On Deniability in the Common Reference String and Random Oracle Model

On Deniability in the Common Reference String and Random Oracle Model (2003)

Cached

Download Links

[www.nada.kth.se]

Other Repositories/Bibliography

DBLP

by Rafael Pass

Venue:	In proceedings of CRYPTO ’03, LNCS series
Citations:	42 - 4 self

BibTeX

@INPROCEEDINGS{Pass03ondeniability,
    author = {Rafael Pass},
    title = {On Deniability in the Common Reference String and Random Oracle Model},
    booktitle = {In proceedings of CRYPTO ’03, LNCS series},
    year = {2003},
    pages = {316--337},
    publisher = {Springer-Verlag}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Abstract. We revisit the definitions of zero-knowledge in the Common Reference String (CRS) model and the Random Oracle (RO) model. We argue that even though these definitions syntactically mimic the standard zero-knowledge definition, they loose some of its spirit. In particular, we show that there exist a specific natural security property that is not captured by these definitions. This is the property of deniability. We formally define the notion of deniable zero-knowledge in these models and investigate the possibility of achieving it. Our results are different for the two models: – Concerning the CRS model, we rule out the possibility of achieving deniable zero-knowledge protocols in “natural ” settings where such protocols cannot already be achieved in plain model. – In the RO model, on the other hand, we construct an efficient 2round deniable zero-knowledge argument of knowledge, that preserves both the zero-knowledge property and the proof of knowledge property under concurrent executions (concurrent zero-knowledge and concurrent proof-of knowledge). 1

Citations

1130	Random oracles are practical: A paradigm for designing efficient protocols - Bellare, Rogaway - 1993
892	C.: The knowledge complexity of interactive proof-systems (extended abstract - Goldwasser, Micali, et al. - 1985
706	A.: How to prove yourself: Practical solutions to identification and signature problems - Fiat, Shamir - 1986
601	A pseudorandom generator from any one-way function - H˚astad, Impagliazzo, et al. - 1999
544	How to construct random functions - Goldreich, Goldwasser, et al. - 1986
484	Universally composable security: A new paradigm for cryptographic protocols - Canetti - 2005
432	Group Signatures - Chaum, Heijst - 1991
425	How to play any mental game, or a completeness theorem for protocols with honest majority - Goldreich, Micali, et al. - 1987
327	Proofs that yield nothing but their validity or all languages in NP have zero-knowledge proof systems - Goldreich, Micali, et al. - 1991
284	M.: Universal one-way hash functions and their cryptographic applications - Naor, Yung - 1989
262	Efficient Identification and Signatures for Smart Cards. CRYPTO - Schnorr - 1989
227	Security arguments for digital signatures and blind signatures - Pointcheval, Stern
215	Foundations of Cryptography — Basic Tools - Goldreich - 2001
206	The random oracle methodology, revisited - Canetti, Halevi
206	Bit Commitment Using Pseudo-Randomness - Naor - 1991
175	A Practical Zero-Knowledge Protocol Fitted to Security Microprocessors Minimizing Both Transmission and Memory - Guillou, Quisquater - 1988
168	On the composition of zero-knowledge proof systems - Goldreich, Krawczyk - 1996
156	Robust non-interactive zero knowledge - Santis, Crescenzo, et al. - 2001
150	Witness indistinguishable and witness hiding protocols - Feige, Shamir - 1990
143	Multiple non-interactive zero knowledge proofs based on a single random string - Feige, Lapidot, et al. - 1990
140	Concurrent zero-knowledge - Dwork, Naor, et al. - 1998
127	Non-malleable non-interactive zero-knowledge and adaptive chosenciphertext security. FOCS - Sahai - 1999
113	Universally composable commitments - Canetti, Fischlin
113	Designated verifier proofs and their applications - Jakobsson, Sako, et al. - 1996
104	Non-Interactive Zero-Knowledge and its Applications - Blum, Feldman, et al. - 1988
99	Definitions and properties of zero-knowledge proof systems - Goldreich, Oren - 1994
94	Zero knowledge proofs of knowledge in two rounds - Feige, Shamir - 1989
91	How to prove a theorem so no one else can claim it - Blum - 1987
71	Black-box concurrent zero-knowledge requires ˜ω(log n) rounds - Canetti, Kilian, et al. - 2001
69	Parallel coin-tossing and constant-round secure two-party computation - Lindell
65	Coin Flipping by Telephone - Blum - 1982
40	Bounded-concurrent secure two-party computation without setup assumptions - Lindell - 2003
39	Strict polynomial-time in simulation and extraction - Barak, Lindell - 2004
29	Simulation in quasi-polynomial time, and its application to protocol composition - Pass - 2003
21	A signature scheme as secure as the Diffie-Hellman problem - Goh, Jarecki - 2003
5	Universally Composable Two-Party and Multy-Party Computation - Canetti, Lindell, et al. - 2002
2	Zero-knowledge twenty years after their invention. http://www.wisdom.weizmann.ac.il/ oded/papers.html, 2002. Cryptography from Composite Degree Residuosity 19 - Goldreich