sen-material: slides/slides06.tex@5616e664c020 (annotated)

59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	1	\documentclass[dvipsnames,14pt,t]{beamer}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	2	\usepackage{../slides}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	3	\usepackage{../graphics}
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	4
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	5	\setmonofont[Scale=.88]{Consolas}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	6	\newfontfamily{\consolas}{Consolas}
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	7
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	8	\hfuzz=220pt
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	9
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	10	% beamer stuff
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	11	\newcommand{\bl}[1]{\textcolor{blue}{#1}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	12	\renewcommand{\slidecaption}{APP 06, King's College London}
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	13
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	14	\begin{document}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	15
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	16	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	17	\begin{frame}[t]
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	18	\frametitle{%
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	19	\begin{tabular}{@ {}c@ {}}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	20	\\
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	21	\LARGE Access Control and \\[-3mm]
278 ed3c071ed36a updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 277 diff changeset	22	\LARGE Privacy Policies (6)\\[-6mm]
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	23	\end{tabular}}\bigskip\bigskip\bigskip
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	24
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	25	\normalsize
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	26	\begin{center}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	27	\begin{tabular}{ll}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	28	Email: & christian.urban at kcl.ac.uk\\
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	29	Office: & S1.27 (1st floor Strand Building)\\
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	30	Slides: & KEATS (also homework is there)\\
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	31	\end{tabular}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	32	\end{center}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	33
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	34	\end{frame}
279 5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	35	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	36
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	37	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
279 5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	38	\begin{frame}[c]
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	39	\frametitle{Problems with Car Keys}
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	40
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	41	\begin{center}
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	42	\includegraphics[scale=0.4]{../pics/car-standard.jpg}
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	43	\end{center}
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	44
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	45	\end{frame}
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	46	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	47
5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	48	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	49	\begin{frame}[t]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	50	\frametitle{Checking Solutions}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	51
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	52	How can you check somebody's solution without revealing the solution?\pause\bigskip
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	53
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	54	Alice and Bob solve crosswords. Alice knows the answer for 21D (folio) but doesn't
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	55	want to tell Bob.\medskip
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	56
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	57	You use an English dictionary:
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	58
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	59	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	60	\item folio \onslide<4->{$\stackrel{1}{\rightarrow}$ individual }
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	61	\onslide<5->{$\stackrel{2}{\rightarrow}$ human}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	62	\onslide<6->{$\stackrel{3}{\rightarrow}$ or \ldots}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	63	\only<3>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	64	\begin{quote}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	65	``an \alert{individual} leaf of paper or parchment, either loose as one of a series or
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	66	forming part of a bound volume, which is numbered on the recto or front side only.''
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	67	\end{quote}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	68	\only<4>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	69	\begin{quote}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	70	``a single \alert{human} being as distinct from a group''
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	71	\end{quote}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	72	\only<5>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	73	\begin{quote}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	74	``relating to \alert{or} characteristic of humankind''
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	75	\end{quote}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	76	\end{itemize}\bigskip\bigskip
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	77
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	78	\only<7->{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	79	this is essentially a hash function...but Bob can only check once he has also found the solution
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	80	}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	81
279 5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	82	\end{frame}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	83	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	84
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	85	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	86	\begin{frame}[c]
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	87	\frametitle{Zero-Knowledge Proofs}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	88
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	89	Two remarkable properties of \alert{Zero-Knowledge Proofs}:\bigskip
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	90
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	91	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	92	\item Alice only reveals the fact that she knows a secret, not the secret itself (meaning
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	93	she can convince Bob that she knows the secret).\bigskip
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	94	\item Having been convinced, Bob cannot use the evidence in order to convince Carol
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	95	that Alice knows the secret.
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	96	\end{itemize}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	97
279 5616e664c020 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 278 diff changeset	98	\end{frame}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	99	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	100
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	101	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	102	\mode<presentation>{
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	103	\begin{frame}[t]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	104	\frametitle{\begin{tabular}{@{}c@{}}The Idea \end{tabular}}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	105
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	106	\begin{center}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	107	\begin{tabular}{l@{\hspace{10mm}}r}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	108	\\[-10mm]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	109	\raisebox{10mm}{\large 1.} & \includegraphics[scale=0.1]{../pics/alibaba1.png}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	110	\raisebox{10mm}{\large 2.} & \includegraphics[scale=0.1]{../pics/alibaba2.png}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	111	\raisebox{10mm}{\large 3.} & \includegraphics[scale=0.1]{../pics/alibaba3.png}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	112	\end{tabular}
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	113	\end{center}
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	114
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	115	\begin{textblock}{7}(1,2.5)
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	116	The Alibaba cave:
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	117	\end{textblock}
129 10526c967679 added slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 128 diff changeset	118
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	119	\small
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	120	\only<2>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	121	\begin{textblock}{12}(2,13.3)
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	122	Even if Bob has a hidden camera, a recording will not be convincing to anyone else
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	123	(Alice and Bob could have made it all up).
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	124	\end{textblock}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	125	\only<3>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	126	\begin{textblock}{12}(2,13.3)
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	127	Even worse, an observer present at the experiment would not be convinced.
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	128	\end{textblock}}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	129
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	130	\end{frame}}
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	131	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	132
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	133	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	134	\mode<presentation>{
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	135	\begin{frame}[c]
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	136	\frametitle{Applications of ZKPs}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	137
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	138	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	139	\item authentication, where one party wants to prove its identity to a
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	140	second party via some secret information, but doesn't want the second
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	141	party to learn anything about this secret\bigskip
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	142	\item to enforce honest behaviour while maintaining privacy: the idea is to
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	143	force a user to prove, using a zero-knowledge proof, that its behaviour is
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	144	correct according to the protocol
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	145	\end{itemize}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	146	\end{frame}}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	147	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	148
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	149	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	150	\mode<presentation>{
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	151	\begin{frame}[c]
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	152	\frametitle{Central Properties}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	153
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	154	Zero-knowledge proof protocols should satisfy:\bigskip
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	155
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	156	\begin{itemize}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	157	\item \alert{\bf Completeness} If Alice knows the secret, Bob accepts Alice ``proof'' for sure.\bigskip
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	158	\item \alert{\bf Soundness} If Alice does not know the secret, Bob accepts her ``proof'' with a very
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	159	small probability.
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	160	\end{itemize}
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	161	\end{frame}}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	162	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
126 b091e0abb894 added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 90 diff changeset	163
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	164
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	165	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	166	\mode<presentation>{
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	167	\begin{frame}[c]
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	168	\frametitle{Graph Isomorphism}
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	169
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	170	\begin{center}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	171	\begin{tabular}{l@{\hspace{10mm}}r}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	172	\includegraphics[scale=0.8]{../pics/graphs.png}\\
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	173	\end{tabular}
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	174	\end{center}
93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	175
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	176	Finding an isomorphism between two graphs is an NP complete problem.
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	177	\end{frame}}
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	178	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	179
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	180	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	181	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	182	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	183	\frametitle{Graph Isomorphism Protocol}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	184
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	185	Alice starts with knowing an isomorphism \bl{$\sigma$} between graphs \bl{$G_1$} and \bl{$G_2$}\medskip
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	186
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	187	\begin{enumerate}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	188	\item Alice generates an isomorphic graph \bl{$H$} which she sends to Bob
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	189	\item Bob asks either for an isomorphism between \bl{$G_1$} and \bl{$H$}, or
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	190	\bl{$G_2$} and \bl{$H$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	191	\item Alice and Bob repeat this procedure \bl{$n$} times
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	192	\end{enumerate}\pause
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	193
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	194	these are called commitment algorithms
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	195
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	196	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	197	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	198
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	199	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	200	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	201	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	202	\frametitle{Graph Isomorphism Protocol (2)}
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	203
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	204	If Alice knows the isomorphism, she can always calculate \bl{$\sigma$}.\bigskip
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	205
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	206	If she doesn't, she can only correctly respond if Bob's
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	207	choice of index is the same as the one she used to form \bl{$H$}. The probability
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	208	of this happening is \bl{$\frac{1}{2}$}, so after \bl{$n$} rounds the probability of her
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	209	always responding correctly is only \bl{$\frac{1}{2}^n$}.
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	210
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	211	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	212	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	213
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	214	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	215	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	216	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	217	\frametitle{Graph Isomorphism Protocol (3)}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	218
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	219	Why is the GI-protocol zero-knowledge?\bigskip\pause
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	220
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	221	A: We can generate a fake transcript of a conversation, which
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	222	cannot be distinguished from a ``real'' conversation.\bigskip
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	223
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	224	Anything Bob can compute using the information obtained from
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	225	the transcript can be computed using only a forged transcript and
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	226	therefore participation in such a communication does not increase
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	227	Bob's capability to perform any computation.
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	228
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	229	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	230	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	231
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	232
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	233
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	234	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	235	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	236	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	237	\frametitle{Non-Interactive ZKPs}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	238
4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	239
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	240	\bigskip
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	241	This is amazing: Alison can publish some data that contains no data about her secret,
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	242	but this data can be used to convince anyone of the secret's existence.
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	243	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	244	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	245
4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	246	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	247	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	248	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	249	\frametitle{Non-Interactive ZKPs (2)}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	250
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	251	Alice starts with knowing an isomorphism \bl{$\sigma$} between graphs \bl{$G_1$} and \bl{$G_2$}\medskip
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	252
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	253	\begin{enumerate}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	254	\item Alice generates \bl{$n$} isomorphic graphs \bl{$H_{1..n}$} which she makes public
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	255	\item she feeds the \bl{$H_{1..n}$} into a hashing function (she has no control over what
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	256	the output will be)
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	257	\item Alice takes the first \bl{$n$} bits of the output: whenever output is \bl{$0$}, she shows
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	258	an isomorphism with \bl{$G_1$} ; for \bl{$1$} she shows an isomorphism with \bl{$G_2$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	259	\end{enumerate}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	260
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	261	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	262	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	263
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	264	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	265	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	266	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	267	\frametitle{Problems of ZKPs}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	268
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	269	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	270	\item ``grand chess master problem''\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	271	(person in the middle)\bigskip
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	272
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	273	\item Alice can have multiple identities; once she committed a fraud she stops using one
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	274	\end{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	275
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	276	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	277	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	278
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	279	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	280	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	281	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	282	\frametitle{Other Methods for ZKPs}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	283
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	284	Essentially every NP-problem can be used for ZKPs
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	285
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	286	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	287	\item modular logarithms: Alice chooses public \bl{$A$}, \bl{$B$}, \bl{$p$}; and private \bl{$x$}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	288
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	289	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	290	\bl{$A^x \equiv B\; mod\; p$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	291	\end{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	292	\end{itemize}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	293
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	294	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	295	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	296
4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	297	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	298	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	299	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	300	\frametitle{Commitment Stage}
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	301
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	302	\begin{enumerate}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	303	\item Alice generates \bl{$z$} random numbers \bl{$r_1$}, ..., \bl{$r_z$}, all less than \bl{$p - 1$}.
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	304	\item Alice sends Bob for all \bl{$1..z$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	305	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	306	\bl{$h_i = A^{r_i} \;mod\; p$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	307	\end{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	308	\item Bob generates random bits \bl{$b_1$}, ..., \bl{$b_z$} by flipping a coin
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	309	\item For each bit \bl{$b_i$}, Alice sends Bob an \bl{$s_i$} where
130 4e8482e50590 more slides Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 129 diff changeset	310
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	311	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	312	\begin{tabular}{ll}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	313	\bl{$b_i = 0$}: & \bl{$s_i = r_i$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	314	\bl{$b_i = 1$}: & \bl{$s_i = (r_i - r_j) \;mod\; (p -1)$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	315	\end{tabular}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	316	\end{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	317	where \bl{$r_j$} is the lowest \bl{$j$} where \bl{$b_j = 1$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	318
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	319	\end{enumerate}
60 93578c484ab1 tuned Christian Urban <urbanc@in.tum.de> parents: 59 diff changeset	320
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	321	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	322	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
61 31de247cfb5b tuned Christian Urban <urbanc@in.tum.de> parents: 60 diff changeset	323
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	324	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	325	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	326	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	327	\frametitle{Confirmation Stage}
61 31de247cfb5b tuned Christian Urban <urbanc@in.tum.de> parents: 60 diff changeset	328
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	329	\begin{enumerate}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	330	\item For each \bl{$b_i$} Bob checks whether \bl{$s_i$} conforms to the protocol
61 31de247cfb5b tuned Christian Urban <urbanc@in.tum.de> parents: 60 diff changeset	331
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	332	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	333	\begin{tabular}{ll}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	334	\bl{$b_i = 0$}: & \bl{$A^{s_i} \equiv B\;mod\;p$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	335	\bl{$b_i = 1$}: & \bl{$A^{s_i} \equiv h_i * h_j^{-1} \;mod\; p$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	336	\end{tabular}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	337	\end{center}\bigskip
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	338
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	339	Bob was send
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	340
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	341	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	342	\bl{$r_j - r _j$}, \bl{$r_m - r _j$}, \ldots, \bl{$r_p - r _j$ \;mod \;p}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	343	\end{center}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	344
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	345	where the corresponding bits were
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	346	\bl{$1$}; Bob does not know \bl{$r_j$}, he does not know any \bl{$r_i$} where the bit was \bl{$1$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	347	\end{enumerate}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	348
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	349	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	350	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	351
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	352	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	353	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	354	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	355	\frametitle{Proving Stage}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	356
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	357	\begin{enumerate}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	358	\item Alice proves she knows \bl{$x$}, the discrete log of \bl{$B$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	359	she sends
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	360
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	361	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	362	\bl{$s_{z+1} = (x - r_j)$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	363	\end{center}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	364
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	365	\item Bob confirms
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	366
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	367	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	368	\bl{$A^{s_{z+1}} \equiv B * h_j^{-1} \;mod \; p$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	369	\end{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	370	\end{enumerate}\bigskip\pause
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	371
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	372	In order to cheat, Alice has to guess all bits in advance. She has only \bl{$1$} to \bl{$2^z$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	373	chance. \\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	374	\small\hspace{7mm}\textcolor{gray}{(explanation $\rightarrow$ \url{http://goo.gl/irL9GK})}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	375
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	376	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	377	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	378
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	379
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	380
4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	381	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	382	\mode<presentation>{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	383	\begin{frame}[c]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	384	\frametitle{Random Number Generators}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	385
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	386	\begin{itemize}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	387	\item Computers are deterministic. How do they generate random numbers?\bigskip\pause
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	388
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	389	\item The most popular method to generate random numbers between \bl{$0$} and \bl{$m$} is: choose
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	390	three integers
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	391
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	392	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	393	\begin{tabular}{ll}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	394	\bl{$a$} & multiplier\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	395	\bl{$c$} & increment\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	396	\bl{$X_0$} & start value
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	397	\end{tabular}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	398	\end{center}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	399
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	400	and calculate
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	401
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	402	\begin{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	403	\bl{$X_{n+1} = (a * X_n + c) \;mod\; m$}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	404	\end{center}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	405	\end{itemize}
128 4e108563716c added Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 126 diff changeset	406
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	407	\only<3->{
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	408	\begin{textblock}{7}(10,2)
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	409	\begin{tikzpicture}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	410	\draw (0,0) node[inner sep=2mm,fill=cream, ultra thick, draw=red, rounded corners=2mm]
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	411	{\begin{minipage}{3.8cm}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	412	\begin{tabular}{ll\|l}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	413	\bl{$m =$} & \bl{$16$} & \bl{$16$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	414	\bl{$X_0 =$} & \bl{$1$} & \bl{$1$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	415	\bl{$a = $} & \bl{$5$} & \bl{$5$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	416	\bl{$c =$} & \bl{$1$} & \bl{$0$}\\
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	417	\end{tabular}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	418	\end{minipage}};
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	419	\end{tikzpicture}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	420	\end{textblock}}
61 31de247cfb5b tuned Christian Urban <urbanc@in.tum.de> parents: 60 diff changeset	421
277 d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	422	\end{frame}}
d6dc6f0e3556 updated Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 135 diff changeset	423	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
59 8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	424	\end{document}
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	425
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	426	%%% Local Variables:
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	427	%%% mode: latex
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	428	%%% TeX-master: t
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	429	%%% End:
8b44bd114292 added slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	430

author	Christian Urban <christian dot urban at kcl dot ac dot uk>
	Mon, 03 Nov 2014 22:42:47 +0000
changeset 279	5616e664c020
parent 278	ed3c071ed36a
child 280	b732a63c17b8
permissions	-rw-r--r--