| author | Christian Urban <urbanc@in.tum.de> |
| Tue, 26 Sep 2017 12:47:25 +0100 | |
| changeset 538 | 456d1d6676f9 |
| parent 520 | bd25d9f9d9dc |
| permissions | -rw-r--r-- |
| 59 | 1 |
\documentclass[dvipsnames,14pt,t]{beamer}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
2 |
\usepackage{../slides}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
3 |
\usepackage{../graphics}
|
| 59 | 4 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
5 |
\setmonofont[Scale=.88]{Consolas}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
6 |
\newfontfamily{\consolas}{Consolas}
|
| 59 | 7 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
8 |
\hfuzz=220pt |
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
9 |
|
| 59 | 10 |
% beamer stuff |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
11 |
\newcommand{\bl}[1]{\textcolor{blue}{#1}}
|
|
381
036a762b02cf
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
370
diff
changeset
|
12 |
\renewcommand{\slidecaption}{SEN 06, King's College London}
|
| 59 | 13 |
|
14 |
\begin{document}
|
|
15 |
||
16 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
17 |
\begin{frame}[t]
|
| 59 | 18 |
\frametitle{%
|
19 |
\begin{tabular}{@ {}c@ {}}
|
|
20 |
\\ |
|
|
381
036a762b02cf
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
370
diff
changeset
|
21 |
\LARGE Security Engineering (6)\\[-3mm] |
| 59 | 22 |
\end{tabular}}\bigskip\bigskip\bigskip
|
23 |
||
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
24 |
\normalsize |
| 59 | 25 |
\begin{center}
|
26 |
\begin{tabular}{ll}
|
|
27 |
Email: & christian.urban at kcl.ac.uk\\ |
|
| 518 | 28 |
Office: & N7.07 (North Wing, Bush House)\\ |
| 59 | 29 |
Slides: & KEATS (also homework is there)\\ |
30 |
\end{tabular}
|
|
31 |
\end{center}
|
|
32 |
||
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
33 |
\end{frame}
|
|
279
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
34 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
35 |
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
36 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
37 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
38 |
\begin{frame}[c]
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
39 |
\frametitle{Hashes for History}
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
40 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
41 |
Q: What is the hash for? |
|
279
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
42 |
|
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
43 |
\begin{center}
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
44 |
\includegraphics[scale=0.4]{../pics/Dismantling_Megamos_Crypto.png}
|
|
279
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
45 |
\end{center}
|
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
46 |
|
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
47 |
\end{frame}
|
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
48 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
49 |
|
|
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
50 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
51 |
\begin{frame}[t]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
52 |
\frametitle{Checking Solutions}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
53 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
54 |
How can you check somebody's solution without revealing the solution?\pause\bigskip |
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
55 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
56 |
Alice and Bob solve crosswords. Alice knows the answer for 21D (folio) but doesn't |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
57 |
want to tell Bob.\medskip |
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
58 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
59 |
You use an English dictionary: |
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
60 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
61 |
\begin{itemize}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
62 |
\item folio \onslide<4->{$\stackrel{1}{\rightarrow}$ individual }
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
63 |
\onslide<5->{$\stackrel{2}{\rightarrow}$ human}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
64 |
\onslide<6->{$\stackrel{3}{\rightarrow}$ or \ldots}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
65 |
\only<3>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
66 |
\begin{quote}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
67 |
``an \alert{individual} leaf of paper or parchment, either loose as one of a series or
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
68 |
forming part of a bound volume, which is numbered on the recto or front side only.'' |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
69 |
\end{quote}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
70 |
\only<4>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
71 |
\begin{quote}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
72 |
``a single \alert{human} being as distinct from a group''
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
73 |
\end{quote}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
74 |
\only<5>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
75 |
\begin{quote}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
76 |
``relating to \alert{or} characteristic of humankind''
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
77 |
\end{quote}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
78 |
\end{itemize}\bigskip\bigskip
|
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
79 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
80 |
\only<7->{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
81 |
this is essentially a hash function...but Bob can only check once he has also found the solution |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
82 |
} |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
83 |
|
|
279
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
84 |
\end{frame}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
85 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
86 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
87 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
88 |
\begin{frame}[c]
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
89 |
\frametitle{Zero-Knowledge Proofs}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
90 |
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
91 |
Two remarkable properties of \alert{Zero-Knowledge
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
92 |
Proofs}:\bigskip |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
93 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
94 |
\begin{itemize}
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
95 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
96 |
\item Alice only reveals the fact that she knows a secret, not |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
97 |
the secret itself (meaning she can convince Bob that she |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
98 |
knows the secret, but does not give it to him).\bigskip |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
99 |
\item Having been convinced, Bob cannot use the evidence in |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
100 |
order to convince Carol that Alice knows the secret. |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
101 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
102 |
\end{itemize}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
103 |
|
|
279
5616e664c020
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
278
diff
changeset
|
104 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
105 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
106 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
107 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
108 |
\begin{frame}[c]
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
109 |
\frametitle{Interactive Protocols}
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
110 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
111 |
Q: How to cut a cake into two equal slices? |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
112 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
113 |
\begin{center}
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
114 |
\includegraphics[scale=0.15]{../pics/cake.jpg}
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
115 |
\end{center}\pause\bigskip
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
116 |
|
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
117 |
\small |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
118 |
Solves the problem of communication when both parties |
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
119 |
distrust each other. |
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
120 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
121 |
\end{frame}
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
122 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
123 |
|
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
124 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
125 |
\begin{frame}[t]
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
126 |
\frametitle{The Idea}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
127 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
128 |
\begin{center}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
129 |
\begin{tabular}{l@{\hspace{10mm}}r}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
130 |
\\[-10mm] |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
131 |
\raisebox{10mm}{\large 1.} & \includegraphics[scale=0.1]{../pics/alibaba1.png}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
132 |
\raisebox{10mm}{\large 2.} & \includegraphics[scale=0.1]{../pics/alibaba2.png}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
133 |
\raisebox{10mm}{\large 3.} & \includegraphics[scale=0.1]{../pics/alibaba3.png}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
134 |
\end{tabular}
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
135 |
\end{center}
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
136 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
137 |
\begin{textblock}{7}(1,2)
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
138 |
The Alibaba cave protocol: |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
139 |
\end{textblock}
|
|
129
10526c967679
added slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
128
diff
changeset
|
140 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
141 |
\small |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
142 |
\only<2>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
143 |
\begin{textblock}{12}(2,13.3)
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
144 |
Even if Bob has a hidden camera, a recording will not be |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
145 |
convincing to anyone else (Alice and Bob could have made it |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
146 |
all up). |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
147 |
\end{textblock}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
148 |
\only<3>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
149 |
\begin{textblock}{12}(2,13.3)
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
150 |
Even worse, an observer present at the experiment would not be |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
151 |
convinced. |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
152 |
\end{textblock}}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
153 |
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
154 |
\end{frame}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
155 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
156 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
157 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
158 |
\begin{frame}[c]
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
159 |
\frametitle{Applications of ZKPs}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
160 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
161 |
\begin{itemize}
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
162 |
\item authentication, where one party wants to prove its |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
163 |
identity to a second party via some secret information, |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
164 |
but doesn't want the second party to learn anything |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
165 |
about this secret\bigskip |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
166 |
\item to enforce honest behaviour while maintaining privacy: |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
167 |
the idea is to force users to prove, using a |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
168 |
zero-knowledge proof, that their behaviour is correct |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
169 |
according to the protocol |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
170 |
\end{itemize}\bigskip
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
171 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
172 |
\small |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
173 |
digital currencies, smart cards, id cards |
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
174 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
175 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
176 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
177 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
178 |
\mode<presentation>{
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
179 |
\begin{frame}[c]
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
180 |
\frametitle{Central Properties}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
181 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
182 |
Zero-knowledge proof protocols should satisfy:\bigskip |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
183 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
184 |
\begin{itemize}
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
185 |
\item \alert{\bf Completeness} If Alice knows the secret, Bob
|
|
370
ddac52c0014c
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
294
diff
changeset
|
186 |
accepts Alice's ``proof'' for sure.\bigskip |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
187 |
\item \alert{\bf Soundness} If Alice does not know the secret,
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
188 |
Bob accepts her ``proof'' with a very small probability. |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
189 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
190 |
\item \alert{\bf Zero-Knowledge} Even if Bob accepts
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
191 |
the proof by Alice, he cannot convince anybody else. |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
192 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
193 |
\end{itemize}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
194 |
\end{frame}}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
195 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
126
b091e0abb894
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
90
diff
changeset
|
196 |
|
| 60 | 197 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
198 |
\begin{frame}[c]
|
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
199 |
\frametitle{Graph Isomorphism}
|
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
200 |
\mbox{}\\[-20mm]\mbox{}
|
| 60 | 201 |
|
202 |
\begin{center}
|
|
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
203 |
\begin{tabular}{@{}ccc}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
204 |
\raisebox{-18mm}{\includegraphics[scale=0.4]{../pics/simple.png}} &
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
205 |
\raisebox{-18mm}{\includegraphics[scale=0.4]{../pics/simple-b.png}}&
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
206 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
207 |
\footnotesize |
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
208 |
\begin{tabular}{rl}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
209 |
Graph A & Graph B\\ |
|
419
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
210 |
Graph $G_1$ & Graph $G_2$\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
211 |
a & 1\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
212 |
b & 6\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
213 |
c & 8\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
214 |
d & 3\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
215 |
g & 5\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
216 |
h & 2\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
217 |
i & 4\\ |
|
667a39dda86e
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
415
diff
changeset
|
218 |
j & 7\\ |
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
219 |
\end{tabular}
|
| 60 | 220 |
\end{tabular}
|
221 |
\end{center}
|
|
222 |
||
|
294
5e8ffb58bdaa
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
283
diff
changeset
|
223 |
Finding an isomorphism between two graphs is an NP problem. |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
224 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
225 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
226 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
227 |
|
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
228 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
229 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
230 |
\begin{frame}[c]
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
231 |
\begin{center}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
232 |
\includegraphics[scale=0.8]{../pics/graphs.png}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
233 |
\end{center}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
234 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
235 |
Creating a new isomorphic graph is easy; finding an |
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
236 |
isomorphism is hard; checking an isomorphism is easy again |
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
237 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
238 |
\end{frame}
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
239 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
240 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
241 |
|
|
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
242 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
243 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
244 |
\begin{frame}[c]
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
245 |
\frametitle{\Large Graph Isomorphism Protocol}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
246 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
247 |
Alice starts with knowing an isomorphism \bl{$\sigma$} between graphs \bl{$G_1$} and \bl{$G_2$}\medskip
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
248 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
249 |
\begin{enumerate}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
250 |
\item Alice generates an isomorphic graph \bl{$H$} which she sends to Bob
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
251 |
\item Bob asks either for an isomorphism between \bl{$G_1$} and \bl{$H$}, or
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
252 |
\bl{$G_2$} and \bl{$H$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
253 |
\item Alice and Bob repeat this procedure \bl{$n$} times
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
254 |
\end{enumerate}\pause
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
255 |
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
256 |
these are called commitment algorithms |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
257 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
258 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
259 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
260 |
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
261 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
262 |
\begin{frame}[c]
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
263 |
\frametitle{\Large Graph Isomorphism Protocol (2)}
|
| 60 | 264 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
265 |
If Alice knows the isomorphism, she can always calculate |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
266 |
\bl{$\sigma$}.\bigskip
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
267 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
268 |
If she doesn't, she can only correctly respond if Bob's choice |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
269 |
of index is the same as the one she used to form \bl{$H$}. The
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
270 |
probability of this happening is \bl{$\frac{1}{2}$}, so after
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
271 |
\bl{$n$} rounds the probability of her always responding
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
272 |
correctly is only \bl{$\frac{1}{2}^n$}.
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
273 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
274 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
275 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
276 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
277 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
278 |
\begin{frame}[t]
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
279 |
\frametitle{Plot of $\frac{1}{2}^n$}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
280 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
281 |
\begin{center}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
282 |
\begin{tikzpicture}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
283 |
\begin{axis}[
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
284 |
enlargelimits=true, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
285 |
xtick={0,1,...,10},
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
286 |
xmax=11, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
287 |
ymax=1.1, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
288 |
ytick={0,0.1,...,1.1},
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
289 |
scaled ticks=false, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
290 |
axis lines=left, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
291 |
width=11cm, |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
292 |
height=7cm] |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
293 |
\addplot[blue,mark=*, mark options={fill=white}]
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
294 |
coordinates {
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
295 |
(0, 1) (1, 0.5) (2, 0.25) (3, 0.125) |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
296 |
(4, 0.0625) (5, 0.03125) (6, 0.015625) |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
297 |
(7, 0.0078125) (8, 0.00390625) |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
298 |
(9, 0.001953125) (10, 0.0009765625) |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
299 |
}; |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
300 |
\end{axis}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
301 |
\end{tikzpicture}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
302 |
\end{center}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
303 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
304 |
\end{frame}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
305 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
306 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
307 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
308 |
\begin{frame}[c]
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
309 |
\frametitle{\Large Graph Isomorphism Protocol (3)}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
310 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
311 |
Why is the GI-protocol zero-knowledge?\bigskip\pause |
| 60 | 312 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
313 |
A: We can generate a fake transcript of a conversation, which |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
314 |
cannot be distinguished from a ``real'' conversation.\bigskip |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
315 |
|
|
280
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
316 |
Anything Bob can compute using the information obtained from |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
317 |
the transcript can be computed using only a forged transcript |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
318 |
and therefore participation in such a communication does not |
|
b732a63c17b8
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
279
diff
changeset
|
319 |
increase Bob's capability to perform any computation. |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
320 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
321 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
322 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
323 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
324 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
325 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
326 |
\frametitle{Non-Interactive ZKPs}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
327 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
328 |
This is amazing: This can all be done ``offline'': |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
329 |
\bigskip |
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
330 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
331 |
Alice can publish some data that contains no data about her |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
332 |
secret, but this data can be used to convince anyone of the |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
333 |
secret's existence (whether Alice knows it, must be |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
334 |
established my other means). |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
335 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
336 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
337 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
338 |
|
|
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
339 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
340 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
341 |
\frametitle{Non-Interactive ZKPs (2)}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
342 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
343 |
Alice starts with knowing an isomorphism \bl{$\sigma$} between
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
344 |
graphs \bl{$G_1$} and \bl{$G_2$}\medskip
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
345 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
346 |
\begin{enumerate}
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
347 |
\item Alice generates \bl{$n$} isomorphic graphs
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
348 |
\bl{$H_{1..n}$} which she makes public
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
349 |
\item she feeds the \bl{$H_{1..n}$} into a hashing function
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
350 |
(she has no control over what the output will be) |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
351 |
\item Alice takes the first \bl{$n$} bits of the output:
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
352 |
whenever output is \bl{$0$}, she shows an isomorphism
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
353 |
with \bl{$G_1$} ; for \bl{$1$} she shows an isomorphism
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
354 |
with \bl{$G_2$}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
355 |
\end{enumerate}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
356 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
357 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
358 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
359 |
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
360 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
361 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
362 |
\frametitle{Problems of ZKPs}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
363 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
364 |
\begin{itemize}
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
365 |
\item ``grand chess master problem''\\ (person in the |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
366 |
middle again)\bigskip |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
367 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
368 |
\item Alice can have multiple identities; once she committed a |
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
369 |
fraud with one, she stops using one |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
370 |
\end{itemize}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
371 |
|
|
294
5e8ffb58bdaa
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
283
diff
changeset
|
372 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
373 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
374 |
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
375 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
376 |
\mode<presentation>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
377 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
378 |
\frametitle{Other Methods for ZKPs}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
379 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
380 |
Essentially every NP-problem can be used for ZKPs |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
381 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
382 |
\begin{itemize}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
383 |
\item modular logarithms: Alice chooses public \bl{$A$}, \bl{$B$}, \bl{$p$}; and private \bl{$x$}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
384 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
385 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
386 |
\bl{$A^x \equiv B\; mod\; p$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
387 |
\end{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
388 |
\end{itemize}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
389 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
390 |
\end{frame}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
391 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
392 |
|
|
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
393 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
394 |
\mode<presentation>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
395 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
396 |
\frametitle{Commitment Stage}
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
397 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
398 |
\begin{enumerate}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
399 |
\item Alice generates \bl{$z$} random numbers \bl{$r_1$}, ..., \bl{$r_z$}, all less than \bl{$p - 1$}.
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
400 |
\item Alice sends Bob for all \bl{$1..z$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
401 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
402 |
\bl{$h_i = A^{r_i} \;mod\; p$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
403 |
\end{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
404 |
\item Bob generates random bits \bl{$b_1$}, ..., \bl{$b_z$} by flipping a coin
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
405 |
\item For each bit \bl{$b_i$}, Alice sends Bob an \bl{$s_i$} where
|
|
130
4e8482e50590
more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
129
diff
changeset
|
406 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
407 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
408 |
\begin{tabular}{ll}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
409 |
\bl{$b_i = 0$}: & \bl{$s_i = r_i$}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
410 |
\bl{$b_i = 1$}: & \bl{$s_i = (r_i - r_j) \;mod\; (p -1)$}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
411 |
\end{tabular}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
412 |
\end{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
413 |
where \bl{$r_j$} is the lowest \bl{$j$} where \bl{$b_j = 1$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
414 |
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
415 |
\end{enumerate}
|
| 60 | 416 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
417 |
\end{frame}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
418 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 61 | 419 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
420 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
421 |
\mode<presentation>{
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
422 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
423 |
\frametitle{Confirmation Stage}
|
| 61 | 424 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
425 |
\begin{enumerate}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
426 |
\item For each \bl{$b_i$} Bob checks whether \bl{$s_i$} conforms to the protocol
|
| 61 | 427 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
428 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
429 |
\begin{tabular}{ll}
|
|
422
abe178b3197e
finished ZKP protocols
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
419
diff
changeset
|
430 |
\bl{$b_i = 0$}: & \bl{$A^{s_i} \equiv h_i\;mod\;p$}\\
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
431 |
\bl{$b_i = 1$}: & \bl{$A^{s_i} \equiv h_i * h_j^{-1} \;mod\; p$}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
432 |
\end{tabular}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
433 |
\end{center}\bigskip
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
434 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
435 |
Bob was sent |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
436 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
437 |
\begin{center}
|
|
422
abe178b3197e
finished ZKP protocols
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
419
diff
changeset
|
438 |
\bl{$r_j - r_j$}, \bl{$r_m - r_j$}, \ldots, \bl{$r_p - r_j \;mod \;p - 1$}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
439 |
\end{center}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
440 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
441 |
where the corresponding bits were |
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
442 |
\bl{$1$}; Bob does not know \bl{$r_j$}, he does not know any \bl{$r_i$} where the bit was \bl{$1$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
443 |
\end{enumerate}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
444 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
445 |
\end{frame}}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
446 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
447 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
448 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
449 |
\begin{frame}[c]
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
450 |
\frametitle{Proving Stage}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
451 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
452 |
\begin{enumerate}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
453 |
\item Alice proves she knows \bl{$x$}, the discrete log of \bl{$B$}\\
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
454 |
she sends |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
455 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
456 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
457 |
\bl{$s_{z+1} = (x - r_j)$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
458 |
\end{center}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
459 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
460 |
\item Bob confirms |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
461 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
462 |
\begin{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
463 |
\bl{$A^{s_{z+1}} \equiv B * h_j^{-1} \;mod \; p$}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
464 |
\end{center}
|
|
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
465 |
\end{enumerate}\bigskip\pause
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
466 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
467 |
In order to cheat, Alice has to guess all bits in advance. She |
|
422
abe178b3197e
finished ZKP protocols
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
419
diff
changeset
|
468 |
has only \bl{$\frac{1}{2}^z$} chance of doing so.\bigskip\\
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
469 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
470 |
\small\hspace{7mm}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
471 |
\textcolor{gray}{(explanation $\rightarrow$ \url{http://goo.gl/irL9GK})}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
472 |
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
473 |
\end{frame}
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
474 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
475 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
476 |
|
|
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
477 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
478 |
\begin{frame}[c]
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
479 |
\frametitle{Take Home Points}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
480 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
481 |
\begin{itemize}
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
482 |
\item this is pretty old work (in theory); seems |
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
483 |
little used in practice (surprising)\bigskip |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
484 |
|
|
283
40511897fcc4
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
282
diff
changeset
|
485 |
\item for use in privacy, the incentives are |
|
282
4a0071e26cb5
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
281
diff
changeset
|
486 |
not yet right\bigskip |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
487 |
|
|
283
40511897fcc4
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
282
diff
changeset
|
488 |
\item most likely applied with digital cash |
|
423
11b46fa92a85
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
422
diff
changeset
|
489 |
(Bitcoins are not yet good enough, Zerocoins) |
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
490 |
|
|
277
d6dc6f0e3556
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
135
diff
changeset
|
491 |
\end{itemize}
|
|
128
4e108563716c
added
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
126
diff
changeset
|
492 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
493 |
\end{frame}
|
|
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
494 |
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
| 61 | 495 |
|
|
281
98403100cea7
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
280
diff
changeset
|
496 |
|
|
423
11b46fa92a85
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
422
diff
changeset
|
497 |
|
|
11b46fa92a85
updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents:
422
diff
changeset
|
498 |
|
| 59 | 499 |
\end{document}
|
500 |
||
501 |
%%% Local Variables: |
|
502 |
%%% mode: latex |
|
503 |
%%% TeX-master: t |
|
504 |
%%% End: |
|
505 |