N INDEPENDENT DEPENDENT SENT SENT ME MENT NT LEX LEX CO CON N M ALA ALAY Mohammad Darwich, Shahrul Azman Mohd Noah, Nazlia Omar Center fo Artificial Intelligence Technology (CAIT), Faculty of

452 views • 17 slides
API-Powered Dictionaries For Digitally Under-Represented Languages Sandro Cirulli Oxford

API-Powered Dictionaries For Digitally Under-Represented Languages Sandro Cirulli Oxford

API-Powered Dictionaries For Digitally Under-Represented Languages Sandro Cirulli Oxford University Press (OUP) FOSDEM 31 January 2016 Table of contents 1. Introduction 2. API 3. Demo 4. How to contribute 5. Summary Less than 5% of the

311 views • 13 slides
Automatic Keypoint Detection on 3D Faces Using a Dictionary of Local Shapes Clement Creusot, Nick

Automatic Keypoint Detection on 3D Faces Using a Dictionary of Local Shapes Clement Creusot, Nick

Automatic Keypoint Detection on 3D Faces Using a Dictionary of Local Shapes Clement Creusot, Nick Pears, Jim Austin Advanced Computer Architecture group Department of Computer science 3DIMPVT, Hangzhou, China, May 2011 Aim What Why How

599 views • 16 slides
Papillon Project Mathieu Mangeot & David Thevenin Work done at NII, Tokyo, Japan Now looking

Papillon Project Mathieu Mangeot & David Thevenin Work done at NII, Tokyo, Japan Now looking

Online Generic Editing of Heterogeneous Dictionary Entries in Papillon Project Mathieu Mangeot & David Thevenin Work done at NII, Tokyo, Japan Now looking for a position... My Motivation Dictionaries are a Key Element of almost every

742 views • 31 slides
NIRS and the PPR Reporting Tips NIRS and Reporting Information Available both on the URC and

NIRS and the PPR Reporting Tips NIRS and Reporting Information Available both on the URC and

NIRS and the PPR Reporting Tips NIRS and Reporting Information Available both on the URC and the AUCD website Dedicated NIRS section on AUCD website Start on AUCD homepage: www.aucd.org NIRS box: NIRS title opens up NIRS

209 views • 9 slides
ONLINE LEARNING OF WEBSITE EMBEDDINGS for Accurate Prediction of User Behavior Even when Data

ONLINE LEARNING OF WEBSITE EMBEDDINGS for Accurate Prediction of User Behavior Even when Data

ONLINE LEARNING OF WEBSITE EMBEDDINGS for Accurate Prediction of User Behavior Even when Data are Scarce Amelia White, Director of Data Science Research Nov 13, 2019 Expanding Digital Survey Data SMALL SURVEY PANEL CUSTOM DSTILLERY DEVICE

399 views • 38 slides

More recommend