Crypto Seminar
Location:
In Person and Virtual - ET
-
Blelloch-Skees Conference Room, Gates Hillman 8115 and Zoom
Speaker:
GUILHERME RITO
,
Ph.D. Student, Department of Computer Science, ETH Zürich
https://crypto.ethz.ch/~rito/
Deniable Authentication When Signing Keys Leak
Deniable Authentication is a highly desirable property for secure messaging protocols: it allows a sender Alice to authentically transmit messages to a designated receiver Bob in such a way that only Bob gets convinced that Alice indeed sent these messages. In particular, it guarantees that even if Bob tries to convince a (non-designated) party Judy that Alice sent some message, and even if Bob gives Judy his own secret key, Judy will not be convinced: as far as Judy knows, Bob could be making it all up!
In this work we study Deniable Authentication in a new setting, where Judy can additionally obtain Alice's secret key. Informally, we want that knowledge of Alice's secret key does not help Judy in learning whether Alice sent any messages, even if Bob does not have Alice's secret key and even if Bob cooperates with Judy by giving her his own secret key.
Event Website:
https://sites.google.com/view/crypto-seminar/home