On the impossibility of cryptography with tamperable randomness

Per Austrin; Kai Min Chung; Mohammad Mahmoody; Rafael Pass; Karn Seth

doi:10.1007/978-3-662-44371-2_26

On the impossibility of cryptography with tamperable randomness

Per Austrin, Kai Min Chung, Mohammad Mahmoody, Rafael Pass, Karn Seth

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

28 Scopus citations

Abstract

We initiate a study of the security of cryptographic primitives in the presence of efficient tampering attacks to the randomness of honest parties. More precisely, we consider p-tampering attackers that may efficiently tamper with each bit of the honest parties' random tape with probability p, but have to do so in an "online" fashion. Our main result is a strong negative result: We show that any secure encryption scheme, bit commitment scheme, or zero-knowledge protocol can be "broken" with probability p by a p-tampering attacker.The core of this result is a new Fourier analytic technique for biasing the output of bounded-value functions, which may be of independent interest. We also show that this result cannot be extended to primitives such as signature schemes and identification protocols: assuming the existence of one-way functions, such primitives can be made resilient to (1/poly(n))- tampering attacks where n is the security parameter.

Original language	English
Title of host publication	Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings
Publisher	Springer Verlag
Pages	462-479
Number of pages	18
Edition	PART 1
ISBN (Print)	9783662443705
DOIs	https://doi.org/10.1007/978-3-662-44371-2_26
State	Published - 2014
Externally published	Yes
Event	34rd Annual International Cryptology Conference, CRYPTO 2014 - Santa Barbara, CA, United States Duration: 17 Aug 2014 → 21 Aug 2014

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Number	PART 1
Volume	8616 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	34rd Annual International Cryptology Conference, CRYPTO 2014
Country/Territory	United States
City	Santa Barbara, CA
Period	17/08/14 → 21/08/14

Funding

Funders	Funder number
Natural Sciences and Engineering Research Council of Canada
Defense Advanced Research Projects Agency
European Commission
National Science Foundation	CCF-1214844, CNS-1217821, 1214844
Seventh Framework Programme	226203

Keywords

Encryption
Randomness
Tampering

Access to Document

10.1007/978-3-662-44371-2_26

Cite this

Austrin, P., Chung, K. M., Mahmoody, M., Pass, R., & Seth, K. (2014). On the impossibility of cryptography with tamperable randomness. In Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings (PART 1 ed., pp. 462-479). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8616 LNCS, No. PART 1). Springer Verlag. https://doi.org/10.1007/978-3-662-44371-2_26

Austrin, Per ; Chung, Kai Min ; Mahmoody, Mohammad et al. / On the impossibility of cryptography with tamperable randomness. Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings. PART 1. ed. Springer Verlag, 2014. pp. 462-479 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); PART 1).

@inproceedings{6c45b9ccbd4b49c69525a2a7fdbb9bfc,

title = "On the impossibility of cryptography with tamperable randomness",

abstract = "We initiate a study of the security of cryptographic primitives in the presence of efficient tampering attacks to the randomness of honest parties. More precisely, we consider p-tampering attackers that may efficiently tamper with each bit of the honest parties' random tape with probability p, but have to do so in an {"}online{"} fashion. Our main result is a strong negative result: We show that any secure encryption scheme, bit commitment scheme, or zero-knowledge protocol can be {"}broken{"} with probability p by a p-tampering attacker.The core of this result is a new Fourier analytic technique for biasing the output of bounded-value functions, which may be of independent interest. We also show that this result cannot be extended to primitives such as signature schemes and identification protocols: assuming the existence of one-way functions, such primitives can be made resilient to (1/poly(n))- tampering attacks where n is the security parameter.",

keywords = "Encryption, Randomness, Tampering",

author = "Per Austrin and Chung, {Kai Min} and Mohammad Mahmoody and Rafael Pass and Karn Seth",

year = "2014",

doi = "10.1007/978-3-662-44371-2_26",

language = "אנגלית",

isbn = "9783662443705",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

number = "PART 1",

pages = "462--479",

booktitle = "Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings",

address = "גרמניה",

edition = "PART 1",

note = "34rd Annual International Cryptology Conference, CRYPTO 2014 ; Conference date: 17-08-2014 Through 21-08-2014",

}

Austrin, P, Chung, KM, Mahmoody, M, Pass, R & Seth, K 2014, On the impossibility of cryptography with tamperable randomness. in Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings. PART 1 edn, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), no. PART 1, vol. 8616 LNCS, Springer Verlag, pp. 462-479, 34rd Annual International Cryptology Conference, CRYPTO 2014, Santa Barbara, CA, United States, 17/08/14. https://doi.org/10.1007/978-3-662-44371-2_26

On the impossibility of cryptography with tamperable randomness. / Austrin, Per; Chung, Kai Min; Mahmoody, Mohammad et al.
Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings. PART 1. ed. Springer Verlag, 2014. p. 462-479 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8616 LNCS, No. PART 1).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - On the impossibility of cryptography with tamperable randomness

AU - Austrin, Per

AU - Chung, Kai Min

AU - Mahmoody, Mohammad

AU - Pass, Rafael

AU - Seth, Karn

PY - 2014

Y1 - 2014

N2 - We initiate a study of the security of cryptographic primitives in the presence of efficient tampering attacks to the randomness of honest parties. More precisely, we consider p-tampering attackers that may efficiently tamper with each bit of the honest parties' random tape with probability p, but have to do so in an "online" fashion. Our main result is a strong negative result: We show that any secure encryption scheme, bit commitment scheme, or zero-knowledge protocol can be "broken" with probability p by a p-tampering attacker.The core of this result is a new Fourier analytic technique for biasing the output of bounded-value functions, which may be of independent interest. We also show that this result cannot be extended to primitives such as signature schemes and identification protocols: assuming the existence of one-way functions, such primitives can be made resilient to (1/poly(n))- tampering attacks where n is the security parameter.

AB - We initiate a study of the security of cryptographic primitives in the presence of efficient tampering attacks to the randomness of honest parties. More precisely, we consider p-tampering attackers that may efficiently tamper with each bit of the honest parties' random tape with probability p, but have to do so in an "online" fashion. Our main result is a strong negative result: We show that any secure encryption scheme, bit commitment scheme, or zero-knowledge protocol can be "broken" with probability p by a p-tampering attacker.The core of this result is a new Fourier analytic technique for biasing the output of bounded-value functions, which may be of independent interest. We also show that this result cannot be extended to primitives such as signature schemes and identification protocols: assuming the existence of one-way functions, such primitives can be made resilient to (1/poly(n))- tampering attacks where n is the security parameter.

KW - Encryption

KW - Randomness

KW - Tampering

UR - http://www.scopus.com/inward/record.url?scp=84905380508&partnerID=8YFLogxK

U2 - 10.1007/978-3-662-44371-2_26

DO - 10.1007/978-3-662-44371-2_26

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:84905380508

SN - 9783662443705

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 462

EP - 479

BT - Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings

PB - Springer Verlag

T2 - 34rd Annual International Cryptology Conference, CRYPTO 2014

Y2 - 17 August 2014 through 21 August 2014

ER -

Austrin P, Chung KM, Mahmoody M, Pass R, Seth K. On the impossibility of cryptography with tamperable randomness. In Advances in Cryptology, CRYPTO 2014 - 34th Annual Cryptology Conference, Proceedings. PART 1 ed. Springer Verlag. 2014. p. 462-479. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); PART 1). doi: 10.1007/978-3-662-44371-2_26

On the impossibility of cryptography with tamperable randomness

Abstract

Publication series

Conference

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Cite this