Another Look at Provable Security

Another Look at Provable Security

TheIACR via YouTube Direct link

Interpreting Bellare's proof in practice

14 of 20

14 of 20

Interpreting Bellare's proof in practice

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Another Look at Provable Security

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 What this talk is about
  3. 3 Example of a non-tight reduction The classic Bellare-Rogaway proof for RSA-FDH in the random oracle model has a tightness gap of y, where is the number of hash function queries
  4. 4 Identity-based encryption schemes
  5. 5 Does tightness matter?
  6. 6 MACs in the multi-user setting
  7. 7 Security proof for MAC* The proof is a reduction from breaking MAC1 to breaking MAC
  8. 8 Provably secure, but insecure
  9. 9 MAC* in other protocols
  10. 10 Single-user vs. multi-user
  11. 11 Bellare's security theorem for NMAC
  12. 12 PRF security Security assumption: f is (t,c,q)-secure. That is, adversaries
  13. 13 PRF security in the non-uniform model
  14. 14 Interpreting Bellare's proof in practice
  15. 15 Is HMAC-MD5 provably secure?
  16. 16 Non-uniform complexity model
  17. 17 Significance of our work
  18. 18 COPS: Cryptanalysis of Provable Security
  19. 19 A radical proposal
  20. 20 In conclusion....

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.