[Busec] crypto course this semester

Ran Canetti canetti at tau.ac.il
Fri Jan 13 18:31:51 EST 2012

Hi All -

Wanted to abuse this mailing list to publicize the course I'm giving this 
semester. It's Tue-Thu 2-3:30 in room B67 in the sociology building
(Cummington 96-110, which is across the street from the CS building).
First lecture is this coming tuesday, Jan 17.

Some of  the classes will be given by guest speakers (Adam, Leo, Rachel.)


Here is a tentative syllabus:

week 1 -Zero Knowledge: The GMW protocol, sequential composition,
         Constant-round ZK.
week 2 -Impossibility for BB constant round public coins ZK, the Barak
week 3 -Non-Interactive ZK
week 4 -NIZK, CCA secure encryption from NIZK
week 5 -CCA secure encryption in the Random Oracle model  (Adam Oneil)
week 6 -Inditifation schemes and Random Oracle signatures (Leo Reyzin)
week 7 -Concurrent ZK
week 8 -NM commitments and ZK
week 9 -Secure multiparty computation: Intro, the GMW protocol
week 10 -the BGW protocol
week 11 -Notions of security: Basic, UC, composition theorems
week 12 -UC security of BGW, on the security of GMW
week 13 -UC commitments
week 14 -The CLOS protocol

On 12/9/2011 6:11 PM, Ran Canetti wrote:
> Hi All - This coming monday (9:30-11am at BU) we'll enjoy Dana yet again -
> this time she'll complete the trilogy with a presentation of Alwen and
> Peikert's paper:
> ****************************
> Title: Generating Shorter Bases for Hard Random Lattices
> Abstract:
> We revisit the problem of generating a ‘hard’ random lattice together with
> a basis of relatively short vectors. This problem has gained in importance
> lately due to new cryptographic schemes that use such a procedure to
> generate public/secret key pairs. In these applications, a shorter basis
> corresponds to milder underlying complexity assumptions and smaller key sizes.
> The contributions of this work are twofold. First, we simplify and
> modularize an approach originally due to Ajtai (ICALP 1999). Second, we
> improve the construction and its analysis in several ways, most notably by
> making the output basis asymptotically as short as possible.
> ****************************
> Best,
> Ran
> PS - This will be the last meeting of the year. We'll reconvene in January.
> On 12/04/2011 02:19 PM, Ran Canetti wrote:
>> Recall we're meeting tomorrow at MSR.
>> Best,
>> Ran
>> On 11/25/2011 5:10 PM, Ran Canetti wrote:
>>> There will be no meeting this monday. Next monday, Dec 5, Dana will recap
>>> the LWE-based IBE scheme from last week and continue to present the
>>> LWE-based functional encryption scheme. She will also present the
>>> Alwen-Peikert lattic sampling method, which is at the heart of above
>>> constructions.
>>> Ran

More information about the Busec mailing list