CSci 5471: Modern Cryptography
Homework 5
due: May 1, 2013
Ground Rules. You may choose to complete these homeworks in a group of up to three students.
Each group should turn in one copy with the name
Modern Cryptography
CSCI 5471, Spring 2013
Bob publishes public (encryption) key pk
keeps secret secret (decryption) key sk
Bob
Alice
PK
E(PK,m)
E(pk,m)
Man in the middle attacks: How does Alice know
Modern Cryptography
CSCI 5471, Spring 2013
SECRET SHARING
Dealer has secret x q.
Shareholders S1Sn get shares s1sn.
Access Structure : a set of subsets A1
Am, Ai cfw_1n.
Security property: for any
Modern Cryptography
CSCI 5471, Spring 2013
MULTIPLICATION MOD M
Definition. Let a . a* is the arithmetic inverse
of a modulo m, if aa* a*a 1 (mod m).
Theorem. a-1 (mod m) exists iff gcd(a,m)=1.
aa* =
Modern Cryptography
CSCI 5471, Spring 2013
PRIVATE INFORMATION RETRIEVAL
qj = query(i,j)
rj = response(qj, x)
client
i cfw_1,r
result(r1,rt) = xi
database(s)
x1,xr cfw_0,1
Correctness. x, i. result(r1
Modern Cryptography
CSCI 5471, Spring 2013
BLIND SIGNATURES
KeyGen(1k): VK, SK
Blind(VK,m): ,
Sign(SK, ):
Unblind(,):
Verify(PK, m, ): T/F
CHAUM BLIND SIGNATURES
Alice
VK = (N,e)
Bob
= re h(m) mod
Modern Cryptography
CSCI 5471, Spring 2013
IDENTITY-BASED ENCRYPTION
Publishes
MPK
Alice
Im Bob!
SKBob
Bob
E(Bob,m)
Formally, four algorithms:
Setup(1k): Generates (MPK, MSK)
Extract(MSK,ID): Computes
