7. 全同態加密之應用
7.3 相等性驗證之應用
國
立 政 治 大 學
‧
N a tio na
l C h engchi U ni ve rs it y
46
7.3 相等性驗證之應用
相等性驗證所能推廣出來的應用相當廣泛,例如線上拍賣競標,線上商業談判,電 子投票,雲端資料庫計算,線上登入…等,都是可以利用此類技術加以解決,尤其是現 在資料庫系統的普及,使得儲存資料以及對資料進行分析已經是商業上面不可或缺的分 析工具時,我們應該對這些重要資料的安全風險更加謹慎,例如就商業面而言,我們可 以得知該項產品最終的總銷售數量,但卻無法得知該產品各月份的銷售量,這些對企業 來說,或許就是他們想要隱藏的秘密資訊,或是企業併購時,我們只可得知雙方對於此 併購金額上的共識相不相同,但是卻無法得知雙方希望買下或是賣出的金額。而我們在 7.1 以及 7.2 所提出的相等性驗證皆可以運用在以上我們所提供的應用上,並且讓其具 可行性且易於實行。
‧ 國
立 政 治 大 學
‧
N a tio na
l C h engchi U ni ve rs it y
47
8. 結論及未來展望
本研究最大的貢獻,是在於我們改良 Gentry 的全同態加密方案。讓加密所需要的公 鑰並不需要佔據太多的硬體空間或是資源,利用減少公鑰個數來達到降低所需空間,並 再資料隱私的情況下,同樣的進行對資料加密以及同態運算的正確性,並且與 Gentry 的全同態相比,我們降低公鑰所需空間使其易於實作,並且在安全性以及正確性上並不 會造成任何影響使其依舊保有其隱私性、正確性、安全性三項特點。
在未來,我們會針對所選取的集合 S 大小對應公鑰的數量來進行進一步的研究。雖然增 加集合 S 會使降低的公鑰數量更為明顯,但是在正確性以及安全性來說,可能會造成疑 慮。因此如何在兩端之間求出最佳的平衡數量是我們未來所要進一步研究的課題。
‧
[1]B.Applebaum, D.Cash, C.Peikert, and A.Sahai. Fast cryptographic primitives and circular-secure encryption based on hard learning problems. In CRYPTO2009, vol.5677 of LNCS, pp 595–618. Springer,2009.
[2]D.Boneh, E-J.Goh, and K.Nissim. Evaluating 2-DNF formulas on ciphertexts. In CRYPTO 2005, vol. 3378 of LNCS, pp 325–342, Springer,2005.
[3]D.Boneh, G. D Crescenzo,R.Ostrovsky, G.Persiano: Public key encryption with keyword search. In EUROCRYPT 2004., vol. 3027 of LNCS,pp. 506–522.Springer,2004.
[4]E. Biham, A.Shamir: Differential cryptanalysis of DES-like cryptosystems.In CRYPTO1990 : vol.4 of LNCS, pp. 2-21. Springer,1991.
[5]Z.Brakerski and V.Vaikuntanathan. Fully homomorphic encryption from ring-LWE and security for key dependent messages. In CRYPTO 2011, vol. 5677of LNCS,pp
505-524.Springer 2011.
[6]J.Coron, A.Mandal, D.Naccache, and M.Tibouchi. Fully-homomorphic encryption over the integers with shorter public-keys. In CRYPTO 2011, vol.6841 of LNCS, pp. 487-504.
Springer,2011
[7]N.Courtois, J.Pieprzyk, Cryptanalysis of block ciphers with overdefined systems of equations. In ASIACRYPT 2002,vol. 2501of LNCS, pp267–287.Springer 2002.
[8]S.Ciou and R.Tso A privacy preserved two-party equality testing protocol,In ICGEC 2011,pp.220-223,2011.
[9]T.ElGamal.A Public key cryptosystem and a signature scheme based on discrete logarithm.
In IEEEE Trans.Inform.Theory,vol.31,pp469-472,1985.
[10]M.van Dijk, C.Gentry, S.Halevi, and V.Vaikuntanathan. Fully homomorphic encryption
‧
over the integers. In EUROCRYPT’10, vol.6110 of LNCS, pp.24–43. Springer 2010.
[11]C.Gentry. A fully homomorphic encryption scheme. PhD thesis, Stanford University, 2009.crypto.stanford.edu/craig. available at:
https://docs.google.com/viewer?url=http%3A%2F%2Fcrypto.stanford.edu%2Fcraig%2Fcraig -thesis.pdf
[12]C.Gentry. Fully homomorphic encryption using ideal lattices. In STOC’09, pp 169–178.
ACM, 2009.
[13]C.Gentry and S.Halevi. Implementing gentry’s fully-homomorphic encryption scheme. In EUROCRYPT, vol.6632 of LNCS, pp 129–148. Springer, 2011.
[14]S.Goldwasser and S.Micali. Probabilistic encryption & how to play mental poker keeping secret all partial information.In STOC’82,pp365-377.ACM1982.
[15]Y.Ishai and A.Paskin. Evaluating branching programs on encrypted data. In TCC, vol.4392 of LNCS, pp 575–594. Springer, 2007.
[16]V.Lyubashevsky, C.Peikert, and O.Regev. On ideal lattices and learning with errors over rings. In EUROCRYPT, vol.6110 of LNCS, pp 1–23.Springer,2010.
[17]C.A.Melchor, P.Gaborit, and J.Herranz. Additively homomorphic encryption with -operand multiplications. In CRYPTO, vol.6223 of LNCS, pp 138–154. Springer, 2010.
[18]C.Peikert. Public-key cryptosystems from the worst-case shortest vector problem:
extended abstract. In STOC’09, pp 333–342. ACM, 2009.
[19]P.Paillier. Public-key cryptosystem based on composite degree residuocity classes.In EUROCRYPT1999.vol.1592 of LNCS,pp223-238. Springer,1999.
[20]O.Regev. On lattices, learning with errors, random linear codes, and cryptography. In STOC’05, pp 84–93. ACM, 2005.
[21]O.Regev. The learning with errors problem. In IEEE Conference on Computational
‧ 國
立 政 治 大 學
‧
N a tio na
l C h engchi U ni ve rs it y
50
Complexity, pp 191–204. IEEE Computer Society, 2010.
[22]R.Rivest,A.Shamir and L.Adleman.A method for obtaining digital signatures and public-key cryptosystem.In Commun’77,vol.21,pp120-126.ACM1977.
[23]Y.Tsiounis and M.Yung. On the security of ElGamal based encryption. In Public Key Cryptography 1998.vol.1431 of LNCS.pp117-134. Springer,1998.
[24]B.Waters: Efficient identity-based encryption without random oracles. In EUROCRYPT 2005. vol. 3494 of LNCS, pp. 114–127. Springer,2005.
[25]吳承鋒、陳漢光、左瑞麟 利用ElGamal加密的雙方相等性驗證協議 全國計算機會 議,pp183-191,2011.