International Association for Cryptologic Research

IACR News Central

Get an update on changes of the IACR web-page here. For questions, contact newsletter (at) iacr.org. You can also get this service via

To receive your credentials via mail again, please click here.

You can also access the full news archive.

Further sources to find out about changes are CryptoDB, ePrint RSS, ePrint Web, Event calender (iCal).

2013-11-06
18:12 [Job][New] PhD studentships, Royal Holloway, University of London, UK

  We will be awarding 10 fully-funded studentships (generous stipend and college fees for four years) to outstanding candidates to join the Royal Holloway Centre for Doctoral Training in Cyber Security in October 2014.

We will consider applications from candidates with undergraduate and masters\\\' qualifications in a wide range of disciplines, including, but not limited to, mathematics, computer science, and electrical and electronic engineering.

Please see the Entry Requirements at http://www.rhul.ac.uk/isg/cybersecuritycdt/entryrequirements.aspx and instructions on How to Apply at http://www.rhul.ac.uk/isg/cybersecuritycdt/howtoapply.aspx. Funding is provided by the EPSRC, and thus is subject to their eligibility conditions. For further details, please visit the CDT Funding page at http://www.rhul.ac.uk/isg/cybersecuritycdt/funding.aspx.

Closing date for receiving applications is the 30th March 2014. We will however assess applications on an ongoing basis, and we reserve the right to make an offer to outstanding candidates before the closing date.

14:47 [Job][New] PhD student, SnT, University of Luxembourg, Luxembourg

  The Interdisciplinary Centre for Security, Reliability and Trust (SnT, www.securityandtrust.lu) at University of Luxembourg is looking for a PhD candidate in privacy-preserving recommender systems. The PhD topic is related to investigate the privacy issues in recommender systems and propose efficient and secure mechanisms to achieve the maximum privacy. The candidate is expected to design new privacy-preserving recommender systems for both horizontally and vertically partitioned dataset, prove their privacy properties, and study their asymptotical performances.

The student will work closely with the team members of the APSIA group, led by Prof. Peter Y. A. Ryan. Moreover, the student will be encouraged to collaborate with researchers from the group of Prof. Jiuyong Li at University of South Australia (UniSA), Australia.

For informal inquiries please contact: Dr. Qiang Tang qiang.tang (at) uni.lu

To formally apply for this position: http://emea3.mrted.ly/9lwj





2013-11-05
07:43 [Job][New] Professor (Open Rank), Worcester Polytechnic Institute, MA, USA, below Canada

  Worcester Polytechnic Institute (WPI) invites applications for a faculty position in the Department of Electrical & Computer Engineering at all ranks, commensurate with qualifications.

Required qualifications for the position include; an earned Ph.D. in Electrical & Computer Engineering, or a closely related field. Areas of particular interest include, but are not limited to: security engineering, hardware and embedded systems security, and mobile and cyber-physical systems security.

The successful candidate will be expected to establish and maintain a high quality, self-sustaining research program. WPI offers ample opportunity for collaboration with current department faculty as well as appropriate cross-campus, interdisciplinary research groups in various topics in security. In addition to excellence in teaching and research, candidates should look forward to engaging undergraduate and graduate students in a classroom and projects intensive environment, and expanding our graduate research program.

Qualified applicants should submit a detailed curriculum vitae, a brief statement of specific teaching and research objectives, and four letters of recommendation at least one of which addresses teaching experience or potential, via https://careers.wpi.edu/. Review of applications will begin on November 1, 2013 and will continue until the position is filled.



2013-11-04
13:39 [Event][New] Joint MPIM and B-IT workshop on Number Theory and Cryptography

  From November 20 to November 21
Location: Bonn, Germany
More Information: http://cosec.bit.uni-bonn.de/students/events/mpimbit/


13:00 [Event][New] ASIACCS 2014: 9th ACM Symposium on Information, Computer and Communications Security

  Submission: 6 December 2013
Notification: 27 January 2014
From June 4 to June 6
Location: Kyoto, Japan
More Information: http://www2.nict.go.jp/nsri/fund/asiaccs2014/index.html


13:00 [Event][New] RFIDSec'14: The 10th Workshop on RFID Security

  Submission: 1 March 2014
Notification: 15 April 2014
From July 21 to July 23
Location: Oxford, United Kingdom
More Information: http://www.sigsac.org/wisec/WiSec2014/


04:17 [Pub][ePrint] Outsourced Symmetric Private Information Retrieval, by Stanislaw Jarecki and Charanjit Jutla and Hugo Krawczyk and Marcel Rosu and Michael Steiner

  In the setting of searchable symmetric encryption (SSE), a data owner D outsources a database (or document/file collection) to a remote server E in encrypted form such that D can later search the collection at E while hiding information about the database and queries from E. Leakage to E is to be confined to well-defined forms of data-access and query patterns while preventing disclosure of explicit data and query plaintext values. Recently, Cash et al presented a protocol, OXT, which can run arbitrary Boolean queries in the SSE setting and which is remarkably efficient even for very large databases.

In this paper we investigate a richer setting in which the data owner

D outsources its data to a server E but D is now interested to allow clients (third parties) to search the database such that clients learn the information D authorizes them to learn but nothing else while E still does not learn about the data or queried values as in the basic SSE setting. Furthermore, motivated by a wide range of applications, we extend this model and requirements to a setting where, similarly to private information retrieval, the client\'s queried values need to be hidden also from the data owner D even though the latter still needs to authorize the query. Finally, we consider the scenario in which authorization can be enforced by the data owner D without D learning the policy, a setting that arises in court-issued search warrants.

We extend the OXT protocol of Cash et al to support arbitrary Boolean queries in all of the above models while withstanding adversarial

non-colluding servers (D and E) and arbitrarily malicious clients,

and while preserving the remarkable performance of the protocol.





2013-11-03
22:17 [Pub][ePrint] A Secure Obfuscator for Encrypted Blind Signature Functionality, by Xiao Feng and Zheng Yuan

  This paper introduces a new obfuscation called obfuscation of encrypted blind signature. Informally, encrypted blind signature enable the message is blind to signer, and she couldn\'t distinguish two encrypted signatures by herself. A obfuscation of encrypted blind signature makes the process of encrypted blind signature unintelligible for any third party, while still keeps the original encrypted blind signature functionality. We use schnorr\'s blind signature scheme and linear encryption scheme as blocks to construct a new obfuscator. Moreover, we propose two new security definition: blindness w.r.t encrypted blind signature (EBS) obfuscator and one-more unforgeability(OMU) w.r.t EBS obfuscator, and prove them based on Decision Liner Diffie-Hellman(DL) assumption and the hardness of discrete logarithm, respectively. We also demonstrate that our obfuscator satisfies the Average-Case Virtual Black-Box Property(ACVBP) property w.r.t dependent oracle, it is indistinguishable secure. Our paper expand a new direction for the application of obfuscation.



22:17 [Pub][ePrint] NICV: Normalized Inter-Class Variance for Detection of Side-Channel Leakage, by Shivam Bhasin and Jean-Luc Danger and Sylvain Guilley and Zakaria Najm

  Side-Channel Attacks (SCA) are considered a serious threat against embedded cryptography. Therefore security critical chips must be tested for SCA resistance before deployment or certification. SCA are powerful but can need a lot of computation power, especially in the presence of countermeasures. The computation complexity of these attacks can be reduced by selecting a small subset of points where leakage prevails. In this paper, we propose a method to detect relevant leakage points in side-channel traces. The method is based on Normalized Inter-Class Variance (NICV). A key advantage of NICV over state-of-the-art is that NICV does neither need a clone device nor the knowledge of secret parameters of the crypto-system. NICV has a low computation requirement and it detects leakage using public information like input plaintexts or output ciphertexts only. It can also be used to test the efficiency of leakage models, the quality of traces and robustness of countermeasures. A theoretical rationale of NICV with practical application on real crypto-systems are provided to support our claims.



22:17 [Pub][ePrint] NTRU-KE: A Lattice-based Public Key Exchange Protocol, by Xinyu Lei and Xiaofeng Liao

  Public key exchange protocol is identified as an important application in the field of public-key cryptography. Most of the existing public key exchange schemes are Diffie-Hellman (DH)-type, whose security is based on DH problems over different groups. Note that there exists Shor\'s polynomial-time algorithm to solve these DH problems when a quantum computer is available, we are therefore motivated to seek for a non-DH-type and quantum resistant key exchange protocol. To this end, we turn our attention to lattice-based cryptography. The higher methodology behind our roadmap is that in analogy to the link between ElGamal, DSA, and DH, one should expect a NTRU lattice-based key exchange primitive in related to NTRU-ENCRYPT and NTRU-SIGN. However, this excepted key exchange protocol is not presented yet and still missing. In this paper, this missing key exchange protocol is found, hereafter referred to as NTRU-KE, which is studied in aspects of security and key-mismatch failure. In comparison with ECDH (Elliptic Curve-based Diffie-Hellman), NTRU-KE features faster computation speed, resistance to quantum attack, and more communication overhead. Accordingly, we come to the conclusion that NTRU-KE is currently comparable with ECDH. However, decisive advantage of NTRU-KE will occur when quantum computers become a reality.



22:17 [Pub][ePrint] Constructing Confidential Channels from Authenticated Channels---Public-Key Encryption Revisited, by Sandro Coretti and Ueli Maurer and Björn Tackmann

  The security of public-key encryption (PKE), a widely-used cryptographic primitive, has received much attention in the cryptographic literature. Many security notions for PKE have been proposed, including several versions of CPA-security, CCA-security, and non-malleability. These security notions are usually defined in terms of a certain game that an efficient adversary cannot win with non-negligible probability or advantage.

If a PKE scheme is used in a larger protocol, then the security of this protocol is proved by showing a reduction of breaking a certain security property of the PKE scheme to breaking the security of the protocol. A major problem is that each protocol requires in principle its own tailor-made security reduction. Moreover, which security notion of the PKE should be used in a given context is a priori not evident; the employed games model the use of the scheme abstractly through oracle access to its algorithms, and the sufficiency for specific applications is neither explicitly stated nor proven.

In this paper we propose a new approach to investigating the application of PKE, following the constructive cryptography paradigm of Maurer and Renner (ICS~2011). The basic use of PKE is to enable confidential communication from a sender A to a receiver B, assuming A is in possession of B\'s public key. One can distinguish two relevant cases: The (non-confidential) communication channel from A to B can be authenticated (e.g., because messages are signed) or non-authenticated. The application of PKE is shown to provide the construction of a secure channel from A to B from two (assumed) authenticated channels, one in each direction, or, alternatively, if the channel from A to B is completely insecure, the construction of a confidential channel without authenticity. Composition then means that the assumed channels can either be physically realized or can themselves be constructed cryptographically, and also that the resulting channels can directly be used in any applications that require such a channel. The composition theorem shows that several construction steps can be composed, which guarantees the soundness of this approach and eliminates the need for separate reduction proofs.

We also revisit several popular game-based security notions (and variants thereof) and give them a constructive semantics by demonstrating which type of construction is achieved by a PKE scheme satisfying which notion. In particular, the necessary and sufficient security notions for the above two constructions to work are CPA-security and a variant of CCA-security, respectively.