Zero-knowledge protocols for the McEliece encryption

Kirill Morozov; Tsuyoshi Takagi

doi:10.1007/978-3-642-31448-3_14

Zero-knowledge protocols for the McEliece encryption

Kirill Morozov, Tsuyoshi Takagi

先進暗号数理デザイン室

研究成果: 書籍/レポートタイプへの寄稿 › 会議への寄与

7 被引用数 (Scopus)

抄録

We present two zero-knowledge protocols for the code-based McEliece public key encryption scheme in the standard model. Consider a prover who encrypted a plaintext m into a ciphertext c under the public key pk. The first protocol is a proof of plaintext knowledge (PPK), where the prover convinces a polynomially bounded verifier on a joint input (c,pk) that he knows m without actually revealing it. This construction uses code-based Véron's zero-knowledge identification scheme. The second protocol, which builds on the first one, is a verifiable McEliece encryption, were the prover convinces a polynomially bounded verifier on a joint input (c,pk,m) that c is a valid encryption of m, without performing decryption. These protocols are the first PPK and the first verifiable encryption for code-based cryptosystems.

本文言語	英語
ホスト出版物のタイトル	Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings
ページ	180-193
ページ数	14
DOI	https://doi.org/10.1007/978-3-642-31448-3_14
出版ステータス	出版済み - 2012
イベント	17th Australasian Conference on Information Security and Privacy, ACISP 2012 - Wollongong, NSW, オーストラリア継続期間: 7月 9 2012 → 7月 11 2012

出版物シリーズ

名前	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
巻	7372 LNCS
ISSN（印刷版）	0302-9743
ISSN（電子版）	1611-3349

その他

その他	17th Australasian Conference on Information Security and Privacy, ACISP 2012
国/地域	オーストラリア
City	Wollongong, NSW
Period	7/9/12 → 7/11/12

!!!All Science Journal Classification (ASJC) codes

理論的コンピュータサイエンス
コンピュータサイエンス（全般）

文献へのアクセス

10.1007/978-3-642-31448-3_14

他のファイルとリンク

引用スタイル

Morozov, K., & Takagi, T. (2012). Zero-knowledge protocols for the McEliece encryption. In Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings (pp. 180-193). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7372 LNCS). https://doi.org/10.1007/978-3-642-31448-3_14

Zero-knowledge protocols for the McEliece encryption. / Morozov, Kirill; Takagi, Tsuyoshi.
Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings. 2012. p. 180-193 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7372 LNCS).

研究成果: 書籍/レポートタイプへの寄稿 › 会議への寄与

Morozov, K & Takagi, T 2012, Zero-knowledge protocols for the McEliece encryption. in Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7372 LNCS, pp. 180-193, 17th Australasian Conference on Information Security and Privacy, ACISP 2012, Wollongong, NSW, オーストラリア, 7/9/12. https://doi.org/10.1007/978-3-642-31448-3_14

@inproceedings{8d99a3a21ebe422e8be04118c32078e2,

title = "Zero-knowledge protocols for the McEliece encryption",

abstract = "We present two zero-knowledge protocols for the code-based McEliece public key encryption scheme in the standard model. Consider a prover who encrypted a plaintext m into a ciphertext c under the public key pk. The first protocol is a proof of plaintext knowledge (PPK), where the prover convinces a polynomially bounded verifier on a joint input (c,pk) that he knows m without actually revealing it. This construction uses code-based V{\'e}ron's zero-knowledge identification scheme. The second protocol, which builds on the first one, is a verifiable McEliece encryption, were the prover convinces a polynomially bounded verifier on a joint input (c,pk,m) that c is a valid encryption of m, without performing decryption. These protocols are the first PPK and the first verifiable encryption for code-based cryptosystems.",

author = "Kirill Morozov and Tsuyoshi Takagi",

year = "2012",

doi = "10.1007/978-3-642-31448-3_14",

language = "English",

isbn = "9783642314476",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "180--193",

booktitle = "Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings",

note = "17th Australasian Conference on Information Security and Privacy, ACISP 2012 ; Conference date: 09-07-2012 Through 11-07-2012",

}

TY - GEN

T1 - Zero-knowledge protocols for the McEliece encryption

AU - Morozov, Kirill

AU - Takagi, Tsuyoshi

PY - 2012

Y1 - 2012

N2 - We present two zero-knowledge protocols for the code-based McEliece public key encryption scheme in the standard model. Consider a prover who encrypted a plaintext m into a ciphertext c under the public key pk. The first protocol is a proof of plaintext knowledge (PPK), where the prover convinces a polynomially bounded verifier on a joint input (c,pk) that he knows m without actually revealing it. This construction uses code-based Véron's zero-knowledge identification scheme. The second protocol, which builds on the first one, is a verifiable McEliece encryption, were the prover convinces a polynomially bounded verifier on a joint input (c,pk,m) that c is a valid encryption of m, without performing decryption. These protocols are the first PPK and the first verifiable encryption for code-based cryptosystems.

AB - We present two zero-knowledge protocols for the code-based McEliece public key encryption scheme in the standard model. Consider a prover who encrypted a plaintext m into a ciphertext c under the public key pk. The first protocol is a proof of plaintext knowledge (PPK), where the prover convinces a polynomially bounded verifier on a joint input (c,pk) that he knows m without actually revealing it. This construction uses code-based Véron's zero-knowledge identification scheme. The second protocol, which builds on the first one, is a verifiable McEliece encryption, were the prover convinces a polynomially bounded verifier on a joint input (c,pk,m) that c is a valid encryption of m, without performing decryption. These protocols are the first PPK and the first verifiable encryption for code-based cryptosystems.

UR - http://www.scopus.com/inward/record.url?scp=84864803736&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84864803736&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-31448-3_14

DO - 10.1007/978-3-642-31448-3_14

M3 - Conference contribution

AN - SCOPUS:84864803736

SN - 9783642314476

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 180

EP - 193

BT - Information Security and Privacy - 17th Australasian Conference, ACISP 2012, Proceedings

T2 - 17th Australasian Conference on Information Security and Privacy, ACISP 2012

Y2 - 9 July 2012 through 11 July 2012

ER -

Zero-knowledge protocols for the McEliece encryption

抄録

出版物シリーズ

その他

!!!All Science Journal Classification (ASJC) codes

文献へのアクセス

他のファイルとリンク

フィンガープリント

引用スタイル