IACR News
Here you can see all recent updates to the IACR webpage. These updates are also available:
08 May 2020
Beijing Genomics Institute, Shenzhen, China
Job Posting1. Collaborate with other biological data scientists and responsible for health data (eg. genetic data) security and privacy protection research and development. Propose new solutions based on cutting-edge security technology to meet the needs of healthcare field.
2. Follow up research on the application of cutting-edge cryptography technology, cryptographic algorithm implementation and performance optimization, such as lattice cryptography, homomorphic encryption, and zero-knowledge proof in the field of blockchain or data storage.
Qualifications
1. Master degree or above (PhD prefered) in cryptography, computer science, mathematics or related fields
2. Excellent in security fundamentals, such as digest algorithm, symmetric encryption, asymmetric encryption and signature algorithm principles and their implementation
3. Familiar with cutting-edge cryptography technologies, including secure multi-party computing, homomorphic encryption, etc .
4. Interested in healthcare big data management and privacy protection
Closing date for applications:
Contact: Dr. Yuantong Ding, dingyuantong(at)genomics.cn
Osaka University, Graduate School of Engineering, Suita-city, Japan
Job PostingClosing date for applications:
Contact: Atsuko Miyaji phone number: 06-6879-7715 E-Mail myj-comm-course@crypto-cybersec.comm.eng.osaka-u.ac.jp
More information: https://jrecin.jst.go.jp/seek/SeekJorDetail?fn=3&dt=1&id=D120030124&ln_jor=1
University of California Davis
Job Posting1. Computer System Security
The successful candidate will perform research in the area of hardware security, computer architecture security, IoT security, and system cybersecurity.
2. Applied Machine Learning
The successful candidate will perform research in the area of applied machine learning. Some of the topics of interests are graph analytics, graph neural network, adversarial machine learning, and machine learning privacy, deep learning, reinforcement learning, and machine learning computational complexity.
Applicants should submit a curriculum vitae, and names/contact information of three references in a single PDF file to: hhomayoun@ucdavis.edu
Closing date for applications:
Contact: hhomayoun@ucdavis.edu
More information: https://ece.ucdavis.edu/news/current-opportunities-uc-davis-ece
Koç University, İstanbul, Turkey
Job PostingYour duties include performing research on cryptography, security, and privacy in line with our research group's focus, assist teaching, and collaborate with other graduate and undergraduate students.
For applying online, and questions about the application-process for M.Sc. and Ph.D. positions, visit
https://gsse.ku.edu.tr/en/admissions/application-requirements
All applications must be completed online. Applications with missing documents will not be considered.
For more information about joining our group and projects, visit
https://crypto.ku.edu.tr/work-with-us/
Admission Requirements:
- CV
- Recommendation Letters (2 for MSc, 3 for Ph.D)
- TOEFL (for those whose native language is not English, Internet Based: Minimum Score 80)
- GRE scores (required from non-Turkish nationals)
- Official transcripts from all the universities attended
- Statement of Purpose
- Area of Interest Form filled online
Closing date for applications:
Contact: https://gsse.ku.edu.tr/en/admissions/how-to-apply/
More information: https://gsse.ku.edu.tr/en/admissions/application-requirements
University of Klagenfurt, Austria
Job PostingWe are hiring a fixed term (4 year) lecturer in the area of Cybersecurity.
We invite applicants with a back ground (i.e. PhD) in either cybersecurity or statistics/AI/data science (assuming they are interested in a cybersecurity angle to their work).
The minimum monthly gross salary for this position amounts to € 3.889,50 (14 times per year) and can increase to € 4.309,30 (B1 lit. c) maximum in the case of consideration of previous occupational experience. The four-year fixed-term employment contract is expected to commence in August 2020 (but this is negotiable).
The position is within the newly established Cybersecurity group headed by Elisabeth Oswald. The group's research agenda evolves around data centric aspects of applied cryptography and more generally cybersecurity; this includes research around side channels, crypto (for privacy), and more generically the intersection between security/statistics/data science/AI.
The position holder is expected to contribute to teaching (4 contact hrs per week during term time, subject specific teaching only; the group leads on the newly established MSc on AI and Cybersecurity) and develop their own research agenda.
Closing date for applications:
Contact: Elisabeth Oswald (Elisabeth.Oswald @ aau.at)
More information: http://www.cybersecurityresearch.at
Tarragona, Catalonia, 23 September - 25 September 2020
Event CalendarSubmission deadline: 1 June 2020
Notification: 26 June 2020
Seoul, South Korea, 2 December - 4 December 2020
Event CalendarSubmission deadline: 26 August 2020
Notification: 26 October 2020
Aalborg University, Copenhagen Denmark
Job Posting
JOB DESCRIPTION
We seek to appoint one or more Assistant Professors in Cyber Security. The selected candidate(s) will join a team of academics with a comprehensive research and teaching portfolio in the area of cyber security, and participate in the starting up of a new M.Sc. programme in Cybersecurity, which is taught in English.
The position(s) require internationally recognized research experience in one or more of the following areas:
The main tasks and responsibilities include:
For more information please see: https://www.stillinger.aau.dk/vis-stilling/?vacancy=1096542
Closing date for applications:
Contact: Jens Myrup Pedersen, email: jens@es.aau.dk.
More information: https://www.stillinger.aau.dk/vis-stilling/?vacancy=1096542
07 May 2020
Liliya Kraleva, Tomer Ashur, Vincent Rijmen
ePrint ReportCarsten Baum, Bernardo David, Rafael Dowsley, Jesper Buus Nielsen, Sabine Oechsner
ePrint ReportCarlos Cid, Lorenzo Grassi, Reinhard Lüftenegger, Christian Rechberger, Markus Schofnegger
ePrint ReportIn this paper we generalise these results for SPN ciphers, showing that the growth of the algebraic degree is often linear for SPN ciphers with low-degree S-Boxes as well. We prove that the initial exponential growth of the degree turns into a linear growth after a certain number of rounds. Our analysis includes iterated Even--Mansour and MiMC-like ciphers as a special case, but most notably it also applies to SPN ciphers designed to be competitive for recent applications like MPC, FHE, SNARKs, and STARKs (e.g., HadesMiMC). Our findings have been practically verified on small-scale ciphers.
Geoffroy Couteau, Shuichi Katsumata, Bogdan Ursu
ePrint ReportOur first construction improves this state of affairs. We provide a construction of NIZKs for NP under the CDH assumption together with the assumption that no efficient adversary can break the key-dependent message one-wayness of ElGamal with respect to efficient functions over groups of size $2^\lambda$, with probability better than $\mathsf{poly}(\lambda)/2^{c\lambda}$ (denoted $2^{-c\lambda}$-OWKDM), for a constant $c = 3/4$. Unlike the previous assumption, our assumption leaves an exponential gap between the best-known attack and the required security guarantee.
Our second construction is interested in the case where CDH does not hold. Namely, as a second contribution, we construct an infinitely often NIZK argument system for NP (where soundness and zero-knowledge are only guaranteed to hold for infinitely many security parameters), under the assumption that CDH is easy together with the $2^{-c\lambda}$-OWKDM security of ElGamal with $c = 28/29+o(1)$ and the existence of low-depth pseudorandom generators (PRG).
Combining our two results, we obtain a construction of (infinitely-often) NIZKs for NP under the $2^{-c\lambda}$-OWKDM security of ElGamal with $c = 28/29+o(1)$ and the existence of low-depth PRG, independently of whether CDH holds. To our knowledge, since neither OWKDM security of ElGamal nor low-depth PRGs are known to imply public key encryption, this provides the first construction of NIZKs from concrete and falsifiable Minicrypt-style assumptions.
Peter Schwabe, Douglas Stebila, Thom Wiggers
ePrint ReportFoteini Baldimtsi, Varun Madathil, Alessandra Scafuro, Linfeng Zhou
ePrint ReportDominik Harz, Lewis Gudgeon, Rami Khalil, Alexei Zamyatin
ePrint ReportWe present Promise, a subscription mechanism to decrease the initial capital requirements of economically rational service providers in cryptoeconomic protocols. The mechanism leverages future income (such as service fees) prepaid by users to reduce the collateral actively locked up by service providers, while sustaining secure operation of the protocol. Promise is applicable in the context of multiple service providers competing for users. We provide a model for evaluating its effectiveness and argue its security. Demonstrating Promise's applicability, we discuss how Promise can be integrated into a cross-chain interoperability protocol, XCLAIM, and a second-layer scaling protocol, NOCUST. Last, we present an implementation of the protocol on Ethereum showing that all functions of the protocol can be implemented in constant time complexity and Promise only adds USD 0.05 for a setup per user and service provider and USD 0.01 per service delivery during the subscription period.
Serge Vaudenay
ePrint Report06 May 2020
Mathias Soeken
ePrint ReportMoni Naor, Shahar Paz, Eyal Ronen
ePrint ReportWe further strengthen the notion by introducing ``Strong iPAKE'' (siPAKE), similar to ``Strong aPAKE'' (saPAKE), which is additionally immune to pre-computation. To mount an (inevitable) offline dictionary attack, an adversary must first compromise a device and only then start an exhaustive search over the entire password dictionary. Rather than storing its password in the clear, each party derives a password file using its identity and a secret random salt (``salted hash''). Although the random salts are independently selected, any pair of parties is able to establish a cryptographically secure shared key from these files.
We formalize iPAKE and siPAKE notions in the Universally Composable (UC) framework and propose a compiler from PAKE to iPAKE using Identity-Based Key-Agreement. We then present CRISP: a construction of siPAKE from any PAKE using bilinear groups with ``Hash2Curve''. We prove CRISP's UC-security in the Generic Group Model (GGM) and show that each offline password guess requires at least one pairing operation.
Joseph K. Liu, Man Ho Au, Tsz Hon Yuen, Cong Zuo, Jiawei Wang, Amin Sakzad, Xiapu Luo, Li Li
ePrint ReportOur protocol strikes a balance between security, privacy and scalability. In terms of privacy, it allows all users to hide his past location and contact history with respect to the Government. Yet, all users can check whether he had a close contact with a confirmed patient without learning the identity of the patient. We use a zero-knowledge protocol to ensure that user privacy is protected. In terms of security, no user can send fake message to the system to launch a false positive attack. We give a formal security model and give a security proof for our protocol. In terms of scalability, we have implemented our protocol into Android smartphone and our evaluation result shows its practicality.
05 May 2020
Alin Tomescu, Ittai Abraham, Vitalik Buterin, Justin Drake, Dankrad Feist, Dmitry Khovratovich
ePrint ReportOur aSVC supports (1) computing all $n$ $O(1)$-sized proofs in $O(n\log{n})$ time, (2) updating a proof in $O(1)$ time and (3) aggregating $b$ proofs into an $O(1)$-sized subvector proof in $O(b\log^2{b})$ time. Importantly, our scheme has an $O(n)$-sized proving key, an $O(1)$-sized verification key and $O(1)$-sized update keys. In contrast, previous schemes with constant-sized proofs in prime-order groups either (1) require $O(n^2)$ time to compute all proofs, (2) require $O(n)$-sized update keys to update proofs in $O(1)$ time, or (3) do not support aggregating proofs. Furthermore, schemes based on hidden-order groups either (1) have larger concrete proof size and computation time, or (2) do not support proof updates.
We use our aSVC to obtain a stateless cryptocurrency with very low communication and computation overheads. Specifically, our constant-sized, aggregatable proofs reduce each block's proof overhead to just one group element, which is optimal. In contrast, previous work required $O(b\log{n})$ group elements, where $b$ is the number of transactions per block. Furthermore, our smaller proofs reduce the block verification time from $O(b\log{n})$ pairings to just two pairings and an $O(b)$-sized multi-exponentiation. Lastly, our aSVC's smaller update keys only take up $O(b)$ block space, compared to $O(b\log{n})$ in previous work. Also, their zverifiability reduces miner storage from $O(n)$ to $O(1)$. The end result is a stateless cryptocurrency that concretely and asymptotically outperforms the state of the art