Proofs of Partial Knowledge and Simplified Design of Witness Hiding Protocols

Cramer, Ronald; Damgård, Ivan; Schoenmakers, Berry

doi:10.1007/3-540-48658-5_19

Cited by 836 publications

(702 citation statements)

References 12 publications

Supporting

Mentioning

675

Contrasting

Unclassified

Order By: Relevance

“…We show that every predicate has a commital deniable proof, using techniques of Cramer et al [13,12]. That is, we show that the protocol from [12] has our new property of commital deniability.…”

Section: Commital Deniable Proofsmentioning

confidence: 77%

“…This fairly general construction seems to be applicable in many situations in which provability and deniability should be combined. Our protocol builds on ideas of Cramer and Damgard [12] for efficient zero-knowledge proofs, which in turn builds on ideas of Cramer, Damgard, and Schoenmakers [13]. In essence, we show that these earlier protocols have our new property of commital deniability.…”

Section: Introductionmentioning

confidence: 89%

See 1 more Smart Citation

Commital Deniable Proofs and Electronic Campaign Finance

Franklin

Sander²

2000

Advances in Cryptology — ASIACRYPT 2000

View full text Add to dashboard Cite

show abstract

Section: Commital Deniable Proofsmentioning

confidence: 77%

Section: Introductionmentioning

confidence: 89%

Commital Deniable Proofs and Electronic Campaign Finance

Franklin

Sander²

2000

Advances in Cryptology — ASIACRYPT 2000

View full text Add to dashboard Cite

show abstract

“…Our two-party decryption system in Section 5 uses special types of Σ-protocols to deal with malicious adversaries, so here we overview the basic definitions and properties of Σ-protocols [14,13]. (This section may be skipped if one is only interested in the high-level design of our two-party decryption system, and in particular, a design that is only secure against so-called "honest-but-curious" adversaries.…”

Section: Definition and Basic Theory Of σ-Protocolsmentioning

confidence: 99%

“…A simple but important fact (see [14]) is that if a Σ-protocol is HVZK, the protocol is perfectly witness indistinguishable (WI) [22]. Although HVZK by itself is defined with respect to a very much restricted verifier, i.e.…”

Section: Philip Mackenziementioning

confidence: 99%

An Efficient Two-Party Public Key Cryptosystem Secure against Adaptive Chosen Ciphertext Attack

MacKenzie

2002

Public Key Cryptography — PKC 2003

View full text Add to dashboard Cite

Abstract.We propose an efficient two-party public key cryptosystem that is secure against adaptive chosen ciphertext attack, based on the hardness of Decision Diffie-Hellman (DDH). Specifically, we show that the two parties together can decrypt ciphertexts, but neither can alone. Our system is based on the Cramer-Shoup cryptosystem. Previous results on efficient threshold cryptosystems secure against adaptive chosen ciphertext attack required either (1) a strict majority of uncorrupted decryption servers, and thus do not apply to the two-party scenario, or (2) the random oracle assumption, and thus were not proven secure in the "standard" model.

show abstract

“…It is very attractive to use in these protocols the non-interactive OT 2 1 protocols of Bellare and Micali [1]. The combination of these protocols with the proof techniques of [9] yields a very efficient OT 2 1 protocol which is based on the Decisional Diffie-Hellman assumption.…”

Section: The Decisional Diffie-hellman Assumptionmentioning

confidence: 99%

Oblivious Transfer with Adaptive Queries

Naor

Pinkas

1999

Lecture Notes in Computer Science

140

124

View full text Add to dashboard Cite

Abstract. We provide protocols for the following two-party problem: One party, the sender, has N values and the other party, the receiver, would like to learn k of them, deciding which ones in an adaptive manner (i.e. the ith value may depend on the first i − 1 values). The sender does not want the receiver to obtain more than k values. This is a variant of the well known Oblivious Transfer (OT) problem and has applications in protecting privacy in various settings. We present efficient protocols for the problem that require an O(N ) computation in the preprocessing stage and fixed computation (independent of k) for each new value the receiver obtains. The on-line computation involves roughly log N invocations of a 1-out-2 OT protocol. The protocols are based on a new primitive, sum consistent synthesizers.

show abstract

Proofs of Partial Knowledge and Simplified Design of Witness Hiding Protocols

Cited by 836 publications

References 12 publications

Commital Deniable Proofs and Electronic Campaign Finance

Commital Deniable Proofs and Electronic Campaign Finance

An Efficient Two-Party Public Key Cryptosystem Secure against Adaptive Chosen Ciphertext Attack

Oblivious Transfer with Adaptive Queries

Contact Info

Product

Resources

About