Hardness of distinguishing the MSB or LSB of secret keys

Hardness of distinguishing the MSB or LSB of secret keys (2006)

Cached

Download Links

by Pierre-alain Fouque , David Pointcheval , Jacques Stern , Sébastien Zimmer

Venue:	in Diffie-Hellman schemes, ICALP
Citations:	7 - 3 self

BibTeX

@INPROCEEDINGS{Fouque06hardnessof,
    author = {Pierre-alain Fouque and David Pointcheval and Jacques Stern and Sébastien Zimmer},
    title = {Hardness of distinguishing the MSB or LSB of secret keys},
    booktitle = {in Diffie-Hellman schemes, ICALP},
    year = {2006},
    pages = {240--251},
    publisher = {Springer}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Abstract. In this paper we introduce very simple deterministic randomness extractors for Diffie-Hellman distributions. More specifically we show that the k most significant bits or the k least significant bits of a random element in a subgroup of Z ⋆ p are indistinguishable from a random bit-string of the same length. This allows us to show that under the Decisional Diffie-Hellman assumption we can deterministically derive a uniformly random bit-string from a Diffie-Hellman exchange in the standard model. Then, we show that it can be used in key exchange or encryption scheme to avoid the leftover hash lemma and universal hash functions. Keywords: Diffie-Hellman transform, randomness extraction, least significant bits, exponential sums. 1

Citations

2292	New Directions in Cryptography - Diffie, Hellman - 1976
1130	Random oracles are practical: A paradigm for designing efficient protocols - Bellare, Rogaway - 1993
601	A pseudorandom generator from any one-way function - H˚astad, Impagliazzo, et al. - 1999
394	A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack - Cramer, Shoup - 1998
292	L.: A Hard-Core Predicate for all One-Way Functions - Goldreich, Levin - 1989
253	A public-key cryptosystem and a signature scheme based on discrete logarithms - Gamal - 1985
184	Lower bounds for discrete logarithms and related problems - Shoup - 1997
173	The Decision Diffie-Hellman problem - Boneh - 1998
163	How to Recycle Random Bits - Impagliazzo, Zuckerman - 1989
84	R.: Hardness of Computing the Most Significant Bits of Secret Keys in Diffie–Hellman and Related Schemes - Boneh, Venkatesan - 1996
83	A computational introduction to number theory and algebra. Cambridge Univ Pr - Shoup - 2009
74	Universal Hash Functions - Carter, Wegman - 1979
72	Estimates for the number of sums and products and for exponential sums in fields of prime order - Bourgain, Glibichuk, et al.
66	The Oracle Diffie-Hellman Assumptions and an Analysis of DHIES - Abdalla, Bellare, et al. - 2001
62	Using hash functions as a hedge against chosen ciphertext attack - Shoup - 2000
51	Merkle-Damgård Revisited: How to Construct a Hash Function - Coron, Dodis, et al. - 2005
51	Character sums with exponential functions and their applications - Konyagin, Shparlinski - 1999
51	On Diffie-Hellman key agreement with short exponents - Oorschot, Wiener - 1996
46	Extracting randomness from samplable distributions - Trevisan, Vadhan - 2000
25	On certain exponential sums and the distribution of Diffie-Hellman triples - Canetti, Friedlander, et al. - 1999
24	On the statistical properties of Diffie-Hellman distributions - Canetti, Friedlander, et al. - 2000
23	R.: Rounding in Lattices and its Cryptographic Applications - Boneh, Venkatesan - 1997
22	I.: On the Security of Diffie-Hellman Bits - Vasco, Shparlinski - 2000
22	On the distribution of digits in periodic fractions - Korobov - 1972
20	Randomness extraction and key derivation using the CBC, cascade and HMAC modes - Dodis, Gennaro, et al. - 2004
15	An efficient discrete log pseudo random generator - Patel, Sundaram - 1998
13	The twist-augmented technique for key exchange - Chevassut, Fouque, et al. - 2006
13	Secure Hashed Diffie-Hellman over non-DDH groups - Gennaro, Krawczyk, et al. - 2004
10	An efficient discrete log pseudo random generator - Patel, Sundaram - 1998
9	Extracting Bits from Coordinates of a Point of an Elliptic Curve”, Cryptology Eprint Archive - Gurel
7	Key derivation and randomness extraction’, Cryptology ePrint Archive, Report 2005/061. http://eprint.iacr.org - Chevassut, Fouque, et al. - 2005
4	Randomness Extraction and Key Derivation Using the CBC, Cascade and HMAC modes - Dodis, Gennaro, et al. - 2004
3	New results on the hardness of Diffie-Hellman bits - Vasco, Näslund, et al. - 2004
3	ACE: The Advanced Cryptographic Engine - Schweinberger, Shoup - 2000
2	S.: New bounds for Gauss sums derived from k th powers, and for Heilbronn’s exponential - Heath-Brown, Konyagin - 2000
1	The Oracle Diffie-Hellman Assumptions andanAnalysisofDHIES.InCT - Abdalla, Bellare, et al. - 2001
1	On the bit security of the DiffieHellman key - Blake, Garefalakis, et al. - 2006