step out ring signatures
play

Step-out Ring Signatures Marek Klonowski, ukasz Krzywiecki, Mirosaw - PowerPoint PPT Presentation

Mar 24, 2024 •339 likes •691 views

Introduction Construction Step-out Ring Signatures Marek Klonowski, ukasz Krzywiecki, Mirosaw Kutyowski and Anna Lauks Institute of Mathematics and Computer Science Wrocaw University of Technology MFCS 2008 25-29 August 2008, Toru

  1. Introduction Construction Step-out Ring Signatures Marek Klonowski, Łukasz Krzywiecki, Mirosław Kutyłowski and Anna Lauks Institute of Mathematics and Computer Science Wrocław University of Technology MFCS 2008 25-29 August 2008, Toru´ n, Poland Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  2. Introduction Construction Introduction 1 Digital signatures Step-out Signatures Construction 2 Preliminaries Signature Creation Confession Procedure Step-out Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  3. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Procedures : key setup: private key - for creating a signature public key - for verifying a signature creating a signature signature verification Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  4. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Procedures : key setup: private key - for creating a signature public key - for verifying a signature creating a signature signature verification Signing M : Alice takes her private key k Alice and computes s := sign ( M , k Alice ) Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  5. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Procedures : key setup: private key - for creating a signature public key - for verifying a signature creating a signature signature verification Signing M : Alice takes her private key k Alice and computes s := sign ( M , k Alice ) Verifying signature s of M : Bob takes the public key p Alice and checks if test ( s , M , p Alice ) = true Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  6. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Properties: verification outcome is positive, if k Alice used for signature 1 creation and p Alice for verification, Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  7. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Properties: verification outcome is positive, if k Alice used for signature 1 creation and p Alice for verification, test ( s , M , p Alice ) = false , if M has been changed after 2 creating signature s , Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  8. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Properties: verification outcome is positive, if k Alice used for signature 1 creation and p Alice for verification, test ( s , M , p Alice ) = false , if M has been changed after 2 creating signature s , without the private key k Alice , it is infeasible to produce a 3 signature of Alice that is verified positively. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  9. Introduction Digital signatures Construction Step-out Signatures Digital Signatures Properties: verification outcome is positive, if k Alice used for signature 1 creation and p Alice for verification, test ( s , M , p Alice ) = false , if M has been changed after 2 creating signature s , without the private key k Alice , it is infeasible to produce a 3 signature of Alice that is verified positively. So if test ( s , M , p Alice ) = true , then only the holder of k Alice (i.e. Alice) could produce s for message M . Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  10. Introduction Digital signatures Construction Step-out Signatures Ring Signatures Properties: the signer is within the group of potential signers called a 1 ring, Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  11. Introduction Digital signatures Construction Step-out Signatures Ring Signatures Properties: the signer is within the group of potential signers called a 1 ring, the signer uses his own private key and the public keys of 2 the other ring members to create a signature, Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  12. Introduction Digital signatures Construction Step-out Signatures Ring Signatures Properties: the signer is within the group of potential signers called a 1 ring, the signer uses his own private key and the public keys of 2 the other ring members to create a signature, for verification the public keys of the ring members are 3 used, Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  13. Introduction Digital signatures Construction Step-out Signatures Ring Signatures Properties: the signer is within the group of potential signers called a 1 ring, the signer uses his own private key and the public keys of 2 the other ring members to create a signature, for verification the public keys of the ring members are 3 used, it is infeasible to detect which ring member created a 4 signature. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  14. Introduction Digital signatures Construction Step-out Signatures Ring Signatures Properties: the signer is within the group of potential signers called a 1 ring, the signer uses his own private key and the public keys of 2 the other ring members to create a signature, for verification the public keys of the ring members are 3 used, it is infeasible to detect which ring member created a 4 signature. the signer is perfectly hidden in the ring. 5 one cannot prevent being a member of a ring. 6 Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  15. Introduction Digital signatures Construction Step-out Signatures Malicious Application of Ring Signatures Leaking information A member of a group (i.e. a parliament commission) can leak a secret information to the press. The message is authenticated with a ring signature - with the commission members as the ring. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  16. Introduction Digital signatures Construction Step-out Signatures Malicious Application of Ring Signatures Leaking information A member of a group (i.e. a parliament commission) can leak a secret information to the press. The message is authenticated with a ring signature - with the commission members as the ring. Properties one can easily check that some commission member has 1 signed it, and so the information is authentic, no investigation can reveal the information source. 2 Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  17. Introduction Digital signatures Construction Step-out Signatures Malicious Application of Ring Signatures Leaking information A member of a group (i.e. a parliament commission) can leak a secret information to the press. The message is authenticated with a ring signature - with the commission members as the ring. Properties one can easily check that some commission member has 1 signed it, and so the information is authentic, no investigation can reveal the information source. 2 As soon as public keys (e.g. RSA keys) of the commission members are published, nothing can prevent this scenario! Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  18. Introduction Digital signatures Construction Step-out Signatures Step-out Signatures – Target Applications Electronic auction Requirements: strong authentication and anonymity of the bids (also 1 against the auction manager), possibility of immediate withdrawal of the deposit 2 immediately after leaving the auction. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  19. Introduction Digital signatures Construction Step-out Signatures Step-out Signatures – Target Applications Electronic auction Requirements: strong authentication and anonymity of the bids (also 1 against the auction manager), possibility of immediate withdrawal of the deposit 2 immediately after leaving the auction. Ring signatures? a ring signature authentication and anonymity, 1 however, there is no way to force the winner to reveal 2 himself! a useless solution ... Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  20. Introduction Digital signatures Construction Step-out Signatures Step-out Signatures Properties Anonymity: ring type signature: identity of the signer(s) is hidden among identities of non-signers in a ring. Confession procedure: the real signer can prove that he has participated in signature creation. Step-out procedure: a non-signer can prove that he has not participated in signature creation. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  21. Introduction Digital signatures Construction Step-out Signatures Step-out Signatures Properties for auction protocol Strong anonymity: necessary for fairness of e-auctions. Confession procedure: the real signer of the winning bid can reveal himself against the auction. Step-out procedure: a non-signer of the highest bid can step out during the auction and withdraw the deposit. Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

  22. Preliminaries Introduction Signature Creation Construction Confession Procedure Step-out Discrete Logarithm DL hardness we use a cyclic group G such that computing g x is easy for each g , x given a random y , it is infeasible to find x such that y = g x . Secret keys Each user U has its private key x U selected at random the corresponding public key is y U = g x U , where g is a fixed generator of G . Klonowski, Krzywiecki, Kutyłowski, Lauks Step-out Ring Signatures

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Post-Quantum Zero-Knowledge Proofs for Accumulators with Applications to Ring Signatures from

Post-Quantum Zero-Knowledge Proofs for Accumulators with Applications to Ring Signatures from

Post-Quantum Zero-Knowledge Proofs for Accumulators with Applications to Ring Signatures from Symmetric-Key Primitives David Derler , Sebastian Ramacher , Daniel Slamanig PQC rypto 18, April 9, 2018 1 Ring Signatures P

612 views • 27 slides
Zero-Knowledge Arguments for Lattice-Based Accumulators: Logarithmic-Size Ring Signatures and

Zero-Knowledge Arguments for Lattice-Based Accumulators: Logarithmic-Size Ring Signatures and

Zero-Knowledge Arguments for Lattice-Based Accumulators: Logarithmic-Size Ring Signatures and Group Signatures without Trapdoors t Libert 1 San Ling 2 Khoa Nguyen 2 Huaxiong Wang 2 Beno 1 Ecole Normale Sup erieure de Lyon (France) 2

681 views • 33 slides
Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Problem Description Current State of the Art Our Contribution Our Scheme Summary References Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque , Alessandra Scafuro North Carolina State University May

736 views • 61 slides
Signatures Lecture 22 Signatures Signatures Signatures with various functionality/properties

Signatures Lecture 22 Signatures Signatures Signatures with various functionality/properties

Signatures Lecture 22 Signatures Signatures Signatures with various functionality/properties Signatures Signatures with various functionality/properties Constructions come in different flavors (well sample each flavor): Signatures

1.55k views • 131 slides
Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And

Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And

Digital Signatures Digital Signatures And Putting It All Together Digital Signatures And Putting It All Together Lecture 12 Digital Signatures Digital Signatures Syntax: KeyGen, Sign SK and Verify VK . Security: Same experiment as MAC s,

1.72k views • 142 slides
Identity Based Ring Signature Why, How, and What Next Sherman S.M. Chow Richard W.C. Lui Lucas

Identity Based Ring Signature Why, How, and What Next Sherman S.M. Chow Richard W.C. Lui Lucas

Identity Based Ring Signature Why, How, and What Next Sherman S.M. Chow Richard W.C. Lui Lucas C.K. Hui S.M. Yiu The University of Hong Kong Outline Introduction PKI vs ID-based Ring Signatures Technical Preliminaries

1.81k views • 29 slides
Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly

Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly

Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly signing a transaction Secretly receiving a transaction Privacy Hierarchy Everything open Bitcoin Pseudonymous, amount open Privacy Hierarchy

911 views • 45 slides
Construction of Universal Designated-Verifier Signatures and Identity-Based Signatures from

Construction of Universal Designated-Verifier Signatures and Identity-Based Signatures from

Motivation Research Question Results Conclusion Notes Construction of Universal Designated-Verifier Signatures and Identity-Based Signatures from Standard Signatures Siamak Shahandashti 1 Rei Safavi-Naini 2 1 SCSSE & CCISR, Uni

465 views • 46 slides
An Exploration of Group and Ring Signatures Sarah Meiklejohn ! ! ! ! UC San Diego Research

An Exploration of Group and Ring Signatures Sarah Meiklejohn ! ! ! ! UC San Diego Research

An Exploration of Group and Ring Signatures Sarah Meiklejohn ! ! ! ! UC San Diego Research Exam 4 February 2011 1 A real-world problem 2 A real-world problem 2 A real-world problem I need to tell the others! 2 A real-world problem

1.62k views • 158 slides
1 Arbitrated Digital Signatures Digital Signature Standard (DSS) US Govt approved signature

1 Arbitrated Digital Signatures Digital Signature Standard (DSS) US Govt approved signature

CPE 542: CRYPTOGRAPHY & NETWORK SECURITY Digital Signatures have looked at message authentication but does not address issues of lack of trust Chapter 13 Digital Signatures digital signatures provide the ability to:

361 views • 3 slides
Efficient Unlinkable Sanitizable Signatures from Signatures with Re-Randomizable Keys Nils

Efficient Unlinkable Sanitizable Signatures from Signatures with Re-Randomizable Keys Nils

Efficient Unlinkable Sanitizable Signatures from Signatures with Re-Randomizable Keys Nils Fleischhacker Johannes Krupp Giulio Malavolta Jonas Schneider Dominique Schr oder Mark Simkin March 7, 2016 Sanitizable Signatures

577 views • 46 slides
min { a i , a j } max { a i , a j } P j P j P i P i P i P j Step 1 Step 2 Step 3 Figure 9.1 A

min { a i , a j } max { a i , a j } P j P j P i P i P i P j Step 1 Step 2 Step 3 Figure 9.1 A

a i a j a i , a j a j , a i min { a i , a j } max { a i , a j } P j P j P i P i P i P j Step 1 Step 2 Step 3 Figure 9.1 A parallel compare-exchange operation. Processes P i and P j send their elements to each other. Process P i keeps min { a i ,

372 views • 22 slides
Lecture 12 Digital Signatures from one-way functions Signatures vs. MACs Signatures MAC s

Lecture 12 Digital Signatures from one-way functions Signatures vs. MACs Signatures MAC s

Lecture 12 Digital Signatures from one-way functions Signatures vs. MACs Signatures MAC s users require only secretkeys users require n 2 secretkeys Privately verifiable and non-transferable Same signature

764 views • 53 slides
Step 1 Step 2 Step 3 Step 4 Step 5 Preparation of a sketch Submission of birth map of all

Step 1 Step 2 Step 3 Step 4 Step 5 Preparation of a sketch Submission of birth map of all

Step 1 Step 2 Step 3 Step 4 Step 5 Preparation of a sketch Submission of birth map of all customary information forms to Preparation and adoption of Convening and submission Submission of Application Ste land owned by ILG obtain

1.23k views • 4 slides
Leptophilic Higgs Leptophilic Higgs Signatures at the LHC Signatures at the LHC (And the

Leptophilic Higgs Leptophilic Higgs Signatures at the LHC Signatures at the LHC (And the

Leptophilic Higgs Leptophilic Higgs Signatures at the LHC Signatures at the LHC (And the Importance of Leptonic Decays for Higgs Discovery) Brooks Thomas (The University of Arizona) Shufang Su & BT [arXiv:0903.0667] What do we know about

375 views • 26 slides
Using RtI for SLD eligibility: Using RtI for SLD eligibility: Step by step procedures Step by

Using RtI for SLD eligibility: Using RtI for SLD eligibility: Step by step procedures Step by

Using RtI for SLD eligibility: Using RtI for SLD eligibility: Step by step procedures Step by step procedures Webster Groves School District 2009 Response to Intervention (RtI) is a comprehensive early detection and prevention strategy

688 views • 23 slides
PURSUING A REVIVAL IN GOLD CAUTIONARY NOTES Cautionary Note This document has been prepared by

PURSUING A REVIVAL IN GOLD CAUTIONARY NOTES Cautionary Note This document has been prepared by

revival-gold.com TSX-V: RVG Corporate Presentation 8 th September 2020 OTCQB: RVLGF PURSUING A REVIVAL IN GOLD CAUTIONARY NOTES Cautionary Note This document has been prepared by Revival Gold Inc. (Revival Gold or, the Company) for

419 views • 37 slides
1 Adult IDD Waiver Improving Home and Community-Based Services for Redesign Adults with

1 Adult IDD Waiver Improving Home and Community-Based Services for Redesign Adults with

1 Adult IDD Waiver Improving Home and Community-Based Services for Redesign Adults with Intellectual & Stakeholder Developmental Disabilities Meeting June 18, 2019 Welcome and 2 Introductions Introductions Housekeeping

562 views • 13 slides
StepOut Junyi Zhang, Palash Kanwar, Zhenyang Gong To help college students connect with people

StepOut Junyi Zhang, Palash Kanwar, Zhenyang Gong To help college students connect with people

StepOut Junyi Zhang, Palash Kanwar, Zhenyang Gong To help college students connect with people sharing similar interests through an IOS application that allows students to organize, participate and socialize in group activities Three Issues 1.

403 views • 7 slides
Earnings Call Slide Deck March 2, 2017 March 2017 This presentation has been prepared by

Earnings Call Slide Deck March 2, 2017 March 2017 This presentation has been prepared by

Earnings Call Slide Deck March 2, 2017 March 2017 This presentation has been prepared by Goodrich Petroleum Corporation (the Company) solely for information purposes and may include "forward- looking statements" within the

462 views • 25 slides
Stereo Vision I Introduction to Computer Vision CSE 152 Lecture 13 CSE152, Spr 07 Intro

Stereo Vision I Introduction to Computer Vision CSE 152 Lecture 13 CSE152, Spr 07 Intro

Stereo Vision I Introduction to Computer Vision CSE 152 Lecture 13 CSE152, Spr 07 Intro Computer Vision Announcements Midterm Percentage Score Out of Mean 67 52. 78 pts. Median 62 48 High 96 75 Low 24 18 CSE152,

315 views • 17 slides
Towards a fully automated, high-performance pipeline for stereo reconstruction from earth

Towards a fully automated, high-performance pipeline for stereo reconstruction from earth

Towards a fully automated, high-performance pipeline for stereo reconstruction from earth observing satellites Dave Kelbe, PhD 1 Jeff Nichols, PhD 2 David Page, PhD 1 Devin White, PhD 1 Andrew Hardin 3 Lawrence MacIntyre 2 1 Geographic Data

877 views • 22 slides
SUSTAI NABLE DI VI DEND & GROW TH May 2018 Cardinal Profile Shares Outstanding TSX: CJ

SUSTAI NABLE DI VI DEND & GROW TH May 2018 Cardinal Profile Shares Outstanding TSX: CJ

SUSTAI NABLE DI VI DEND & GROW TH May 2018 Cardinal Profile Shares Outstanding TSX: CJ Basic (1) 110.8 MM Fully Diluted (excluding debentures) 114.0 MM 2018 Annual Dividend ($/share) $0.42 2018 Average Production Guidance (boe/d)

498 views • 25 slides
May 2016 Corporate Summary Capital Structure TSX Venture HME Common Shares Outstanding 75.9

May 2016 Corporate Summary Capital Structure TSX Venture HME Common Shares Outstanding 75.9

May 2016 Corporate Summary Capital Structure TSX Venture HME Common Shares Outstanding 75.9 MM Fully Diluted Shares Outstanding 80.9 MM Share Price (May 13, 2016) $0.18 Insider Ownership (fully diluted) 12% 52 Week High / Low $0.33 /

632 views • 23 slides

More recommend