DC Field | Value | Language |
---|---|---|
dc.contributor.advisor | Kim, Kwangjo | - |
dc.contributor.advisor | 김광조 | - |
dc.contributor.author | Choi, Rakyong | - |
dc.date.accessioned | 2021-05-12T19:44:13Z | - |
dc.date.available | 2021-05-12T19:44:13Z | - |
dc.date.issued | 2020 | - |
dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=924413&flag=dissertation | en_US |
dc.identifier.uri | http://hdl.handle.net/10203/284374 | - |
dc.description | 학위논문(박사) - 한국과학기술원 : 전산학부, 2020.8,[v, 83 p. :] | - |
dc.description.abstract | Recently, several key reuse attacks against Ding Key Exchange, NewHope and other lattice-based key exchange schemes using Peikert's key reconciliation mechanism were suggested. But all known key reuse attacks are designed for two-party setting instead of group key exchange. On the other hand, all previous known lattice-based group key exchanges are designed for static setting. This paper is organized in three folds. We present the first key reuse attack called {one, two}-neighbour attack against lattice-based group key exchanges, namely Ding $et$ $al$.'s group key exchange scheme in 2012 and Apon $et$ $al$.'s group key exchange scheme from PQCrypto 2019. We consider that the adversary manipulates {one or two} neighbour parties $P_{N-2}$ (and $P_{N-3}$ for two-neighbour attack) of the last party $P_{N-1}$ to recover the secret key of the last party $P_{N-1}$ among $N$ parties. We also suggest several constructions of dynamic group key exchange protocols that could be instantiated by lattice. As a countermeasure of our attack, we design the first key-reusable group key exchange based on {lattice}. where GKE protocol $\Pi_\textsf{GKE}$ is {key-reusable} if the protocol participants of $\Pi_\textsf{GKE}$ can re-use their public key. By adopting existing pasteurization technique for two-party key exchange from lattice, our protocol becomes resistant to known key reuse attacks. We give a rigorous proof of our protocol in the random oracle model. Our underlying dynamic group key exchange protocol is the modification of Dutta-Barua protocol in RLWE setting. | - |
dc.language | eng | - |
dc.publisher | 한국과학기술원 | - |
dc.subject | key exchange protocol▼adynamic group key exchange▼alattice-based cryptography▼apost-quantum cryptography▼akey-reuse attack | - |
dc.subject | 키 교환 프로토콜▼a동적 그룹 키 교환▼a격자 기반 암호▼a양자 내성 암호▼a키 재사용 공격 | - |
dc.title | Key-reusable dynamic group key exchange from lattice with quantum rsistance | - |
dc.title.alternative | 양자 내성을 가지는 래티스 문제를 이용한 키 재사용이 가능한 동적 그룹 키 교환 방식의 설계 및 분석 | - |
dc.type | Thesis(Ph.D) | - |
dc.identifier.CNRN | 325007 | - |
dc.description.department | 한국과학기술원 :전산학부, | - |
dc.contributor.alternativeauthor | 최락용 | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.