InfoSec Seminar: Encryption Switching Protocols

Speaker: Geoffroy Couteau

Date/Time: 17-Nov-2015, 15:00 UTC

Venue: Roberts 4.21

Details

Abstract


We put forth a novel cryptographic primitive: encryption switching protocol (ESP), allowing to switch between two encryption schemes. Intuitively, this two-party protocol converts given ciphertexts from one scheme into ciphertexts of the same messages in the other scheme, for any polynomial number of switches, in any direction. Although ESP is a special kind of two-party computation protocol, it turns out that ESP implies general two-party computation under natural conditions. In particular, our new paradigm is tailored to the evaluation of functions over rings. Indeed, assuming the compatibility of two additively and multiplicatively homomorphic encryption schemes, switching ciphertexts makes it possible to efficiently reconcile the two internal laws. Since no such pair of schemes appeared in the literature, except for the non-interactive case of fully homomorphic encryption which still remains prohibitive in practice, we build the first ElGamal-like encryption scheme over (Zn, ×) as a complement to the Paillier encryption scheme over (Zn,+), where n is a strong RSA modulus. Eventually, we also instantiate secure ESP between the two schemes, in front of malicious adversaries.Thanks to a pre-processing step, we manage to get an online communication in terms of group elements which neither depends on the security parameter nor on the modulus

 

 

Bio

I graduated in 2014 from the parisian master of research in computer
science, and from the engineering school Télécom ParisTech. I completed a
research internship and started a PhD at École Normale Supérieure de Paris
one year ago, on the subject « secure two-party computation for the
Cloud », under the supervision of David Pointcheval. I work on several
aspects of multiparty computation, including, but not limited to,
zero-knowledge arguments, protocols based on (partially) homomorphic
encryption, oblivious transfers and randomized encodings.

 

 

Add to Calendar

This page was last modified on 27 Mar 2014.