1 out of 2 signature
play

1-out-of-2 Signature Jun Shao 2 Whats 1-out-of-2 Signature Mirosaw - PowerPoint PPT Presentation

Nov 24, 2022 •148 likes •489 views

1-out-of-2 Signature Mirosaw Kutyowski 1 and 1-out-of-2 Signature Jun Shao 2 Whats 1-out-of-2 Signature Mirosaw Kutyowski 1 and Jun Shao 2 Definitions of 1-out-of-2 signature 1 Institute of Mathematics and Computer Science Our

  1. 1-out-of-2 Signature Mirosław Kutyłowski 1 and 1-out-of-2 Signature Jun Shao 2 What’s 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 Definitions of 1-out-of-2 signature 1 Institute of Mathematics and Computer Science Our proposal Wrocław University of Technology Extension 2 College of Computer and Information Engineering Zhejiang Gongshang University 2011-3-22

  2. Table of Content 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 What’s 1-out-of-2 Signature 1 What’s 1-out-of-2 Signature 2 Definitions of 1-out-of-2 signature Definitions of 1-out-of-2 signature 3 Our proposal Our proposal Extension Extension 4

  3. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s 1-out-of-2 delegate his/her signing rights to a proxy. Signature Definitions of 1-out-of-2 signature Our proposal Extension

  4. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s 1-out-of-2 delegate his/her signing rights to a proxy. Signature Proxy signature Definitions of 1-out-of-2 signature Our proposal Extension

  5. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s 1-out-of-2 delegate his/her signing rights to a proxy. Signature Proxy signature Definitions of 1-out-of-2 signature Proxy re-signature Our proposal Extension

  6. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s 1-out-of-2 delegate his/her signing rights to a proxy. Signature Proxy signature Definitions of 1-out-of-2 signature Proxy re-signature Our proposal Mediated signature Extension

  7. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s 1-out-of-2 delegate his/her signing rights to a proxy. Signature Proxy signature Definitions of 1-out-of-2 In a proxy signature scheme, the original signer signature delegates his/her signing rights to a proxy, who can sign Our proposal messages on behalf of the original signer afterwards. Extension

  8. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In digital signature, when the signer is absent, he/she will What’s delegate his/her signing rights to a proxy. 1-out-of-2 Signature Proxy signature Definitions of Proxy re-signature 1-out-of-2 signature In a proxy re-signature scheme, a proxy can transform a Our proposal signature of the delegatee to another signature of the Extension delegator on the same message.

  9. Signature with delegation capability 1-out-of-2 Signature Mirosław Kutyłowski 1 and In digital signature, when the signer is absent, he/she will Jun Shao 2 delegate his/her signing rights to a proxy. What’s Proxy signature 1-out-of-2 Signature Proxy re-signature Definitions of 1-out-of-2 Mediated signature signature In a mediated signature scheme, an on-line Our proposal semi-trusted mediator (SEM) should involve in every Extension signing process to help the original signer to generate the signature.

  10. Scenario 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 In some cases, the signer just wanna give the proxy the What’s limited delegation, which satisfies that 1-out-of-2 Signature The proxy can generate the signature on only one Definitions of 1-out-of-2 message from two given messages. signature The signature generated by the proxy is Our proposal indistinguishable from the one by the signer. Extension

  11. Scenario 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 Proxy signature ✖ What’s 1-out-of-2 Distinguishable Signature Definitions of 1-out-of-2 signature Our proposal Extension

  12. Scenario 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 Proxy signature ✖ What’s 1-out-of-2 Distinguishable Signature Proxy re-signature ✖ Definitions of 1-out-of-2 Public key is changed signature Our proposal Extension

  13. Scenario 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 Proxy signature ✖ What’s 1-out-of-2 Distinguishable Signature Proxy re-signature ✖ Definitions of 1-out-of-2 Public key is changed signature Mediated signature ✖ Our proposal Extension The proxy is always involved

  14. Functionality of 1-out-of-2 signature 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 1-out-of-2 signature is a kind of signature with delegation capability. What’s 1-out-of-2 Signature Definitions of 1-out-of-2 signature Our proposal Extension

  15. Functionality of 1-out-of-2 signature 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 1-out-of-2 signature is a kind of signature with delegation capability. In particular, What’s 1-out-of-2 Signature The proxy can transform one of two given partial Definitions of signatures of the signer into one full signature. 1-out-of-2 signature Our proposal Extension

  16. Functionality of 1-out-of-2 signature 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 1-out-of-2 signature is a kind of signature with delegation capability. In particular, What’s 1-out-of-2 Signature The proxy can transform one of two given partial Definitions of signatures of the signer into one full signature. 1-out-of-2 signature The proxy can transform only one of the two given Our proposal partial signatures; otherwise, the secret key of the Extension proxy will be revealed.

  17. Definition 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 SKeyGen ( 1 k ) → ( pk S , sk S ) . What’s PKeyGen ( 1 k ) → ( pk P , sk P ) . 1-out-of-2 Signature PreSign ( sk S , pk P , ( m 0 , m 1 )) → (( σ 0 , m 0 ) , ( σ 1 , m 1 )) . Definitions of 1-out-of-2 Trans ( σ 0 , σ 1 , sk P ) → σ ′ b , ( b ∈ { 0 , 1 } ) . signature Our proposal Verify (( σ ′ , m ) , pk S ) → 1 or 0. Extension Reveal (( σ 0 , σ 1 ) , ( σ ′ 0 , σ ′ 1 ) , pk P ) → sk P .

  18. Security Model—Existential Unforgeability 1-out-of-2 Signature Mirosław Kutyłowski 1 and Setup ( pk S , sk S ) , ( pk P , sk P ) . Jun Shao 2 Queries Secret key oracle O Psk . What’s Partial signature generation oracle O ps . 1-out-of-2 Full signature generation oracle O t . Signature Definitions of Forgery The adversary outputs a full signature ( σ ∗ , m ∗ ) . 1-out-of-2 signature Our proposal Verify (( σ ∗ , m ∗ ) , pk S ) → 1. Extension ( ∗ , m ∗ ) has not been queried to O t . m ∗ has not been queried to O ps or O Psk has not been queried.

  19. Security Model—Confidentiality 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 Setup Identical to that in the game for Existential What’s Unforgeability. 1-out-of-2 Signature Secret key oracle O Ssk . Queries Definitions of Partial signature generation oracle O ps . 1-out-of-2 signature Full signature generation oracle O t . Our proposal Output The adversary wins if he/she outputs the Extension proxy’s secret key sk P .

  20. Our proposal—one-time signature method 1-out-of-2 Signature It works in a finite cyclic group G = < g > with prime order Mirosław p . Kutyłowski 1 and SKeyGen : X = g x ∈ G , x ∈ Z ∗ Jun Shao 2 p . PKeyGen : Y = g y ∈ G , y ∈ Z ∗ p . What’s 1-out-of-2 PreSign : ( x , Y , m 0 , m 1 ) Signature The proxy sends A = g a to the signer, where a is a Definitions of 1-out-of-2 random number from Z ∗ p . signature On receiving A , the signer computes two partial Our proposal signatures on m 0 , m 1 as follows. For ( b ′ = 0 , 1 ) Extension ( Y H 1 ( Y || A || b ′ ) · A ) · g r b ′ , R b ′ = S b ′ = r b ′ + H 2 ( m b ′ || R b ′ ) · x mod p , where r b ′ , ( b ′ = 0 , 1 ) are random numbers from Z ∗ p . The signer sends ( R b ′ , S b ′ , b ′ ) , ( b ′ = 0 , 1 ) to the proxy.

  21. Our proposal 1-out-of-2 Signature Mirosław Kutyłowski 1 Trans : On input ( R b ′ , S b ′ , m b ′ ) , ( b ′ = 0 , 1 ) , a , y , it and Jun Shao 2 outputs ( R ′ b , S ′ b , b ) , ( b ∈ { 0 , 1 } ) : R ′ b = R b , S ′ b = S b + ( y · H 1 ( Y || g a || b ) + a ) mod p . What’s 1-out-of-2 Verify : On input ( R ′ , S ′ , m ) , X , it outputs 1 if Signature g S ′ = R ′ · X H 2 ( m || R ′ ) holds; otherwise, it outputs 0. Definitions of 1-out-of-2 Reveal : On input ( R b ′ , S b ′ , b ′ ) , ( b ′ = 0 , 1 ) , signature Our proposal b ′ , b ′ ) , ( b ′ = 0 , 1 ) , A , Y , it outputs y . ( R ′ b ′ , S ′ Extension � S ′ 0 − S 0 = y · H 1 ( Y || A || 0 ) + a mod p , S ′ 1 − S 1 = y · H 1 ( Y || A || 1 ) + a mod p .

  22. Security analysis 1-out-of-2 Signature Mirosław Kutyłowski 1 and Jun Shao 2 What’s Theorem 1-out-of-2 Signature The above proposal is existentially unforgeable and Definitions of 1-out-of-2 confidential in the random oracle model based on the DL signature assumption. Our proposal Extension

Recommend

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature 1 Signature 2 Signature 2 http://comm ons.wikime dia.org/wiki/ File:Piasnic a- Signature 3 Signature 3 wodowskaz -0.jpg Ida Westerberg 1,2

388 views • 19 slides
ratification and signature Signature vs ratification Signature formal expression of intent to

ratification and signature Signature vs ratification Signature formal expression of intent to

Steps and technical modalities to follow for the deposit of the instrument of ratification and signature Signature vs ratification Signature formal expression of intent to be bound, but no legal obligation yet: however, a State is

585 views • 10 slides
Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital

Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital

Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital Signature Digital Signature And Hash Function Biometric Signature Electronic Signature Act ROC, 2002/04/01,

299 views • 13 slides
Digital Signature Schemes 1 What is digital signature? Properties Who signed what is

Digital Signature Schemes 1 What is digital signature? Properties Who signed what is

Digital Signature Schemes 1 What is digital signature? Properties Who signed what is publicly verifiable Unforgeable 2 A Digital Signature Scheme Key generation algorithm G (probabilistic) ( pk, sk ) G (1 ) security

602 views • 22 slides
Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson

Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson

Presentation &amp; Handwriting Policy Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson Date 24 th January 2018 Review date Jan 2020 1 Presentation 1 Book covers should indicate:

52 views • 4 slides
Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it is a part of the document) 4. Signed document is unalterable. 5. Signature cannot be

478 views • 24 slides
Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it is a part of the document) 4. Signed document is unalterable. 5. Signature cannot be

244 views • 21 slides
Digital Signature And Hash Function

Digital Signature And Hash Function

Digital Signature And Hash Function 1 Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital Signature Biometric Signature

894 views • 52 slides
Week 07 Lectures Signature-based Selection Indexing with Signatures 2/103 Signature-based

Week 07 Lectures Signature-based Selection Indexing with Signatures 2/103 Signature-based

Week 07 Lectures Signature-based Selection Indexing with Signatures 2/103 Signature-based indexing: designed for pmr queries (conjunction of equalities) does not try to achieve better than O(n) performance attempts to provide an

859 views • 27 slides
2 Mission Impact Framework Signature Outcomes YWCA USA and member associations work to achieve

2 Mission Impact Framework Signature Outcomes YWCA USA and member associations work to achieve

2 Mission Impact Framework Signature Outcomes YWCA USA and member associations work to achieve signature metrics for each signature platform over a period of years. 3 Vision for Quality, Affordable Early Learning Strength, confidence,

291 views • 18 slides
Detecting Attacks Anomaly-based Detection Signature-based Signature-based (Misuse)

Detecting Attacks Anomaly-based Detection Signature-based Signature-based (Misuse)

Detecting Attacks Anomaly-based Detection Signature-based Signature-based (Misuse) Detection Intrusion Detection Host-based Network-based Boriana Ditcheva and Lisa Fowler Active/Passive University of North Carolina at

401 views • 12 slides
Signature Alfresco Kitchen November 2019 Signature Alfresco Kitchen The ultimate in outdoor

Signature Alfresco Kitchen November 2019 Signature Alfresco Kitchen The ultimate in outdoor

Signature Alfresco Kitchen November 2019 Signature Alfresco Kitchen The ultimate in outdoor entertaining. Signatures alfresco kitchen range is a spacious, high quality outdoor cooking and preparation space. Designed for our BBQs to perform at

452 views • 10 slides
A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for

A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for

A New RSA-Based Signature Scheme Sven Sch age, J org Schwenk Horst G ortz Institute for IT-Security Africacrypt 2010 1 / 13 RSA-Based Signature Schemes Na ve RSA signature scheme not secure under the standard definition of

647 views • 51 slides
Signature Aviation 2020 Interim Results Mark Johnstone (CEO) David Crook (FD) Signature

Signature Aviation 2020 Interim Results Mark Johnstone (CEO) David Crook (FD) Signature

Signature Aviation 2019 Interim Results Signature Aviation 2020 Interim Results Mark Johnstone (CEO) David Crook (FD) Signature Aviation 2020 Interim Results Summary Signatures US market has recovered strongly to be down 19% in

343 views • 31 slides
Signature Aviation 2019 Final Results Mark Johnstone (CEO) David Crook (FD) Signature Aviation

Signature Aviation 2019 Final Results Mark Johnstone (CEO) David Crook (FD) Signature Aviation

Signature Aviation 2019 Interim Results Signature Aviation 2019 Final Results Mark Johnstone (CEO) David Crook (FD) Signature Aviation 2019 Final Results 2019 Transformational Year Ontic disposal $1bn of capital returned to

692 views • 39 slides
Day 4: HPSG approaches to information structure The signature of an HPSG grammar The signature

Day 4: HPSG approaches to information structure The signature of an HPSG grammar The signature

Day 4: HPSG approaches to information structure The signature of an HPSG grammar The signature HPSG in a nutshell defines the ontology (declaration of what exists): Approaches to information structure: which kind of objects

641 views • 18 slides
3-509

3-509

3-509 liuzhen@sjtu.edu.cn 1 Digital Signature Hash Function Message Authentication Code 2 Digital Signature There is an electronic document to be sent

738 views • 24 slides
Efficient Redactable Signature and Application to Anonymous Credentials Olivier Sanders Orange

Efficient Redactable Signature and Application to Anonymous Credentials Olivier Sanders Orange

Efficient Redactable Signature and Application to Anonymous Credentials Olivier Sanders Orange Labs PKC 2020 Context PKC 2020 p 2 Digital Signature Digital signature can be used to authenticate digital data ... Name Birthdate Address

437 views • 33 slides
Digital Signatures Model A public key analog of MAC A digital signature scheme includes

Digital Signatures Model A public key analog of MAC A digital signature scheme includes

Digital Signatures Model A public key analog of MAC A digital signature scheme includes the following elements: A private key k A public key k A signature algorithm Public key is published Signature requires

475 views • 24 slides
Digital Signatures and Authentication 1 Outline What is a digital signature ? General

Digital Signatures and Authentication 1 Outline What is a digital signature ? General

Digital Signatures and Authentication 1 Outline What is a digital signature ? General model Foundations of security RSA, DSA, ECDSA signatures Zero knowledge (Guillo-Quisquater) One-time signature Special

675 views • 46 slides
Masking the GLP Lattice-Based Signature Scheme at any Order Gilles Barthe (IMDEA Software

Masking the GLP Lattice-Based Signature Scheme at any Order Gilles Barthe (IMDEA Software

The signature The countermeasure and its proof Performances Future work Masking the GLP Lattice-Based Signature Scheme at any Order Gilles Barthe (IMDEA Software Institute) Sonia Belad (CryptoExperts) Thomas Espitau (UPMC) Pierre-Alain

1.04k views • 51 slides
Many-Sorted First-Order Model Theory Lecture 2 12 th June, 2020 1 / 22 Conservative signature

Many-Sorted First-Order Model Theory Lecture 2 12 th June, 2020 1 / 22 Conservative signature

Many-Sorted First-Order Model Theory Lecture 2 12 th June, 2020 1 / 22 Conservative signature morphisms Definition 1 (Conservative signature morphism) A signature morphism : is conservative iff each -model has a -expansion.

455 views • 22 slides
Practical Attacks on the Walnut Signature Scheme Ward Beullens Simon R. Blackburn KU Leuven

Practical Attacks on the Walnut Signature Scheme Ward Beullens Simon R. Blackburn KU Leuven

Practical Attacks on the Walnut Signature Scheme Ward Beullens Simon R. Blackburn KU Leuven Royal Holloway December 2, 2018 Introduction 1/22 WalnutDSA is a Signature Scheme submitted to the NIST PQC project. Small signatures and keys

643 views • 27 slides
Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal

Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal

Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal Signature Scheme, Cryptography in Practice: Random Number Odds and Ends on Public Key Crypto 2 Generation, Key Management Cryptography in Real Life 3

367 views • 14 slides

More recommend