论文信息 - Shared Generation of Shared Rsa Keys 1

Shared Generation of Shared Rsa Keys 1

The paper considers the problem of distributed key generation for shared-control RSA schemes. In particular: how can two parties generate a shared RSA key in such a way that neither party can cheat? The answer to this question would have signi cant applications to, for example, key escrow systems. Cocks has recently proposed protocols to solve this problem in the case when both parties act honestly. However, we show that the Cocks protocols [6] are insecure if a dishonest party actively deviates from the protocol. A new protocol which resists these active attacks is proposed.

[1] Silvio Micali,et al. How to play ANY mental game , 1987, STOC.

[2] A. Yao,et al. Fair exchange with a semi-trusted third party (extended abstract) , 1997, CCS '97.

[3] David Chaum,et al. Zero-Knowledge Undeniable Signatures , 1991, EUROCRYPT.

[4] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[5] Oded Goldreich,et al. Foundations of Cryptography (Fragments of a Book) , 1995 .

[6] Adi Shamir,et al. How to share a secret , 1979, CACM.

[7] David Chaum,et al. Demonstrating Possession of a Discrete Logarithm Without Revealing It , 1986, CRYPTO.

[8] Hugo Krawczyk,et al. Robust and Efficient Sharing of RSA Functions , 2000, Journal of Cryptology.

[9] Silvio Micali,et al. Proofs that yield nothing but their validity or all languages in NP have zero-knowledge proof systems , 1991, JACM.

[10] Paul C. van Oorschot,et al. On Diffie-Hellman Key Agreement with Short Exponents , 1996, EUROCRYPT.

[11] Silvio Micali,et al. Fair Public-Key Cryptosystems , 1992, CRYPTO.

[12] ord Cocks. Split Generation of RSA Parameters with Multiple Participants Cli , 1998 .

[13] Stanislav,et al. Robust and E cient Sharing of RSA FunctionsRosario , 1996 .

[14] Clifford C. Cocks. Split Knowledge Generation of RSA Parameters , 1997, IMACC.

[15] Amos Fiat,et al. How to Prove Yourself: Practical Solutions to Identification and Signature Problems , 1986, CRYPTO.