158 research outputs found
Zero-knowledge undeniable signatures (extended abstract)
Undeniable signature protocols were introduced at Crypto '89 [CA]. The present article contains new undeniable signature protocols, and these are the first that are zero-knowledge
How to Issue a Central Bank Digital Currency
With the emergence of Bitcoin and recently proposed stablecoins from
BigTechs, such as Diem (formerly Libra), central banks face growing competition
from private actors offering their own digital alternative to physical cash. We
do not address the normative question whether a central bank should issue a
central bank digital currency (CBDC) or not. Instead, we contribute to the
current research debate by showing how a central bank could do so, if desired.
We propose a token-based system without distributed ledger technology and show
how earlier-deployed, software-only electronic cash can be improved upon to
preserve transaction privacy, meet regulatory requirements in a compelling way,
and offer a level of quantum-resistant protection against systemic privacy
risk. Neither monetary policy nor financial stability would be materially
affected because a CBDC with this design would replicate physical cash rather
than bank deposits.Comment: Swiss National Bank Working Paper3/202
How to Issue a Central Bank Digital Currency
With the emergence of Bitcoin and recently proposed stablecoins from BigTechs, such as Diem (formerly Libra), central banks face growing competition from private actors offering their own digital alternative to physical cash. We do not address the normative question whether a central bank should issue a central bank digital currency (CBDC) or not. Instead, we contribute to the current research debate by showing how a central bank could do so, if desired. We propose a token-based system without distributed ledger technology and show how earlier-deployed, software-only electronic cash can be improved upon to preserve transaction privacy, meet regulatory requirements in a compelling way, and offer a level of quantum-resistant protection against systemic privacy risk. Neither monetary policy nor financial stability would be materially affected because a CBDC with this design would replicate physical cash rather than bank deposits
The anonymous subgraph problem
In this work we address the Anonymous Subgraph Problem (ASP). The problem asks to decide whether a directed graph contains anonymous subgraphs of a given family. This problem has a number of practical applications and here we describe three of them (Secret Santa Problem, anonymous routing, robust paths) that can be formulated as ASPs. Our main contributions are (i) a formalization of the anonymity property for a generic family of subgraphs, (ii) an algorithm to solve the ASP in time polynomial in the size of the graph under a set of conditions, and (iii) a thorough evaluation of our algorithms using various tests based both on randomly generated graphs and on real-world instances
Cryptanalysis of DES with a reduced number of rounds: Sequences of linear factors in block ciphers
A blockcipher is said to have a linear factor if, for all plaintexts and keys, there is a fixed non-empty set of key bits whose simultaneous complementation leaves the exclusive-or sum of a fixed non-empty set of ciphertext bits unchanged
A secure and privacy-protecting protocol for transmitting personal information between organizations
- …