View Issue Details

IDProjectCategoryView StatusLast Update
0003400GNUnetsecret sharing servicepublic2014-05-08 09:43
ReporterFlorian Dold Assigned ToFlorian Dold  
PrioritynormalSeverityfeatureReproducibilityhave not tried
Status assignedResolutionopen 
Summary0003400: distributed key generation is susceptible to rushing attack
DescriptionAs currently implemented, the distributed key generation protocol is susceptible to the rushing attack as described by Fouque (allowing a player to skew/select the public key).

When using a commit/reveal scheme for simulating the incoercible third party, we might run into the same issues as the original Pedersen protocol.

The only advantage of the (much more complex) Fouque scheme would then be the "easier" complaint handling (compared to Pedersen).

Maybe a (very simple) collective coin tossing protocol would work (e.g. majority bit in a string)?
TagsNo tags attached.


There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2014-05-08 00:46 Florian Dold New Issue
2014-05-08 00:46 Florian Dold Status new => assigned
2014-05-08 00:46 Florian Dold Assigned To => Florian Dold
2014-05-08 09:43 Christian Grothoff Severity minor => feature