论文信息 - A nonrepudiable bitstring commitment scheme based on a public-key cryptosystem

A nonrepudiable bitstring commitment scheme based on a public-key cryptosystem

Commitment schemes are building blocks for guaranteeing fairness in higher-level cryptographic protocols such as mental poker protocols and others. A party Alice commits to a value v (a bit or a bitstring) without revealing it. Alice should not be able to cheat by opening the commitment as v' /spl ne/ v nor to deny having committed at all. Most commitment schemes in the literature rely on hash functions, which should be strongly collision-free for the scheme to be secure. Yet collision-freeness can only be empirically checked and cannot be met with total certainty. We present a commitment scheme which avoids hash functions by using a public-key cryptosystem instead.

Josep Domingo-Ferrer | Jordi Castellà-Roca

[1] Bruce Schneier,et al. Applied cryptography : protocols, algorithms, and source codein C , 1996 .

[2] Moni Naor,et al. Bit commitment using pseudorandomness , 1989, Journal of Cryptology.

[3] Silvio Micali,et al. Practical and Provably-Secure Commitment Schemes from Collision-Free Hashing , 1996, CRYPTO.

[4] Bart Preneel,et al. The State of Cryptographic Hash Functions , 1998, Lectures on Data Security.

[5] Ivan Damgård,et al. On the Existence of Statistically Hiding Bit Commitment Schemes and Fail-Stop Signatures , 1993, CRYPTO.

[6] Moni Naor,et al. Bit Commitment Using Pseudo-Randomness , 1989, CRYPTO.

[7] Manuel Blum,et al. Coin flipping by telephone a protocol for solving impossible problems , 1983, SIGA.

[8] Paul Douglas,et al. Proceedings International Conference on Information Technology: Coding and Computing , 2002, Proceedings. International Conference on Information Technology: Coding and Computing.