Public-Key Encryption with Lazy Parties

Yasunaga, Kenji

doi:10.1587/transfun.e99.a.590

Cited by 4 publications

(9 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We present a round-efficient scheme based on a mechanism of repeated games. Specifically, we construct a secure two-round scheme in the setting for which a three-round scheme was presented in [9]. The scheme is the first two-round scheme in the setting where the receiver may know the value of a message to be sent.…”

Section: This Workmentioning

confidence: 99%

“…The scheme is the first two-round scheme in the setting where the receiver may know the value of a message to be sent. Since non-interactive schemes cannot be secure [9], the scheme achieves the optimal round complexity.…”

Section: This Workmentioning

confidence: 99%

“…Our security model is based on the study of [9]. We define a variant of chosen plaintext attack (CPA) game of encryption schemes.…”

Section: Our Modelmentioning

confidence: 99%

“…There are many studies using game-theoretic analysis for cryptographic primitives, including secret sharing [10]- [19], two-party protocols [20]- [22], public-key encryption [9], leader election [23], [24], Byzantine agreement [25], delegation of computation [26]- [30], and protocol design [31], [32]. Among them, repeated games have been introduced only in rational secret sharing [33].…”

Section: Related Workmentioning

confidence: 99%

“…The problem of such rationality was studied in [9] for public-key encryption schemes. For the first step to understand the behavior of such rational parties, the author considered a simple setting in which rational senders and receivers can choose either good randomness and bad randomness.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Repeated Games for Generating Randomness in Encryption

Yasunaga

Yuzawa

2018

IEICE Trans. Fundamentals

Self Cite

View full text Add to dashboard Cite

In encryption schemes, the sender may not generate randomness properly if generating randomness is costly, and the sender is not concerned about the security of a message. The problem was studied by the first author (2016), and was formalized in a game-theoretic framework. In this work, we construct an encryption scheme with an optimal round complexity on the basis of the mechanism of repeated games.

show abstract

Section: This Workmentioning

confidence: 99%

Section: This Workmentioning

confidence: 99%

“…Our security model is based on the study of [9]. We define a variant of chosen plaintext attack (CPA) game of encryption schemes.…”

Section: Our Modelmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Repeated Games for Generating Randomness in Encryption

Yasunaga

Yuzawa

2018

IEICE Trans. Fundamentals

Self Cite

View full text Add to dashboard Cite

show abstract

Perfectly Secure Message Transmission Against Rational Timid Adversaries

Fujita

Yasunaga

Koshiba

2018

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Secure Message Transmission (SMT) is a two-party cryptographic protocol by which the sender can securely and reliably transmit messages to the receiver using multiple channels. An adversary for SMT can corrupt a subset of the channels and make eavesdropping and tampering over the channels. In this work, we introduce a game-theoretic security model for SMT in which adversaries have some preferences for the protocol execution. We define rational "timid" adversaries who prefer to violate the security requirements, but do not prefer the tampering to be detected. Such adversaries could arise since they may fear losing their corrupted channels for which they needed some cost or risks. First, we consider the basic setting in which a single adversary attacks the protocol. We show that, even if all but one of the channels are corrupted, we can construct perfect SMT protocols against rational adversaries. In the traditional cryptographic setting, perfect SMT can be constructed only when the adversary corrupts a minority of the channels. Our results demonstrate a way of circumventing the cryptographic impossibility results by a game-theoretic approach. Next, we study the setting in which all the channels can be corrupted by multiple adversaries who do not cooperate. Since we cannot hope for any security if a single adversary corrupts all the channels or multiple adversaries cooperate maliciously, the scenario can arise from a gametheoretic model. We present several perfect SMT protocols, including a non-interactive protocol based on the idea of cheater-identifiable secret sharing. We also study the scenario in which both malicious and rational adversaries exist.

show abstract

Perfectly Secure Message Transmission Against Independent Rational Adversaries

Yasunaga

Koshiba

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Public-Key Encryption with Lazy Parties

Cited by 4 publications

References 28 publications

Repeated Games for Generating Randomness in Encryption

Repeated Games for Generating Randomness in Encryption

Perfectly Secure Message Transmission Against Rational Timid Adversaries

Perfectly Secure Message Transmission Against Independent Rational Adversaries

Contact Info

Product

Resources

About