The Twist-AUgmented technique for key exchange

Olivier Chevassut 1 Pierre-Alain Fouque 2 Pierrick Gaudry 3, 4 David Pointcheval 2
3 SPACES - Solving problems through algebraic computation and efficient software
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
4 TANC - Algorithmic number theory for cryptology
LIX - Laboratoire d'informatique de l'École polytechnique [Palaiseau], Inria Saclay - Ile de France, X - École polytechnique, CNRS - Centre National de la Recherche Scientifique : UMR7161
Abstract : Key derivation refers to the process by which an agreed upon large random number, often named master secret, is used to derive keys to encrypt and authenticate data. Practitioners and standardization bodies have usually used the random oracle model to get key material from a Diffie-Hellman key exchange. However, formal proofs in the standard model require randomness extractors to formally extract the entropy of the random master secret into a seed prior to deriving other keys. Whereas this is a quite simple tool, it is not easy to use in practice ­or it is easy to misuse it­. In addition, in many standards, the acronym PRF (Pseudo-Random Functions) is used for several tasks, and namely the randomness extraction. While randomness extractors and pseudo-random functions are a priori distinct tools, we first study whether such an application is correct or not. We thereafter study the case of Zp where p is a safe-prime and the case of elliptic curve since in IPSec for example, only these two groups are considered. We present very efficient and provable randomness extraction techniques for these groups under the DDH assumption. In the special case of elliptic curves, we present a new technique --the so-called 'Twist-AUgmented' technique-- which exploits specific properties of some elliptic curves, and avoids the need of any randomness extractor. We finally compare the efficiency of this method with other solutions.
Type de document :
Communication dans un congrès
M. Yung, Y. Dodis, Kiayias, T. Malkin. 9th International Conference on Theory and Practice of Public Key Cryptology - PKC 2006, Apr 2006, New York, USA, Springer-Verlag, 3958, pp.410-426, 2006, Lecture notes in computer science
Liste complète des métadonnées

Littérature citée [25 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00103433
Contributeur : Pierrick Gaudry <>
Soumis le : mercredi 4 octobre 2006 - 13:32:02
Dernière modification le : jeudi 10 mai 2018 - 02:06:31
Document(s) archivé(s) le : mardi 6 avril 2010 - 18:07:06

Fichier

Identifiants

  • HAL Id : inria-00103433, version 1

Citation

Olivier Chevassut, Pierre-Alain Fouque, Pierrick Gaudry, David Pointcheval. The Twist-AUgmented technique for key exchange. M. Yung, Y. Dodis, Kiayias, T. Malkin. 9th International Conference on Theory and Practice of Public Key Cryptology - PKC 2006, Apr 2006, New York, USA, Springer-Verlag, 3958, pp.410-426, 2006, Lecture notes in computer science. 〈inria-00103433〉

Partager

Métriques

Consultations de la notice

378

Téléchargements de fichiers

208