

































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
We phrase security of encryption schemes as a game between a challenger and an adversary. If no adversary can win the game.
Typology: Exercises
1 / 41
This page cannot be seen from the preview
Don't miss anything!


































Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Photo Credit: lichess
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
′
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
∗
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Phases Challenger C Adversary A setup k ← Gen( n )
encrypt plaintext
mi ←−−−−−−−−−−− for i ∈ poly(n)
ci ← Enc(k, mi )
ci −−−−−−−−−−−→
challenge cipher
m∗ 0 , m∗ 1 ←−−−−−−−−−−−
b
c∗^ ← Enc(k, m∗ b )
c∗ −−−−−−−−−−−→
encrypt plaintext
m′ i ←−−−−−−−−−−− for i ∈ poly(n)
ci ← Enc(k, m i′ )
c i′ −−−−−−−−−−−→
send bit
b′ ←−−−−−−−−−−− determine win If b = b′, A wins.
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Phases Challenger C Adversary A setup k ← Gen(1n^ )
encrypt plaintext
mi ←−−−−−−−−−−− for i ∈ poly(n)
ci ← Enc(k, mi )
ci −−−−−−−−−−−→
challenge cipher
m∗ 0 , m∗ 1 ←−−−−−−−−−−−
b
c∗^ ← Enc(k, m∗ b )
c∗ −−−−−−−−−−−→
encrypt plaintext
m′ i ←−−−−−−−−−−− for i ∈ poly(n)
ci ← Enc(k, m i′ )
c i′ −−−−−−−−−−−→
send bit
b′ ←−−−−−−−−−−− determine win If b = b′, A wins.
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Phases Challenger C Adversary A setup k ← Gen(1n^ )
decrypt ciphertext and
ci , mj ←−−−−−−−−−−− for i, j ∈ poly(n) encrypt plaintext mi ← Dec(k, ci )
cj ← Enc(k, mj )
mi , cj −−−−−−−−−−−→
challenge cipher
m 0 ∗ , m∗ 1 ←−−−−−−−−−−−
b
c∗^ ← Enc(k, m∗ b )
c∗ −−−−−−−−−−−→
encrypt plaintext
m′ j ←−−−−−−−−−−− for j ∈ poly(n)
c j′ ← Enc(k, m′ j )
c j′ −−−−−−−−−−−→
send bit
b′ ←−−−−−−−−−−− determine win If b = b′, A wins.
Announcements Introduction Objectives Symmetric Key Encryption Ciphertext IND IND-KPA IND-CPA IND-CCA IND-CCA Achieve IND-CPA One Time Pad AES Block Cipher Summary
Phases Challenger C Adversary A setup k ← Gen(1n^ )
decrypt ciphertext and
ci , mj ←−−−−−−−−−−− for i, j ∈ poly(n) encrypt plaintext mi ← Dec(k, ci )
cj ← Enc(k, mj )
mi , cj −−−−−−−−−−−→
challenge cipher
m∗ 0 , m∗ 1 ←−−−−−−−−−−− b ← {$ 0 , 1 }
c∗^ ← Enc(k, m∗ b )
c∗ −−−−−−−−−−−→
decrypt ciphertext and
c′ i , m′ j ←−−−−−−−−−−− for i, j ∈ poly(n), where c′ i 6 = c∗ encrypt plaintext m′ i ← Dec(k, c′ i )
c′ j ← Enc(k, m′ j )
m′ i , c j′ −−−−−−−−−−−→
send bit
b′ ←−−−−−−−−−−− determine win If b = b′, A wins.