Description
The CL encryption scheme, proposed in 2015 by Castagnos and Laguillaumie, is a linearly homomorphic encryption scheme, based on class groups of imaginary quadratic fields. The specificity of these groups is that their order is hard to compute, which means it can be considered unknown. This particularity, while being key in the security of the scheme, brings technical challenges in working with CL, especially in the design of zero-knowledge protocols.
To overcome these difficulties, we define a new notion of soundness, called soundness with partial extractability, that is especially suited to the CL framework. Thanks to partial extractability, we design efficient zero-knowledge proofs and arguments for different CL-related statements. In this talk, after motivating the necessity of efficient protocols in the CL context, I will introduce this new notion and present a batched proof of correct encryption.
Infos pratiques
Prochains exposés
-
Cryptanalysis of full BEANIE
Orateur : Xavier Bonnetain - Inria
BEANIE is a tweakable block cipher recently published at ToSC aiming for memory encryption of microcontroller units. In line with this goal, it handles small plaintexts of only 32 bits and has a low latency. In this paper, we propose the first third-party analysis of the two variants of BEANIE. By carefully leveraging structural properties of the cipher and taking advantage of its distinctive[…]-
Cryptography
-
Symmetrical primitive
-