Repeated Games for Generating Randomness in Encryption

IEEE J. Sel. Areas Inf. Theory

2022

Section: Introductionmentioning

confidence: 99%

Perfectly Secure Message Transmission Against Rational Adversaries

Fujita

IEEE J. Sel. Areas Inf. Theory

2022

“…Since then, rational secret sharing has been intensively studied [1,19,31,32,4,12,30]. Moreover, there have been many studies using game-theoretic analysis of cryptographic primitives/protocols, including two-party computation [3,21], leader election [20,2], Byzantine agreement [22], consensus [26], public-key encryption [40,42], delegation of computation [5,23,7,24,8,28], and protocol design [16,17]. Among them, several works [22,5,23,24,16] used the rationality of adversaries to circumvent the impossibility results.…”

Section: Introductionmentioning

confidence: 99%

Perfectly Secure Message Transmission Against Rational Timid Adversaries

Fujita

Lecture Notes in Computer Science

2018

Self Cite

Secure Message Transmission (SMT) is a two-party cryptographic protocol by which the sender can securely and reliably transmit messages to the receiver using multiple channels. An adversary for SMT can corrupt a subset of the channels and make eavesdropping and tampering over the channels. In this work, we introduce a game-theoretic security model for SMT in which adversaries have some preferences for the protocol execution. We define rational "timid" adversaries who prefer to violate the security requirements, but do not prefer the tampering to be detected. Such adversaries could arise since they may fear losing their corrupted channels for which they needed some cost or risks. First, we consider the basic setting in which a single adversary attacks the protocol. We show that, even if all but one of the channels are corrupted, we can construct perfect SMT protocols against rational adversaries. In the traditional cryptographic setting, perfect SMT can be constructed only when the adversary corrupts a minority of the channels. Our results demonstrate a way of circumventing the cryptographic impossibility results by a game-theoretic approach. Next, we study the setting in which all the channels can be corrupted by multiple adversaries who do not cooperate. Since we cannot hope for any security if a single adversary corrupts all the channels or multiple adversaries cooperate maliciously, the scenario can arise from a gametheoretic model. We present several perfect SMT protocols, including a non-interactive protocol based on the idea of cheater-identifiable secret sharing. We also study the scenario in which both malicious and rational adversaries exist.

show abstract

Perfectly Secure Message Transmission Against Independent Rational Adversaries

Lecture Notes in Computer Science

2019