Search CORE

42 research outputs found

Multi-exponentiation

Author: Laih C.-S.
Lenstra Arjen K.
Yen S.-M.
Publication venue: 'Institution of Engineering and Technology (IET)'
Publication date: 25/06/2010
Field of study

In several cryptographic protocols the product of a small number of exponentiations is required, but the separate exponentiation results are not needed. A simultaneous exponentiation algorithm that takes advantage of this situation and that is substantially faster than the ordinary approach using separate exponentiations is presented

Infoscience - École polytechnique fédérale de Lausanne

Fair and Sound Secret Sharing from Homomorphic Time-Lock Puzzles

Author: A Beimel
A Shamir
B Waters
C Dwork
C-S Laih
D Chaum
G Asharov
G Fuchsbauer
G Kol
G Malavolta
H Krawczyk
H Wang
H-Y Lin
J Cathalo
J Katz
L Harn
M Abadi
M Tompa
R Cramer
S Doshi
SD Gordon
SD Gordon
SJ De
TP Pedersen
Y Desmedt
Y Desmedt
YG Desmedt
Publication venue: 'Springer Science and Business Media LLC'
Publication date: 17/09/2020
Field of study

Achieving fairness and soundness in non-simultaneous rational secret sharing schemes has proved to be challenging. On the one hand, soundness can be ensured by providing side information related to the secret as a check, but on the other, this can be used by deviant players to compromise fairness. To overcome this, the idea of incorporating a time delay was suggested in the literature: in particular, time-delay encryption based on memory-bound functions has been put forth as a solution. In this paper, we propose a different approach to achieve such delay, namely using homomorphic time-lock puzzles (HTLPs), introduced at CRYPTO 2019, and construct a fair and sound rational secret sharing scheme in the non-simultaneous setting from HTLPs. HTLPs are used to embed sub-shares of the secret for a predetermined time. This allows to restore fairness of the secret reconstruction phase, despite players having access to information related to the secret which is required to ensure soundness of the scheme. Key to our construction is the fact that the time-lock puzzles are homomorphic so that players can compactly evaluate sub-shares. Without this efficiency improvement, players would have to independently solve each puzzle sent from the other players to obtain a share of the secret, which would be computationally inefficient. We argue that achieving both fairness and soundness in a non-simultaneous scheme using a time delay based on CPU-bound functions rather than memory-bound functions is more cost effective and realistic in relation to the implementation of the construction

Crossref

Royal Holloway - Pure

Cryptology ePrint Archive