Question: URGENT SOLUTION REQUIRED COURSE: Information security aur topic cryptography 1. Public-Key Encryption (25 points) Let (Gen, Enc, Dec) be a public-key encryption that is (2n/5,2n/5)-ciphertext-indistinguishability

URGENT SOLUTION REQUIRED COURSE: Information security aur topic cryptography 1. Public-Key

URGENT SOLUTION REQUIRED

COURSE: Information security aur topic cryptography

1. Public-Key Encryption (25 points) Let (Gen, Enc, Dec) be a public-key encryption that is (2n/5,2n/5)-ciphertext-indistinguishability secure for encrypting a single bit. That is, for every adversary A of complexity at most 2n/5 it holds that (sk,pk)GenPr[A(pk,Encpk(0))=1](skpk)GenPr[A(pk,Encpk(1))=1]2n/5. (a) Prove that (Gen, Enc, Dec) is (2n/10,2n/10)-CPA secure. (Hint: use the fact that every message is just a single bit.) Since (Gen, Enc, Dec) is limited to single-bit messages, we construct a public-key encryption scheme (Gen', Enc', Dec') for length- binary messages in the following way. - The keys are generated in the same way, i.e., Gen' = Gen. - To encrypt a length- message m=(m1,,m) where mi{0,1}, compute Enc Ek (m):= (Encpk(m1),,Encpk(m)). - To decrypt a ciphertext c=(c1,,cl), compute Decskr(c):=(Decsk(c1),,Decsk(cl)). Throughout, we assume that is polynomial in n (say, =n2 ). In class, we proved that (Gen', Enc', Dec') is (2n/10,2n/10)-ciphertext-indistinguishability secure for length- messages. In the rest of the question, our goal is to prove that (Gen', Enc', Dec') is CPA-secure (b) Let m0:=0101 and m1:=0110 be length- 4 binary messages, and consider the following game between you and a challenger. - The challenger samples keys (sk, pk) Gen', and a bit b{0,1}. The challenger sends you (pk, c:=Encpk(m) ). (Note that mb is encrypted using the new encryption scheme.) - The challenger also picks two random bits 0{0,1} and 1{0,1}, and sends (0,1) to you. - Your goal is to return Enc pk(b). That is, you are required to return an encryption of b using the old encryption scheme and with the same public key that the challenger generated. Explain how to win the game with probability 1. (c) Say that there exists an adversary A of complexity 2n/20 that breaks the CPA-security of (Gen', Enc', Dec ) on length- messages with advantage 2n/20. Construct an adversary B of complexity 2n/1010 that breaks the ciphertext-indistinguishability of (Gen', Enc , Dec ) on CPA secure for length- 4 messages. (Hint: choose the length- 4 messages m0:=(0101) and m1:=(0110).)

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Urgent Solution Required COURSE: Information security aur topic cryptography 3. Fun with Primes ( 20 points) Let p and q be primes, and let m=pq. Assume that p=3mod4 and q=3mod4, and that 2n1

URGENT SOLUTION REQUIRED. COURSE: Information security aur topic cryptography 5. Random Self Reducibility of QRm (10 points) We complete the proof of the random self reducibility of QRm from the...

urgent solution required!! Course: Software engineering concepts Question No. 4: Let you are developing and design User Interface (UI) for a Student Information System (SIS) like CUOnline. How you...

urgent solution required!!!! Course: Software engineering concept Question No. 1: Briefly answer the following short questions. Each answer should not exceed 5-6 lines. Part I: Software Requirement...

Urgent solution requiredd!!! Course: software engineering concepts Question No. 2: Do as directed. a). Keeping in view the requirements given in the following short scenario, you are supposed to...

Analyze a situation and determine if the project team should use a traditional, hybrid, or agile approach. Assignment A local university needs to develop an app to provide real-time information to...

Problem 3 a ) Compute by hand k f u k , and k m for members a and b using E = 2 9 , 0 0 0 ksi, I = 1 5 0 i n 4 , and A = 4 i n 2 . To help standardize the grading, orient all the members such that...

urgent solution required You are to consider the potential circular slip surface, being the arc subtended by the angle and centred at point C marked in Fig . 2 . 1 . Perform a slope stability...

Now that you have an idea of what project you may want to develop for the experiential learning portion of this class, please take the time to describe the project completely and why you chose the...

Physostigmine, an alkaloid obtained from a West African plant, is used in the treatment of glaucoma. Treatment of physostigmine with methyl iodide gives a quaternary ammonium salt. What is the...

A force F = 20N is located just to the left of point C, and a moment of M = 40Nm is applied to the entire beam. If a = 7m, determine the internal normal force, shear force, and bending moment at...

Amy and Jeff Barnes will operate their florist shop as a partnership or as an S corporation. After paying salaries of $ 4 5 , 0 0 0 to each of the owners, the shop's annual earnings are projected to...

C++ Programming Assignment. Define a boolean valued function named is_sorted that takes two parameters, an integer array named a and an integer named n that indicates how much of the array is filled...

3. (For students who were assigned Chapter 31) Assume that, without taxes, the consumption schedule for an economy is as shown below: LO33.1 a. Graph this consumption schedule. What is the size of...

5. Refer to the table for Waxwania in problem 4. Suppose that Waxwania is producing $600 of real GDP, whereas the potential real GDP (or full-employment real GDP) is $700. How large is its budget...

4. Last year, while an economy was in a recession, government spending was $595 billion and government revenue was $505 billion. Economists estimate that if the economy had been at its...