Presentation is loading. Please wait.

Presentation is loading. Please wait.

April 13, 2004 CS 551: CRyptography Applications Bistro Electronic National Lotteries Jessica Greer.

Published byReginald Frank Cross Modified over 9 years ago

Similar presentations

Presentation on theme: "April 13, 2004 CS 551: CRyptography Applications Bistro Electronic National Lotteries Jessica Greer."— Presentation transcript:

1 April 13, 2004 CS 551: CRyptography Applications Bistro Electronic National Lotteries Jessica Greer

2 April 13, 2004 CS 551: CRyptography Applications Bistro Agenda Large-scale electronic lotteries: What are they good for? (absolutely nothin’?) Requirements for electronic lottery systems Lotteries vs. Casinos Konstantinou’s protocol – does it meet the requirements?

3 April 13, 2004 CS 551: CRyptography Applications Bistro Large-scale E-Lotteries Advantages over mechanical systems: - Fast (high frequency) - Dynamic - Accessible - Efficient micropayment scheme

4 April 13, 2004 CS 551: CRyptography Applications Bistro Requirements Uniform distribution of generated numbers Unpredictable by anyone (even with access to history, audit logs) Unalterable – drawing and winner declaration Able to detect interference, errors (UK Lotto) Standardized, certifiable

5 April 13, 2004 CS 551: CRyptography Applications Bistro Requirements, cont’d.. Under regular scrutiny Details publicly available High availability Scalability

6 April 13, 2004 CS 551: CRyptography Applications Bistro Casinos vs. Lotteries Schneier’s solution: collaboration of gamblers for random number generation Lotteries: Users’ selections independent of one another

7 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview Initialization: Generator and verifier exchange keys for encryption, signature

8 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 1. Generator draws sequence of bits from TRNG for seeding

9 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 2. Generator executes bit-commitment protocol* on seed bit sequence * Seed commitment based on RSA encryption & RIPEMD-160 hashing 1. Generator draws sequence of bits from TRNG for seeding

10 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 2. Generator executes bit-commitment protocol* on seed bit sequence * Seed commitment based on RSA encryption & RIPEMD-160 hashing 3. Resulting packet sent to Verifier, which signs the commitment

11 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 3. Resulting packet sent to Verifier, which signs the commitment 4. Verifier sends generator a hash of file containing the coupons

12 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 4. Verifier sends generator a hash of file containing the coupons 5. Generator concatenates seed with hash value from Verifier* *State-stamping step – freezes coupons

13 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 5. Generator concatenates seed with hash value from Verifier 6. Generator feeds first part of original TRNG-generated bit sequence through Naor- Reingold function

14 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 6. Generator feeds first part of original TRNG-generated bit sequence through Naor- Reingold function 7. Resulting bit stream XORed with 2 nd part of initial seed; this result is sent through several pseudorandom number generators

15 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 7. Resulting bit stream XORed with 2 nd part of initial seed; this result is sent through several pseudorandom number generators 8. Generator opens initial random seed bits (de- commitment). Encrypts and signs seed & numbers; sends file to Verifier. Stops.

16 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 8. Generator opens initial random seed bits (de- commitment). Encrypts and signs seed & numbers; sends file to Verifier. Stops. 9. Verifier authenticates file, decrypts it, recovers winning numbers + seed used to generate them

17 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 9. Verifier authenticates file, decrypts it, recovers winning numbers + seed used to generate them 10. Verifier checks that Generator has committed to seed

18 April 13, 2004 CS 551: CRyptography Applications Bistro Protocol Overview 10. Verifier checks that Generator has committed to seed 10. Verifier uses seed to duplicate Generator’s tasks. If results match, finalize; if not, restart with Gen2

19 April 13, 2004 CS 551: CRyptography Applications Bistro Requirements Uniform distribution of generated numbers – TRNG’s + Naor-Reingold Unpredictable by anyone (even with access to history) - same Unalterable – drawing and winner declaration – Verifier auditing Able to detect interference, errors (UK Lotto) – Verifier auditing, audit logs Standardized, certifiable - ?

20 April 13, 2004 CS 551: CRyptography Applications Bistro Requirements, cont’d.. Under periodic scrutiny – alert function in case of discrepancies Details publicly available – paper… High availability – depends on hardware; some redundancy built-in Scalability - ?

21 April 13, 2004 CS 551: CRyptography Applications Bistro UK’s version http://www.national-lottery.co.uk/player/p/home/home.do

Download ppt "April 13, 2004 CS 551: CRyptography Applications Bistro Electronic National Lotteries Jessica Greer."

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
Web security: SSL and TLS

Web security: SSL and TLS
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
CS457 – Introduction to Information Systems Security Cryptography 1b Elias Athanasopoulos

CS457 – Introduction to Information Systems Security Cryptography 1b Elias Athanasopoulos
PGP Overview 2004/11/30 Information-Center meeting peterkim.

PGP Overview 2004/11/30 Information-Center meeting peterkim.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Evaluating Authenticated, DoS Resistant Key Exchange Protocols J.W. Pope CS 589 December 12, 2003.

Evaluating Authenticated, DoS Resistant Key Exchange Protocols J.W. Pope CS 589 December 12, 2003.
Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
Overview of Cryptography Oct. 29, 2002 Su San Im CS Dept. EWU.

Overview of Cryptography Oct. 29, 2002 Su San Im CS Dept. EWU.
ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.

ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.

Similar presentations

Ads by Google