| 講演名 | 2001/7/18 A Note on Computationally Sound Proof in Group of Unknown Order , |
|---|---|
| PDFダウンロードページ | PDFダウンロードページへ |
| 抄録(和) | |
| 抄録(英) | Suppose we are given an Abelian group G of unknown order, such as RSA group (Z/nZ)^×, where the group operations in G can be efficiently computed.Let g, h be elements in G and let c=g^xh^r be a commitment to x (where the group operation is defined as the multiplication).In this paper we revisit a sound-proof-of-knowledge protocol for the representation problem in a group of unknown order - that is, a protocol in which the prover convinces the verifier that he knows the representation of c to base g, h in G.The proof of soundness for this protocol was initially provided in [5], but we have recently found it incomplete, although the protocol and its variants appear in many literatures, for instance PVSS [6], group signature [3, 4]and optimistic fair-exchange [2, 1].In this paper we fix a bug in [5]and prove this protocol indeed sound, trying to make the setting more general and fundamental. |
| キーワード(和) | |
| キーワード(英) | Computationally sound proof / argument / zero-knowledge |
| 資料番号 | ISEC2001-24 |
| 発行日 |
| 研究会情報 | |
| 研究会 | ISEC |
|---|---|
| 開催期間 | 2001/7/18(から1日開催) |
| 開催地(和) | |
| 開催地(英) | |
| テーマ(和) | |
| テーマ(英) | |
| 委員長氏名(和) | |
| 委員長氏名(英) | |
| 副委員長氏名(和) | |
| 副委員長氏名(英) | |
| 幹事氏名(和) | |
| 幹事氏名(英) | |
| 幹事補佐氏名(和) | |
| 幹事補佐氏名(英) | |
| 講演論文情報詳細 | |
| 申込み研究会 | Information Security (ISEC) |
|---|---|
| 本文の言語 | ENG |
| タイトル(和) | |
| サブタイトル(和) | |
| タイトル(英) | A Note on Computationally Sound Proof in Group of Unknown Order |
| サブタイトル(和) | |
| キーワード(1)(和/英) | / Computationally sound proof |
| 第 1 著者 氏名(和/英) | / Damagard IVAN |
| 第 1 著者 所属(和/英) | Aarhus University |
| 発表年月日 | 2001/7/18 |
| 資料番号 | ISEC2001-24 |
| 巻番号(vol) | vol.101 |
| 号番号(no) | 214 |
| ページ範囲 | pp.- |
| ページ数 | 8 |
| 発行日 | |