

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Prof. Salil Vadhan, Computer Science, Cryptography, NP-easy, Statistical Security, Exercises, Harvard
Typology: Exercises
1 / 2
This page cannot be seen from the preview
Don't miss anything!


Assigned: Oct. 5, 2006 Due: Oct. 11, 2006 (1:10 PM)
Justify all of your answers. See the syllabus for collaboration and lateness policies. You can submit by email to ciocan@eecs (please include source files) or by hardcopy to Carol Harlow in MD 343.
Problem 1. (Factorization is “NP-easy”)
Problem 2. (Reducing the error of randomized algorithms) Suppose we have randomized algorithm for computing a function f which gives an incorrect answer with probability ≤ 1 /3, and we want to reduce its error by repeating it several times and taking a majority vote. Use the Chernoff Bound to estimate how many repetitions suffice to reduce the error probability to 1/1000. And to 2−k?
Problem 3. (Statistical Security) Recall that (G, E, D) has statistically ε-indistinguishable encryptions if for every two m 1 , m 2 ∈ P and every T ⊆ C,
|Pr [EK (m 1 ) ∈ T ] − Pr [EK (m 2 ) ∈ T ]| ≤ ε,
where the probabilities are taken over K ←R G and the coin tosses of E.
For the remaining parts, suppose (G, E, D) has statistically ε-indistinguishable encryptions for message space P. Below you will prove that the number of keys must be at least (1 − ε) · |P|, so statistical security doesn’t help much to overcome the limitations of perfect secrecy.
Pr [EK (m) is decryptable to m′] ≥ 1 − ε,
where the probability is taken over K ←R G and the coin tosses of E.
E
#{m′^ : EK (m) is decryptable to m′
≥ (1 − ε) · |P|,
where again the probability is taken over K and the coin tosses of E. (Hint: for each m′, define a random variable Xm′^ that equals 1 if EK (m) is decryptable to m′, and equals 0 otherwise.)