Online-Extractability in the Quantum Random-Oracle Model
نویسندگان
چکیده
We show the following generic result: When a quantum query algorithm in random-oracle model outputs classical value t that is promised to be some tight relation with H(x) for x, then x can efficiently extracted almost certainty. The extraction by means of suitable simulation random oracle and works online, meaning it straightline, i.e., without rewinding, on-the-fly, during protocol execution (almost) disturbing it. technical core our result new commutator bound bounds operator norm unitary describes evolution compressed (which used simulate above) measurement extracts x. two applications online extractability result. commit-and-open $$\Sigma $$ -protocols setting, we offer first complete post-quantum security proof textbook Fujisaki-Okamoto transformation, adjustments facilitate proof, including concrete bounds.
منابع مشابه
Secure Identity-Based Encryption in the Quantum Random Oracle Model
We give the first proof of security for an identity-based encryption scheme in the quantum random oracle model. This is the first proof of security for any scheme in this model that requires no additional assumptions. Our techniques are quite general and we use them to obtain security proofs for two random oracle hierarchical identity-based encryption schemes and a random oracle signature schem...
متن کاملRevisiting TESLA in the Quantum Random Oracle Model
We study a scheme of Bai and Galbraith (CT-RSA’14), also known as TESLA. TESLA was thought to have a tight security reduction from the learning with errors problem (LWE) in the random oracle model (ROM). Moreover, a variant using chameleon hash functions was lifted to the quantum random oracle model (QROM). However, both reductions were later found to be flawed and hence it remained unresolved ...
متن کاملImproved identification protocol in the quantum random oracle model
Boneh et al. [6] proposed an identification protocol in Asiacrypt 2011 that is secure in the classical random oracle model but insecure in the quantum random oracle model. This paper finds that a constant parameter plays a significant role in the security of the protocol and the variation of this parameter changes the security greatly. Therefore, an improved identification protocol that replace...
متن کاملQuantum Position Verification in the Random Oracle Model
We present a quantum position verification scheme in the random oracle model. In contrast to prior work, our scheme does not require bounded storage/retrieval/entanglement assumptions. We also give an efficient position-based authentication protocol. This enables secret and authenticated communication with an entity that is only identified by its position in space.
متن کاملShort Signatures in the Random Oracle Model
We study how digital signature schemes can generate signatures as short as possible, in particular in the case where partial message recovery is allowed. We give a concrete proposition named OPSSR that achieves the lower bound for message expansion, and give an exact security proof of the scheme in the ideal cipher model. We extend it to the multi-key setting. We also show that this padding can...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Lecture Notes in Computer Science
سال: 2022
ISSN: ['1611-3349', '0302-9743']
DOI: https://doi.org/10.1007/978-3-031-07082-2_24