Highest Voted Questions - Cryptography Stack Exchange

12

votes

5 answers

Choose a random number that is different from a bunch of other secret numbers

I'm looking for an algorithm where n participants each have a different secret number between $[0..x]$ (and where $x$ is known) and where the participants then select randomly another, non-secret, number between $[0..x]$ which must not clash with…

asked Jun 17 '14 at 15:55

Cedric Martin

445
4
11

12

votes

1 answer

Why does the PKCS1 RSA private key structure contain more than just exponent and modulus?

The ASN.1 spec for the PKCS1 RSA private key format is as follows: RSAPrivateKey ::= SEQUENCE { version Version, modulus INTEGER, -- n publicExponent INTEGER, -- e privateExponent INTEGER, -- d prime1 …

asked Jan 24 '12 at 13:01

user1449

12

votes

3 answers

How to prove identity without revealing identity

Let us say Alice publishes a book under the name of Claire. The book becomes wildly popular and now Bob comes along, claiming to be Claire, to reap all the success. How does Alice prove that she wrote the book (and Bob did not) as Claire without…

asked May 31 '14 at 23:06

Thomas Arildsen

221
2
5

12

votes

2 answers

Generating Encryption Keys from Biometric Fingerprint Templates

How would one go about generating Encryption Keys from Biometric Fingerprint Templates extracted from a fingerprint using either Griaule SDK or DigitalPersona SDK or any other SDK that will return the fingerprint template in either ISO or ANSI…

asked May 24 '14 at 21:16

Joseph

221
2
7

12

votes

3 answers

Is it possible to create an asymmetric cryptosystem where the private keys are not easily verifiable as such?

Plaintext that consists of an RSA key is easily recognizable as such, because it satisfies certain mathematical properties, in particular (See the answer for Why can an encrypted private key be brute forced?): $$d = e^{-1} \mod (p-1)(q-1).$$ Is it…

asked Jul 18 '11 at 10:21

Ben Page

223
1
5

12

votes

2 answers

in Bilinear pairings, what is the difference between Type 2 and Type 3?

in Bilinear pairings, what is the difference between Type 2 and Type 3? I understand in Type 2, there exists an efficiently computable homomorphic function $\phi : G_2 \rightarrow G_1$ , which is not present in Type 3 pairings. But what I don't…

asked May 01 '14 at 15:35

Subhayan

428
3
11

12

votes

3 answers

difference between leveled FHE and normal FHE scheme

What is/are difference/s between leveled Fully Homomorphic Encryption and normal Fully Homomorphic Encryption?

homomorphic-encryption

asked Apr 24 '14 at 17:33

user2771151

317
2
7

12

votes

3 answers

How vulnerable is the C rand() in public cryptography protocols?

I just learned about the basics of public cryptography a few weeks ago and I am curious as to why the C rand() function should not be used for crypto schemes. For example, say I want to generate a private key using the C rand() function, along with…

asked Apr 18 '14 at 21:15

jeffrey

221
1
2
3

12

votes

1 answer

Block cipher and parity of permutation

Can anyone explain the following text passage to me? Most real-world block ciphers build even permutations, because it's hard to build odd ones using small operations (32 bit) on larger (128 bit) block size. I don't understand the connection…

asked Apr 15 '14 at 14:47

RomeoAndJuliet

175
1
6

12

votes

2 answers

Will repeated rounds of SHA-512 provide random numbers?

If I hash a keyword with SHA-512 and then feed the output as the key for the next round ....and keep repeating this process, will I gather a stream of random numbers?

hash

asked Apr 09 '14 at 08:36

user2256790

433
4
12

12

votes

1 answer

For a one-time pad, which MAC method is information-theoretically secure?

In the the main post about MAC methods it mentions a few methods: Authenticate And Encrypt: The sender computes a MAC of the plaintext, encrypts the plaintext, and then appends the MAC to the ciphertext. Authenticate Then Encrypt: The sender…

asked Apr 04 '14 at 13:24

lightspeeder

368
2
9

12

votes

4 answers

Can I determine if a user has the wrong symmetric encryption key?

We're using the Objectivity/DB object database with a custom encryption plugin that encrypts serialized objects on disk. Encryption uses AES with a shared secret key held by all users. I would like to be able to provide some guidance to users if…

asked Dec 19 '11 at 18:19

Barry Wark

223
2
6

12

votes

2 answers

How can I create an RSA modulus for which no one knows the factors?

It's easy to create an RSA modulus where almost no one knows the factors: for example, I can generate two 1024-bit primes $p$ and $q$ and set $n=pq$. If I publish $n$, I will be the only person in the world who knows, or can know, $p$ and $q$. …

factoring

asked Mar 16 '14 at 03:42

Fixee

4,158
2
25
39

12

votes

1 answer

Can one efficiently iterate valid bcrypt hash output values?

bcrypt is an intentionally slow hash algorithm. In my last protocol idea, I wanted to use it to expand a password and then only transfer the bcrypt-hashed password. An efficient attack on this would be an ability to iterate all bcrypt hashes (or…

asked Jul 16 '11 at 13:31

Paŭlo Ebermann

22,656
7
79
117

12

votes

2 answers

How can I make my cipher show the avalanche effect?

I am a beginner in cryptography. I designed an password based encryption-decryption algorithm, which uses a random salt and a password to encrypt a message. I'm using SHA-512 for hashing, matrix operations for shuffling, bitwise XOR for mixing data…

asked Nov 28 '11 at 04:10

Avinash

131
1
4

Most Popular