SlideShare a Scribd company logo

Iteration ,randomness, and Zero-knowledge

Download as PPT, PDF
S
SohamSaha49

useful

Engineering
1 of 24
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
CSCI 3130: Formal languages and automata theory Andrej Bogdanov http://www.cse.cuhk.edu.hk/~andrejb/csc3130 The Chinese University of Hong Kong Interaction, randomness, and zero-knowledge Fall 2011
Iteration ,randomness, and Zero-knowledge
Authentication What happens when you type in your password?
Naïve authentication • The server knows your password • So they can impersonate you at other web sites where you use the same password login: chief password: 123456 OK you server acme.com
“Zero-knowledge” authentication acme.com Can you convince the server that you know your password, without saying it? I know the password Can you prove it?
What is knowledge? • Example 1: Tomorrow’s lottery numbers What is ignorance? (lack of knowledge) 2 31 12 7 28 11 We are ignorant of them because they are random
What is ignorance? • Example 2: A difficult homework problem Problem 4 (a) Show that P ≠ NP. (If you collect $1,000,000, give it to your CSCI 3130 instructor.) We are ignorant because it takes a lot of work to figure out the answer
Using ignorance to our advantage acme.com I know the password Prove it! You want to convince server you know the password, but you don’t want to reveal the password itself The server is convinced, but gains zero-knowledge! but I don’t want to say it!
I can convince you he is in there, without telling you where!
Zero-knowledge • I can convince you that I know where he is • But you have zero knowledge about how to find him!
A protocol for non-color-blindness • You want to convince me you are not color-blind I pull at random either a red ball or a blue ball and show it to you You say red or blue We repeat this 10 times If you got all the answers right, I am convinced you know red from blue
Interaction and knowledge • What knowledge did I gain from this interaction? I learned that you can tell red from blue But I also learned the colors of the balls in each glass Suppose I was color-blind Then I used you to gain some knowledge!
A different protocol box 1 box 2 I pull at random either a red ball or a blue ball and show it to you Each time, you say “same color as previous” or “different color from previous” We repeat 10 times If you got all the answers right, I am convinced you know red from blue But I did not gain any other knowledge!
Zero-knowledge • Suppose I am color-blind but you are not • In the first experiment, I cannot predict your answer ahead of time • In the second one, I know what you will say, so I do not gain knowledge when you say it
Zero-knowledge proofs acme.com Oded Goldreich Silvio Micali Avi Wigderson grrrrr!
Graph coloring Task: Assign one of 3 colors to the nodes so that every edge has different endpoints 3COL = {G: G has a valid 3-coloring} 3COL is NP-complete
GMW protocol: Choosing a password acme.com registration donald tsang chief@gmail.com chief@gmail.com your password will be a random string of colors = { , , }
GMW protocol: Commitment phase • Instead of sending the password to the server, you: 1 2 3 4 5 6 Construct a graph with vertices colored as in password Put some (random) edges between vertices of different colors Delete the colors of the vertices G donald tsang chief@gmail.com chief@gmail.com 1 2 3 4 5 6 1 2 3 4 5 6
GMW protocol: Commitment phase • Your real password is the coloring, which you hide from the server • You give the server a graph G that you know how to color, but the server doesn’t • Since 3COL is hard, the server shouldn’t be able to figure out your coloring (password) from G
GMW protocol: Login phase Randomly permute the colors Lock each of the colors in a box The server picks a random edge and asks for the keys to boxes You send the requested keys The server unlocks the two boxes and checks the colors are different Repeat 100 times. Login succeeds if colors always different 1 2 3 4 5 6 email password chief@gmail.com 1 2 3 4 5 6 Send the locked boxes to server ✔
GMW protocol: Security • Why can’t an impostor log in instead of you? 1 2 3 4 5 6 An impostor does not know how to color the graph Some edge will be colored improperly When the server asks to see this edge, impostor will be detected hello, I am ✘
GMW protocol: Zero-knowledge • Why doesn’t the server learn your password? 1 2 3 4 5 6 When you send the password, the server can only see some locked boxes The server then asks you to unlock some boxes Colors in the password were shuffled, so server will only see two random colors!
But how do you send boxes and keys over the internet?
Iteration ,randomness, and Zero-knowledge

More Related Content

PPT
CSS 332 : Algorithms - greedy Algorithms
SohamSaha49
 
PPT
CS 332 : Algorithms - Concept of NP Completeness
SohamSaha49
 
PPT
NFAs which recognize regularl languages.
SohamSaha49
 
PDF
Python: Strings & Intro Programming PDFs
SohamSaha49
 
PDF
Python: Strings & Intro Programming PDFs
SohamSaha49
 
PPTX
Pivot Tables summarize complex datasets.
SohamSaha49
 
PPTX
Excel Macros automate tasks you do often.
SohamSaha49
 
PDF
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
CSS 332 : Algorithms - greedy Algorithms
SohamSaha49
 
CS 332 : Algorithms - Concept of NP Completeness
SohamSaha49
 
NFAs which recognize regularl languages.
SohamSaha49
 
Python: Strings & Intro Programming PDFs
SohamSaha49
 
Python: Strings & Intro Programming PDFs
SohamSaha49
 
Pivot Tables summarize complex datasets.
SohamSaha49
 
Excel Macros automate tasks you do often.
SohamSaha49
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 

Recently uploaded (20)

PDF
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
PDF
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
PPTX
Artificial Intelligence
dikshendrasarpate2
 
PPT
Occupational Health and Safety Management System
Akshay Kant Mishra
 
PPTX
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
PDF
III.4.1.2_The_Space_Environment.p pdffdf
sittiporn2
 
PPTX
Fundamentals of safety and accident prevention -final (1).pptx
Palani kumar
 
PDF
COURSE DESCRIPTOR OF SURVEYING R24 SYLLABUS
MNANDITHACIVILSTAFF
 
PDF
EXPLORING LEARNING ENGAGEMENT FACTORS INFLUENCING BEHAVIORAL, COGNITIVE, AND ...
johnmathew9417
 
PDF
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
PDF
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
PDF
August 2025 - Top 10 Read Articles in Network Security & Its Applications
IJNSA Journal
 
PPTX
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
PDF
BIO-INSPIRED ARCHITECTURE FOR PARSIMONIOUS CONVERSATIONAL INTELLIGENCE : THE ...
ijaia
 
PPTX
communication and presentation skills 01
CdtAfrazAttaullah
 
PDF
Visual Aids for Exploratory Data Analysis.pdf
Ashutosh Satapathy
 
PDF
SMART SIGNAL TIMING FOR URBAN INTERSECTIONS USING REAL-TIME VEHICLE DETECTI...
Niraj Aarya
 
PPTX
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
PPTX
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
PPTX
Management Information system : MIS-e-Business Systems.pptx
ShankarGowda22
 
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
Artificial Intelligence
dikshendrasarpate2
 
Occupational Health and Safety Management System
Akshay Kant Mishra
 
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
III.4.1.2_The_Space_Environment.p pdffdf
sittiporn2
 
Fundamentals of safety and accident prevention -final (1).pptx
Palani kumar
 
COURSE DESCRIPTOR OF SURVEYING R24 SYLLABUS
MNANDITHACIVILSTAFF
 
EXPLORING LEARNING ENGAGEMENT FACTORS INFLUENCING BEHAVIORAL, COGNITIVE, AND ...
johnmathew9417
 
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
August 2025 - Top 10 Read Articles in Network Security & Its Applications
IJNSA Journal
 
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
BIO-INSPIRED ARCHITECTURE FOR PARSIMONIOUS CONVERSATIONAL INTELLIGENCE : THE ...
ijaia
 
communication and presentation skills 01
CdtAfrazAttaullah
 
Visual Aids for Exploratory Data Analysis.pdf
Ashutosh Satapathy
 
SMART SIGNAL TIMING FOR URBAN INTERSECTIONS USING REAL-TIME VEHICLE DETECTI...
Niraj Aarya
 
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
Management Information system : MIS-e-Business Systems.pptx
ShankarGowda22
 
Ad

Featured (20)

PDF
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
PDF
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
PDF
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
PDF
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
PDF
Everything You Need To Know About ChatGPT
Expeed Software
 
PDF
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
PDF
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
PDF
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
PDF
Skeleton Culture Code
Skeleton Technologies
 
PDF
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
PDF
Content Methodology: A Best Practices Report (Webinar)
contently
 
PPTX
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
PDF
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
PDF
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
PDF
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
PDF
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
PDF
Getting into the tech field. what next
Tessa Mero
 
PDF
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
PDF
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
PDF
Introduction to Data Science
Christy Abraham Joy
 
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Expeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
Skeleton Culture Code
Skeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
contently
 
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
Getting into the tech field. what next
Tessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
Introduction to Data Science
Christy Abraham Joy
 
Ad

Iteration ,randomness, and Zero-knowledge

  • 1. CSCI 3130: Formal languages and automata theory Andrej Bogdanov http://www.cse.cuhk.edu.hk/~andrejb/csc3130 The Chinese University of Hong Kong Interaction, randomness, and zero-knowledge Fall 2011
  • 3. Authentication What happens when you type in your password?
  • 4. Naïve authentication • The server knows your password • So they can impersonate you at other web sites where you use the same password login: chief password: 123456 OK you server acme.com
  • 5. “Zero-knowledge” authentication acme.com Can you convince the server that you know your password, without saying it? I know the password Can you prove it?
  • 6. What is knowledge? • Example 1: Tomorrow’s lottery numbers What is ignorance? (lack of knowledge) 2 31 12 7 28 11 We are ignorant of them because they are random
  • 7. What is ignorance? • Example 2: A difficult homework problem Problem 4 (a) Show that P ≠ NP. (If you collect $1,000,000, give it to your CSCI 3130 instructor.) We are ignorant because it takes a lot of work to figure out the answer
  • 8. Using ignorance to our advantage acme.com I know the password Prove it! You want to convince server you know the password, but you don’t want to reveal the password itself The server is convinced, but gains zero-knowledge! but I don’t want to say it!
  • 9. I can convince you he is in there, without telling you where!
  • 10. Zero-knowledge • I can convince you that I know where he is • But you have zero knowledge about how to find him!
  • 11. A protocol for non-color-blindness • You want to convince me you are not color-blind I pull at random either a red ball or a blue ball and show it to you You say red or blue We repeat this 10 times If you got all the answers right, I am convinced you know red from blue
  • 12. Interaction and knowledge • What knowledge did I gain from this interaction? I learned that you can tell red from blue But I also learned the colors of the balls in each glass Suppose I was color-blind Then I used you to gain some knowledge!
  • 13. A different protocol box 1 box 2 I pull at random either a red ball or a blue ball and show it to you Each time, you say “same color as previous” or “different color from previous” We repeat 10 times If you got all the answers right, I am convinced you know red from blue But I did not gain any other knowledge!
  • 14. Zero-knowledge • Suppose I am color-blind but you are not • In the first experiment, I cannot predict your answer ahead of time • In the second one, I know what you will say, so I do not gain knowledge when you say it
  • 15. Zero-knowledge proofs acme.com Oded Goldreich Silvio Micali Avi Wigderson grrrrr!
  • 16. Graph coloring Task: Assign one of 3 colors to the nodes so that every edge has different endpoints 3COL = {G: G has a valid 3-coloring} 3COL is NP-complete
  • 17. GMW protocol: Choosing a password acme.com registration donald tsang chief@gmail.com chief@gmail.com your password will be a random string of colors = { , , }
  • 18. GMW protocol: Commitment phase • Instead of sending the password to the server, you: 1 2 3 4 5 6 Construct a graph with vertices colored as in password Put some (random) edges between vertices of different colors Delete the colors of the vertices G donald tsang chief@gmail.com chief@gmail.com 1 2 3 4 5 6 1 2 3 4 5 6
  • 19. GMW protocol: Commitment phase • Your real password is the coloring, which you hide from the server • You give the server a graph G that you know how to color, but the server doesn’t • Since 3COL is hard, the server shouldn’t be able to figure out your coloring (password) from G
  • 20. GMW protocol: Login phase Randomly permute the colors Lock each of the colors in a box The server picks a random edge and asks for the keys to boxes You send the requested keys The server unlocks the two boxes and checks the colors are different Repeat 100 times. Login succeeds if colors always different 1 2 3 4 5 6 email password chief@gmail.com 1 2 3 4 5 6 Send the locked boxes to server ✔
  • 21. GMW protocol: Security • Why can’t an impostor log in instead of you? 1 2 3 4 5 6 An impostor does not know how to color the graph Some edge will be colored improperly When the server asks to see this edge, impostor will be detected hello, I am ✘
  • 22. GMW protocol: Zero-knowledge • Why doesn’t the server learn your password? 1 2 3 4 5 6 When you send the password, the server can only see some locked boxes The server then asks you to unlock some boxes Colors in the password were shuffled, so server will only see two random colors!
  • 23. But how do you send boxes and keys over the internet?