Paper 1998/001

On Protocol Divertibility

Gerrit Bleumer

Abstract

In this paper, we establish the notion of divertibility as a protocol property as opposed to the existing notion as a language property (see Okamoto, Ohta). We give a definition of protocol divertibility that applies to arbitrary 2-party protocols and is compatible with Okamoto and Ohta's definition in the case of interactive zero-knowledge proofs. Other important examples falling under the new definition are blind signature protocols. A sufficient criterion for divertibility is presented and found to be satisfied by many examples of protocols in the literature. The generality of the definition is further demonstrated by examples from protocol classes that have not been considered for divertibility before. We show diverted El-Gamal encryption and diverted Diffie-Hellman key exchange.

Metadata
Available format(s)
PS
Publication info
Published elsewhere. Appeared in the THEORY OF CRYPTOGRAPHY LIBRARY and has been included in the ePrint Archive.
Keywords
protocolsinteractive proofsproofs of knowledgesignatureskey exchange
Contact author(s)
bleumer @ research att com
History
1998-01-08: received
Short URL
https://ia.cr/1998/001
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:1998/001,
      author = {Gerrit Bleumer},
      title = {On Protocol Divertibility},
      howpublished = {Cryptology ePrint Archive, Paper 1998/001},
      year = {1998},
      note = {\url{https://eprint.iacr.org/1998/001}},
      url = {https://eprint.iacr.org/1998/001}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.