International Association for Cryptologic Research

International Association
for Cryptologic Research

IACR News

Updates on the COVID-19 situation are on the Announcement channel.

Here you can see all recent updates to the IACR webpage. These updates are also available:

RSS symbol icon
via RSS feed
Twitter bird icon
via Twitter
Weibo icon
via Weibo
Facebook icon
via Facebook

18 January 2021

The Distinguishing Attack on HFE
Joshua Deaton, Jintai Ding
ePrint Report ePrint Report
Often times, the ability to distinguish between random data and a public key can leads to an attack against the cryptosystem itself. In this paper, we will show experimentally a very efficient distinguisher based on the distribution of ranks of the symmetric matrices associated with the central map in the multivariate cryptosystem HFE when the degree D of the central map is very small.
Expand
ASIC Benchmarking of Round 2 Candidates in the NIST Lightweight Cryptography Standardization Process: (Preliminary Results)
Mark D. Aagaard, Nusa Zidaric
ePrint Report ePrint Report
This draft report provides preliminary area and clock speed results for 53 NIST Lightweight Cryptography Round 2 candidates on an ASIC cell library.
Expand
Efficient Lattice Gadget Decomposition Algorithm with Bounded Uniform Distribution
Sohyun Jeon, Hyang-Sook Lee, Jeongeun Park
ePrint Report ePrint Report
A gadget decomposition algorithm is commonly used in many advanced lattice cryptography applications which support homomorphic operation over ciphertexts to control the noise growth. For a special structure of a gadget, the algorithm is digit decomposition. If such algorithm samples from a subgaussian distribution, that is, the output is randomized, it gives more benefits on output quality. One of important advantages is Pythagorean additivity which makes resulting noise contained in a ciphertext grow much less than naive digit decomposition. Therefore, the error analysis becomes cleaner and tighter than the use of other measures like $\ell_2$ and $\ell_\infty$. Even though such advantage can also be achieved by the use of discrete Gaussian sampling, it is not preferable for practical performance due to large factor in resulting noise and the complex computation of exponential function, whereas more relaxed probability condition is required for subgaussian distribution. Nevertheless, subgaussian sampling has barely received an attention so far, thus no practical algorithms was implemented before an efficient algorithm is presented by Genis et al., recently.

In this paper, we present a practically efficient gadget decomposition algorithm where output follows a subgaussian distribution. We parallelize the existing practical subgaussian gadget decomposition algorithm, using bounded uniform distribution. Our algorithm is divided into two independent subalgorithms and only one algorithm depends on input. Therefore, the other algorithm can be considered as pre-computation. As an experimental result, our algorithm performs over 50\% better than the existing algorithm.
Expand
Evolution of Bulletin Board & its application to E-Voting - A Survey
Misni Harjo Suwito, Yoshifumi Ueshige , Kouichi Sakurai
ePrint Report ePrint Report
The voting process is fundamental to any democratic system – be it a country or a company's boardroom. Nearly forty years ago, e-voting was theoretically perceived as a more efficient replacement of the widely existing paper-based traditional voting system. Several research works have been carried out to ensure more security and efficiency in different settings for e-voting schemes. One of the fundamental building blocks of e-voting systems is the public Bulletin Board through which several security properties are achieved. After introducing Blockchain technology, the bulletin board has found a new meaningful and concrete way of distributed way of implementation. Before Blockchain technology, either such a system was theoretically assumed or perceived as a public broadcast channel with memory. In this survey, we present a concise survey of bulletin boards' evolution with a typical application to the e-voting systems. We note that bulletin boards have other applications in other joint computation areas. Still, we are interested in evolving e-voting systems based on bulletin board and how several desired security properties are realized through bulletin boards.
Expand
Efficient Lattice-Based Inner-Product Functional Encryption
Jose Maria Bermudo Mera, Angshuman Karmakar, Tilen Marc, Azam Soleimanian
ePrint Report ePrint Report
In the recent years, many research lines on Functional Encryption (FE) have been suggested and studied regarding the functionality, security, or efficiency. These studies include quadratic FE, multi-client FE, function-hiding FE, dynamic FE and much more. Nevertheless, an open problem on a basic functionality, the single-input inner-product (IPFE), remains: can IPFE be instantiated based on the Ring Learning With Errors (RLWE) assumption?

The RLWE assumption provides quantum-resistance security while in comparison with LWE assumption gives significant performance and compactness gains. In this paper we present the first IPFE scheme whose security is guaranteed relying on the RLWE assumption. The security proof requires developing two new results on ideal lattices. The first result is a variant of Ring-LWE, that we call multi-hint extended Ring-LWE, where some hints on the secret and the noise are given. We present a reduction from RLWE problem to this variant. The second tool is a special form of Leftover Hash Lemma (LHL) over rings, which we call Ring-LHL.

To demonstrate the efficiency of our scheme we provide an optimized implementation of RLWE-based IPFE scheme and show its performance on a practical use case.
Expand
Banners: Binarized Neural Networks with Replicated Secret Sharing
Alberto Ibarrondo, Hervé Chabanne, Melek Önen
ePrint Report ePrint Report
Binarized Neural Networks (BNN) provide efficient implementations of Convolutional Neural Networks (CNN). This makes them particularly suitable to perform fast and memory-light inference of neural networks running on resource-constrained devices. Motivated by the growing interest in CNN-based biometric recognition on potentially insecure devices, or as part of strong multi-factor authentication for sensitive applications, the protection of BNN inference on edge devices is rendered imperative. We propose a new method to perform secure inference of BNN relying on secure multiparty computation. While preceding papers offered security in a semi-honest setting for BNN or malicious security for standard CNN, our work yields security with abort against one malicious adversary for BNN by leveraging on Replicated Secret Sharing (RSS) for an honest majority with three computing parties. Experimentally, we implement BaNNeRS on top of MP-SPDZ and compare it with prior work over binarized models trained for MNIST and CIFAR10 image classification datasets. Our results attest the efficiency of BaNNeRS as a privacy-preserving inference technique.
Expand

16 January 2021

Research Scientist - Statistics & Privacy (Cryptography and Internet Technology)
Facebook Inc., Menlo Park, CA | Seattle, WA | New York, NY | San Francisco, CA
Job Posting Job Posting
Keywords: multi-party computation, homomorphic encryption, custom PSI protocols, federated analytics, privacy preserving machine learning, and differential privacy

We seek Research Scientists to identify new opportunities and help build scientifically rigorous systems focused on enhancing technological guarantees for consumer privacy while simultaneously expanding the efficiency of Facebook’s market-leading advertising systems. Challenges include leveraging privacy-enhancing technologies such as multi-party computation, homomorphic encryption, federated analytics, and differential privacy to develop privacy-focused advertising solutions (private record-linkage, fraud prevention, reporting and experimentation, and collaborative inference) — all while maintaining performance at massive scale. Minimum Qualifications

  • PhD in computer science, engineering, cryptography, mathematics or a related field with 2+ years of relevant experience, or MS degree with 6+ years of relevant experience architecting privacy and security solutions
  • Proficiency designing and implementing analytical and/or algorithmic solutions, tailored to particular business needs and tested on large data sets
  • Proficiency in C-family (e.g C++, Rust, Go), Python, or similar language
  • Experience with communicating analysis and establishing confidence among audiences who do not share your disciplinary background or training
  • Proven track record of innovation

    Preferred Qualifications
  • Expertise on one or more of the following core privacy/security concepts:
  • Privacy technologies: e.g., homomorphic encryption, secure multi-party computation, federated analytics, trusted execution environments, data minimization, data anonymization, differential privacy
  • Design and analysis of cryptographic algorithms and protocols, and/or their application to data protection and privacy, authentication, payments, or digital advertising
  • continued on application webpage see, https://www.facebook.com/careers/v2/jobs/121739569732425/

    Closing date for applications:

    Contact: Apply Online or reach out to Benjamin Case (bmcase {at} fb DOT com) or Sanjay Saravanan

    More information: https://www.facebook.com/careers/v2/jobs/121739569732425/

    • Expand
    Research Fellow
    University College London, Department of Computer Science, London, UK
    Job Posting Job Posting

    We have an open Research Fellow position at University College London, within the Information Security Research Group, to work with Professor Steven Murdoch. The Research Fellow will conduct research in the application of privacy-enhancing technologies to improve transparency of measures to prevent financial fraud and to enhance the level of consumer protection available to fraud victims.

    The candidate should have (or be close to obtaining) a PhD or equivalent experience in Computer Science or a related field. Research experience in privacy-enhancing technologies, security usability, and/or payment systems is essential. A strong publication record in on or more of these fields, and experience of applied privacy-enhancing technologies is desirable.

    This position is part of the REPHRAIN project (https://www.rephrain.ac.uk/), the UK National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online.

    The application deadline is 27 January 2021.

    Closing date for applications:

    Contact: Professor Steven Murdoch (s.murdoch@ucl.ac.uk)

    More information: https://murdoch.is/:/rephrainjob

    Expand
    Ph.D. student / Post-Doc
    CISPA Helmholtz Center for Information Security, Saarbruecken, Germany
    Job Posting Job Posting

    Prof. Cas Cremers is looking to hire Ph.D. students and/or Post-doctoral researchers for his research group at the CISPA Helmholtz Center for Information Security in Germany.

    Examples of topics that the group of Prof. Cremers has worked on:

    • Models and proof methodologies for security
    • Security protocol analysis tools: Scyther, Tamarin
    • Secure messaging (eg Signal, post-compromise security) and key exchange
    • Security standards: ISO, TLS 1.3, 5G, and IETF standard under development for secure messaging MLS, worked on DP3T, ...

    The positions are fully funded.

    Application deadline: February 18, 2021.

    Follow the link to learn more -- you can apply directly, or alternatively (new!) Cas can apply to your open supervisor position.

    Closing date for applications:

    Contact: Cas Cremers

    More information: https://twitter.com/CasCremers/status/1349754084363038726

    Expand
    Assistant Professor - Security and Cryptography
    University of Toronto, Department of Computer Science; Toronto, Canada
    Job Posting Job Posting

    The Department of Computer Science at the University of Toronto invites applications for up to two full-time tenure stream positions in the areas of Security and Cryptography. The appointments will be at the rank of Assistant Professor and will commence on July 1, 2021, or shortly thereafter.

    We seek applications from candidates conducting research in the areas of Security and Cryptography, broadly construed. We welcome exceptional candidates who transcend traditional backgrounds, and those whose research and teaching interests complement our existing strengths.

    Applicants must have a Ph.D. in Computer Science or a related field by the date of appointment, or shortly thereafter, and demonstrate a strong record of excellence in research and a strong commitment to excellent teaching. Evidence of a commitment to equity, diversity, inclusion (EDI), and the promotion of a respectful and collegial learning and working environment will weigh favourably on the application.

    Salary will be commensurate with qualifications and experience, and is competitive with our North American peers.

    Application materials for the position must be submitted online through AcademicJobsOnline at https://academicjobsonline.org/ajo/jobs/17700. The required materials are the candidate's curriculum vitae, list of publications, research statement, teaching statement, and at least three letters of reference (on letterhead, signed and scanned) uploaded to AcademicJobsOnline directly by the writers.

    The University of Toronto offers the opportunity to teach, conduct research, and live in one of the most diverse metropolitan areas in the world. For more information about the Department of Computer Science see our website at www.cs.toronto.edu. If you have any questions about the position, please contact recruit@cs.toronto.edu.

    Review of applications will begin on January 11, 2021, however the position will remain open until January 28, 2021.

    Closing date for applications:

    Contact:

    Eitan Grinspun, recruit@cs.toronto.edu

    More information: https://jobs.utoronto.ca/job/Toronto-Assistant-Professor-Security-and-Cryptography-ON/543569117/

    Expand

    14 January 2021

    CECC: Central European Conference on Cryptology
    Debrecen, Hungary, 23 June - 25 June 2021
    Event Calendar Event Calendar
    Event date: 23 June to 25 June 2021
    Submission deadline: 11 April 2021
    Notification: 30 January 2021
    Expand
    HOST: IEEE International Symposium on Hardware Oriented Security and Trust
    Washington, USA, 5 December - 8 December 2021
    Event Calendar Event Calendar
    Event date: 5 December to 8 December 2021
    Submission deadline: 25 March 2021
    Notification: 27 May 2021
    Expand
    Senior Cryptanalyst - Public Key Cryptography
    Technology Innovation Institute (TII) - Abu Dhabi, UAE
    Job Posting Job Posting

    Cryptography Research Centre


    In our connected digital world, secure and reliable cryptography is the foundation of digital information security and data integrity. We address the world’s most pressing cryptographic questions. Our work covers post-quantum cryptography, lightweight cryptography, cloud encryption schemes, secure protocols, quantum cryptographic technologies and cryptanalysis.

    As a Cryptanalyst - Public Key Cryptography, you will:

  • Analyze, evaluate and target any weaknesses security systems which range from single asymmetric crypto-primitives to entire protocols, from classical to post-quantum schemes.
  • Conduct research, with particular focus on how to use automated tools such as algebraic and constraint solvers and machine learning to perform theoretical and practical cryptanalysis of asymmetric schemes.
  • Develop mathematical and statistical models to analyze and solve security data problems.
  • Collaborate with skillful software, hardware, and telecommunication engineers.
  • Work with latest software and test your code on state-of-the-art High-Performance Devices.
  • Attend personalized in-house trainings with top cryptographers and international conferences and workshops.
  • Enjoy all the cultural, educational and travel opportunities Abu Dhabi offers

    - Your personal dream could be the world's reality -

    To bring your dream to life, you'll need some of the followings:

  • PhD degree in Cryptography, Applied Cryptography, Information Theory and Mathematics, Computer Science or any relevant Engineering degree.
  • Extensive experience in theoretical and practical cryptanalysis
  • Valuable publications in the field of cryptanalysis
  • Extensive knowledge of side-channel attacks.
  • Deep understanding of various hardware security vulnerabilities and threats.
  • Extensive experience developing in various programming languages.
  • A passion for solving complex puzzles

    Duration: Permanent position

    Closing date for applications:

    Contact:

    Mehdi Messaoudi
    Talent Acquisition Manager
    mehdi.messaoudi@tii.ae

    More information: https://tii.ae/

    • Expand
    Post-Docs
    Academia Sinica, Taipei, Taiwan
    Job Posting Job Posting
    Multiple Post-Docs in Post-Quantum Cryptography

    Academia Sinica, at the very edge of Taipei, is the national research institute of Taiwan.

    Here we have an active group of cryptography researchers, including Dr. Bo-Yin Yang, Dr. Kai-Min Chung, and Dr. Tung Chou, covering wide research topics in cryptography and actively collaborating with researchers from related research areas such as program verification.

    We are looking for Post-Docs in PQC (Post-Quantum Cryptography). Here PQC is broadly defined. Starting date is early 2021, for terms of 1 year, renewable.

    Potential PQC research topics include cryptanalysis, implementation, and theory. Bo-Yin is in particular interested in people who have hands on experience with the design, implementation and/or analysis of cryptosystems submitted to NIST\'s post-quantum standardization project, and Kai-Min is looking for people interested in theoretical aspects of Post-Quantum Cryptography, such as security in the QROM model and novel (post-)quantum primitives and protocols. We are also particularly interested in people with diverse background to facilitate collaboration among our group members.

    Requires background in mathematics, computer science and cryptography. We desire a research track record in some aspects of post-quantum cryptography, but are especially looking for researchers with a broad research spectrum going from mathematical aspects to the practical side such as implementation aspects.

    We offer about 2200 USD (~2000 EUR) per month (commensurate with what a starting assistant professor makes locally) in salary and include a 5000 USD per year personal academic travel budget.

    Closing date for applications:

    Contact:

    Bo-Yin Yang by at crypto dot tw
    Kai-Min Chung at kmchung at iis dot sinica dot edu dot tw

    Expand
    Research Fellow
    Queen’s University Belfast, UK
    Job Posting Job Posting
    Applications are invited for a 2 year Post-Doctoral Research Fellow position to conduct research into the design and implementation of practical, robust and physically secure post-quantum cryptographic architectures. The research will contribute to projects being undertaken on hybrid quantum/post-quantum cryptographic solutions. This research is part of the £24M Quantum Communications Hub project.

    Closing date for applications:

    Contact: For full job details and criteria please see the Candidate Information link on our website by clicking ‘apply’. For further information please contact Resourcing Team, Queen's University Belfast, BT7 1NN. Telephone (028) 9097 3044 or email resourcing@qub.ac.uk .

    More information: https://hrwebapp.qub.ac.uk/tlive_webrecruitment/wrd/run/ETREC107GF.open?VACANCY_ID=652082E9Ng&WVID=6273090Lgx&LANG=USA

    Expand
    PhD student: Security and Robustness of Machine Learning
    Karlsruhe Institute of Technology (KIT)
    Job Posting Job Posting

    The position is fully funded with the German salary level TV-L 13 (100%) and should be filled at the soonest possible date. In the beginning, the position is limited to 18 months, but we offer the possibility of funding the entire duration of the PhD.

    Application up to: January 17th 2021
    https://intellisec.de/jobs/phd-2021b-en.html

    Research

    The "Intelligent System Security" research group works on the application of machine learning in the area of computer security. We develop learning-based methods for attack detection on different levels or the discovery of vulnerabilities in software and embedded devices. Another central and very important subject of our research is the robustness and security of machine learning methods themselves. Here, we are particularly looking for reinforcement.

    Your Profile

    You have a Diploma or Master's degree in computer science or any related field. You also require very good knowledge in machine learning and ideally computer security. Above all, however, you need to show enthusiasm for conducting research on cutting-edge topics in machine learning and computer security.

    Field of Work

    Possible research topics include, but are not limited to:

    • Secure and robust learning methods
    • Attacks against learning-based systems
    • Robust learning on limited hardware (e.g., embedded systems, IoT)
    • Explainability of machine learning in computer security
    Application

    Details on the application process can be found at https://intellisec.de/jobs/phd-2021b-en.html

    We strive for a diverse research team and ask people from all nations to join us. Moreover, qualified women are strongly encouraged to apply. Disabled persons with equivalent aptitude will be favored.

    Closing date for applications:

    Contact: Christian Wressnegger (https://intellisec.de/jobs/)

    More information: https://intellisec.de/jobs/phd-2021b-en.html

    Expand
    Academic Staff: Reader/Senior Lecturer
    The Information Security Group, Royal Holloway University of London
    Job Posting Job Posting
    Applications are invited for the post of Reader/Senior Lecturer in the Information Security Group
    Applications are invited from researchers whose interests are related to, or complement, current strengths of the ISG. We are particularly interested in applicants with outstanding research achievements and/or potential in the area of Systems and Software Security; and who are able to teach and help manage, computer, network and software security subjects at undergraduate and postgraduate level.
    Applicants should have a Ph.D. in a relevant subject or equivalent, be a self-motivated researcher, and have a strong publication record. Applicants should be able to demonstrate an enthusiasm for teaching and communicating with diverse audiences, as well as show an awareness of contemporary issues relating to cyber security.
    In return we offer a highly competitive rewards and benefits package including:
    Generous annual leave entitlement Training and Development opportunities Pension Scheme with generous employer contribution Various schemes including Cycle to Work, Season Ticket Loans and help with the cost of Eyesight testing. Free parking
    The post is based in Egham, Surrey where the College is situated in a beautiful, leafy campus near to Windsor Great Park and within commuting distance from London.
    To view further details of this post and to apply please visit https://jobs.royalholloway.ac.uk. For queries on the application process the Human Resources Department can be contacted by email at: recruitment@rhul.ac.uk
    Please quote the reference: 1220-277 Closing Date: Midnight, 28 February 2021 Interview Date: March 2021 (date TBC)

    Closing date for applications:

    Contact: Informal enquiries to Keith Mayes keith.mayes@rhul.ac.uk

    More information: https://jobs.royalholloway.ac.uk.

    Expand
    Post-Doc, Hardware Cryptography and FPGAs
    Yale University, Electrical Engineering
    Job Posting Job Posting
    We have an opening for a post-doctoral researcher for our projects on hardware implementation of cryptographic algorithms, focusing on post-quantum crypto. Expected start date in spring or summer 2021.

    Closing date for applications:

    Contact: Prof. Jakub Szefer

    More information: https://caslab.csl.yale.edu/jobs/

    Expand
    Postdoctoral researcher: IT-Security
    Karlsruhe Institute of Technology (KIT)
    Job Posting Job Posting

    The position is fully funded with the German salary level TV-L 13/14 (100%), should be filled at the soonest possible date, and is limited to two years. Extending the contract beyond the initial duration is possible.

    Application up to: January 17th 2021
    https://intellisec.de/jobs/postdoc-2021-en.html

    Research

    The "Intelligent System Security" research group works on the application of machine learning in the area of computer security. In particular, we develop methods in the area of application security and system security, as for instance, attack detection or vulnerability discovery in software and embedded devices. Also, the robustness, security, and interpretability of machine learning methods are central to our research.

    Your Profile

    You have an exceptional doctorate degree, do nationally and internationally visible research (via respective publications), and strive for distinguishing yourself in a leading role. Next to research in IT-Security (e.g., network security, web security, vulnerability discovery, malware analysis, ...) you are required to have an interest in learning-based systems. Above all, however, you need to show enthusiasm for conducting research on cutting-edge topics in IT-Security and be willing to collaborate within the "Competence Center for Applied Security Technology" (KASTEL).

    Field of Work

    Area of responsibility:

    • Coordination of research efforts in the "Competence Center for Applied Security Technology" (KASTEL)
    • Independent research in the field of IT-Security germane/complementary to the research profile of the "Intelligent System Security" research group.
    Application

    Details on the application process can be found at https://intellisec.de/jobs/postdoc-2021-en.html

    We strive for a diverse research team and ask people from all nations to join us. Moreover, qualified women are strongly encouraged to apply. Disabled persons with equivalent aptitude will be favored.

    Closing date for applications:

    Contact: Christian Wressnegger (https://intellisec.de/jobs/)

    More information: https://intellisec.de/jobs/postdoc-2021-en.html

    Expand
    PhD student: Computer Security and Machine Learning
    Karlsruhe Institute of Technology
    Job Posting Job Posting

    The position is fully funded with the German salary level TV-L 13 (100%) and should be filled at the soonest possible date. In the beginning, the position is limited to 18 months, but we offer the possibility of funding the entire duration of the PhD.

    Application up to: January 17th 2021
    https://intellisec.de/jobs/phd-2021a-en.html

    Research

    The "Intelligent System Security" research group works on the application of machine learning in the area of computer security. In particular, we develop methods in the area of application security and system security, as for instance, attack detection or vulnerability discovery in software and embedded devices. Also, the robustness, security, and interpretability of machine learning methods are central to our research.

    Your Profile

    You have a Diploma or Master's degree in computer science or any related field. You also require very good knowledge in computer security and/or machine learning. Above all, however, you need to show enthusiasm for conducting research on cutting-edge topics in machine learning and computer security.

    Field of Work

    Possible research topics include, but are not limited to:

    • The analysis of attacks and malware using machine learning
    • Assisted discovery of vulnerabilities
    • Fuzz Testing (Fuzzing) using machine learning
    • Attacks against learning-based systems
    • Explainability of machine learning in computer security
    Application

    Details on the application process can be found at https://intellisec.de/jobs/phd-2021a-en.html

    We strive for a diverse research team and ask people from all nations to join us. Moreover, qualified women are strongly encouraged to apply. Disabled persons with equivalent aptitude will be favored.

    Closing date for applications:

    Contact: Christian Wressnegger (https://intellisec.de/jobs/)

    More information: https://intellisec.de/jobs/phd-2021a-en.html

    Expand
    ◄ Previous Next ►