Encryption with broadcast-only server-timed release

From: Francois Grieu (fgrieu_at_francenet.fr)
Date: 08/28/04

• Next message: Jeff Williams: "Re: XOR without repeated key"
• Previous message: Douglas A. Gwyn: "Re: Focused sound"
• Next in thread: David Wagner: "Re: Encryption with broadcast-only server-timed release"
• Reply: David Wagner: "Re: Encryption with broadcast-only server-timed release"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 28 Aug 2004 13:48:31 +0200

Inspired by the bastract at <http://eprint.iacr.org/2004/211>,
I am wondering if a cryptosystem can be setup that achieves the
following "broadcast-only server-timed release":

- A trusted server is setup; it publishes parameters and
  public key PK, then regularly a "timed release" value
  TRp, with p increasing from 0, say each day. The server
  never receives any information.

- Encrypters can use PK and p to encrypt a message M to
  C = ENC(M,PK,p), and publish it independently of the
  server.

- Decrypters having obtained C can decipher it back into M
  only with the help of TRp when it is published, as
  M = DEC(C,PK,TRp) [preferably: that should work using
  any TRq for q>=p, rather than just TRp]

- PK and TRp have size sub-linear with the maximum value
  of p (if any).

Note: Without the latest criterion, any public key encryption
system deemed safe in the future will do: just generate
in advance a number of public/private key pairs, agregate the
public keys into PK, release one secret key each day as TRp.

Note: the "any TRq for q>=p" thing makes it more difficult
to guess which message a receiver is decrypting by observing
the traffic from server to decrypter.

Any idea/pointer ?

   François Grieu

• Next message: Jeff Williams: "Re: XOR without repeated key"
• Previous message: Douglas A. Gwyn: "Re: Focused sound"
• Next in thread: David Wagner: "Re: Encryption with broadcast-only server-timed release"
• Reply: David Wagner: "Re: Encryption with broadcast-only server-timed release"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: TIPS FOR THE NEWCOMER ... As long as the private key is readable by the ssh client when it comes ... When the ssh client connects to the server, ... private key which matches the public key. ... (SSH) Re: Encryption with broadcast-only server-timed release ... > key corresponding to identity p, as generated by the server. ... TRp, with p increasing from 0, say each day. ... any public key encryption ... (sci.crypt) Cryptography and Site Security: Please critique my security idea ... get direct access to the server whether ... The public key for each user's private key is stored on an internal ... upload the public keys in to applciation memory. ... this now decrypted key "A" will be used to decrypt the ... (sci.crypt) Re: Debian SSH server configuration ... I would like to configure a Debian server to only allow clients to ssh ... I don't want any client computers to be able to ssh into ... It sounds like what you are asking for is host based authentication, ... where the server check to make sure that it has the host public key ... (Debian-User) Re: Security - ciphers - autentification ... is a web server on the firewall or on a trusted, ... firewall. ... > throw filrewall (and process 'real' autentification). ... Communication with services is done by public key ... (SecProg)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint