How to break a practical MIX and design a new one

Authors:
Yvo Desmedt;Kaoru Kurosawa
Affiliations:
Department of Computer Science, Florida State University, Tallahassee, FL and Dept. of Mathematics, Royal Holloway, University of London, UK;Dept. of Electrical and Electronic Engineering, Faculty of Engineering, Tokyo Institute of Technology, Tokyo, Japan
Venue:
EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Year:
2000

Citing 19
Cited 45

A public key cryptosystem and a signature scheme based on discrete logarithms

Proceedings of CRYPTO 84 on Advances in cryptology
Non-malleable cryptography

STOC '91 Proceedings of the twenty-third annual ACM symposium on Theory of computing
How to break the direct RSA-implementation of mixes

EUROCRYPT '89 Proceedings of the workshop on the theory and application of cryptographic techniques on Advances in cryptology
Efficient anonymous channel and all/nothing election scheme

EUROCRYPT '93 Workshop on the theory and application of cryptographic techniques on Advances in cryptology
Flash mixing

Proceedings of the eighteenth annual ACM symposium on Principles of distributed computing
Untraceable electronic mail, return addresses, and digital pseudonyms

Communications of the ACM
How to share a secret

Communications of the ACM
Efficient Identification and Signatures for Smart Cards

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
Threshold Cryptosystems

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
Relations Among Notions of Security for Public-Key Encryption Schemes

CRYPTO '98 Proceedings of the 18th Annual International Cryptology Conference on Advances in Cryptology
A Practical Secret Voting Scheme for Large Scale Elections

ASIACRYPT '92 Proceedings of the Workshop on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
Mix-Networks on Permutation Networks

ASIACRYPT '99 Proceedings of the International Conference on the Theory and Applications of Cryptology and Information Security: Advances in Cryptology
On the Security of ElGamal Based Encryption

PKC '98 Proceedings of the First International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Fault tolerant anonymous channel

ICICS '97 Proceedings of the First International Conference on Information and Communication Security
Undeniable Signatures

CRYPTO '89 Proceedings of the 9th Annual International Cryptology Conference on Advances in Cryptology
Millimix: Mixing in Small Batches

Millimix: Mixing in Small Batches
Security proofs for signature schemes

EUROCRYPT'96 Proceedings of the 15th annual international conference on Theory and application of cryptographic techniques
A threshold cryptosystem without a trusted party

EUROCRYPT'91 Proceedings of the 10th annual international conference on Theory and application of cryptographic techniques
Receipt-free mix-type voting scheme: a practical solution to the implementation of a voting booth

EUROCRYPT'95 Proceedings of the 14th annual international conference on Theory and application of cryptographic techniques

Traffic analysis: protocols, attacks, design issues, and open problems

International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability
An optimally robust hybrid mix network

Proceedings of the twentieth annual ACM symposium on Principles of distributed computing
Almost entirely correct mixing with applications to voting

Proceedings of the 9th ACM conference on Computer and communications security
Targeted Advertising ... And Privacy Too

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Electronic Jury Voting Protocols

LATIN '02 Proceedings of the 5th Latin American Symposium on Theoretical Informatics
The Security of a Mix-Center Based on a Semantically Secure Cryptosystem

INDOCRYPT '02 Proceedings of the Third International Conference on Cryptology: Progress in Cryptology
A Length-Invariant Hybrid Mix

ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Attack for Flash MIX

ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Optimistic Mixing for Exit-Polls

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Making Mix Nets Robust for Electronic Voting by Randomized Partial Checking

Proceedings of the 11th USENIX Security Symposium
A Reputation System to Increase MIX-Net Reliability

IHW '01 Proceedings of the 4th International Workshop on Information Hiding
Traffic Analysis Attacks and Trade-Offs in Anonymity Providing Systems

IHW '01 Proceedings of the 4th International Workshop on Information Hiding
Secure Server-Aided Signature Generation

PKC '01 Proceedings of the 4th International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Remarks on Mix-Network Based on Permutation Networks

PKC '01 Proceedings of the 4th International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Mixminion: Design of a Type III Anonymous Remailer Protocol

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
A composable cryptographic library with nested operations

Proceedings of the 10th ACM conference on Computer and communications security
Shared generation of pseudo-random functions

Journal of Complexity - Special issue on coding and cryptography
Electronic jury voting protocols

Theoretical Computer Science - Latin American theorotical informatics
Parallel mixing

Proceedings of the 11th ACM conference on Computer and communications security
Data Anonymity in the FOO Voting Scheme

Electronic Notes in Theoretical Computer Science (ENTCS)
Anonymous communications in the Internet

Cluster Computing
The reactive simulatability (RSIM) framework for asynchronous systems

Information and Computation
Analysis, improvement and simplification of Prêt à voter with Paillier encryption

EVT'08 Proceedings of the conference on Electronic voting technology
Proving a Shuffle Using Representations of the Symmetric Group

Information Security and Cryptology --- ICISC 2008
Correction, Optimisation and Secure and Efficient Application of PBD Shuffling

Information Security and Cryptology
A Commitment-Consistent Proof of a Shuffle

ACISP '09 Proceedings of the 14th Australasian Conference on Information Security and Privacy
Deterring voluntary trace disclosure in re-encryption mix-networks

ACM Transactions on Information and System Security (TISSEC)
Survey on anonymous communications in computer networks

Computer Communications
Evaluation of anonymity of practical anonymous communication networks

ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Flaws in some robust optimistic mix-nets

ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
A length-flexible threshold cryptosystem with applications

ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Reliable MIX cascade networks through reputation

FC'02 Proceedings of the 6th international conference on Financial cryptography
Authenticated data structures for graph and geometric searching

CT-RSA'03 Proceedings of the 2003 RSA conference on The cryptographers' track
A practical congestion attack on tor using long paths

SSYM'09 Proceedings of the 18th conference on USENIX security symposium
Private web search with malicious adversaries

PETS'10 Proceedings of the 10th international conference on Privacy enhancing technologies
RAD: Recipient-anonymous data delivery based on public routing proxies

Computer Networks: The International Journal of Computer and Telecommunications Networking
A sender verifiable mix-net and a new proof of a shuffle

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
Justifying a dolev-yao model under active attacks

Foundations of Security Analysis and Design III
Privacy-preserving set operations

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
Towards a theory of intrusion detection

ESORICS'05 Proceedings of the 10th European conference on Research in Computer Security
Cryptanalysis of a universally verifiable efficient re-encryption mixnet

EVT/WOTE'12 Proceedings of the 2012 international conference on Electronic Voting Technology/Workshop on Trustworthy Elections
Human perfectly secure message transmission protocols and their applications

SCN'12 Proceedings of the 8th international conference on Security and Cryptography for Networks
A mix-net from any CCA2 secure cryptosystem

ASIACRYPT'12 Proceedings of the 18th international conference on The Theory and Application of Cryptology and Information Security
Privacy-preserving disjunctive normal form operations on distributed sets

Information Sciences: an International Journal
Randomized partial checking revisited

CT-RSA'13 Proceedings of the 13th international conference on Topics in Cryptology

Quantified Score

Hi-index	0.00

Visualization

Abstract

A MIX net takes a list of ciphertexts (c1; ... ; cN) and outputs a permuted list of the plaintexts (m1; ... ;mN) without revealing the relationship between (c1; ... ; cN) and (m1; ... ;mN). This paper first shows that the Jakobsson's MIX net of Eurocrypt'98, which was believed to be resilient and very efficient, is broken. We next propose an efficient t-resilient MIX net with O(t2) servers in which the cost of each MIX server is O(N). Two new concepts are introduced, existential-honesty and limited-open-verification. They will be useful for distributed computation in general.