Papers

For more details about my research, and more informal descriptions of my papers, click here
For copies of papers not available here, please send me email

Books

  1. "Introduction to Modern Cryptography," with Y. Lindell
    CRC Press, 2007

  2. "Applied Cryptography and Network Security (ACNS) 2007" (edited volume), with M. Yung
    Springer-Verlag, 2007

Book chapters

  1. "Cryptography"
    In Wiley Encyclopedia of Computer Science and Engineering, B.W. Wah, ed., John Wiley & Sons, Inc., 2008.

  2. "Symmetric-Key Encryption"
    In Handbook of Information Security, H. Bidgoli, ed., John Wiley & Sons, Inc., 2005.

  3. "Cryptography"
    In The Computer Science and Engineering Handbook, 2nd edition, A. Tucker, ed., CRC Press, 2004.

Journal articles

Published/Awaiting Publication

  1. "On Expected Constant-Round Protocols for Byzantine Agreement," with Chiu-Yuen Koo
    Journal of Computer and System Sciences, to appear. The full version is available.

  2. "Ring Signatures: Stronger Definitions, and Constructions without Random Oracles," with Adam Bender and Ruggero Morselli
    Journal of Cryptology, to appear. The full version is available.

  3. "Reducing Complexity Assumptions for Statistically-Hiding Commitment," with Iftach Haitner, Omer Horvitz, Chiu-Yuen Koo, Ruggero Morselli, and Ronen Shaltiel
    Journal of Cryptology, to appear. A full version is available. Note: this version differs from what will be published (most notably in Section 4).

  4. "Handling Expected Polynomial-Time Strategies in Simulation-Based Security Proofs," with Yehuda Lindell
    Journal of Cryptology 21(3): 303-349, 2008. The full version is available.

  5. "Efficient Signature Schemes with Tight Security Reductions to the Diffie-Hellman Problems," with Eu-Jin Goh, Stanislaw Jarecki, and Nan Wang
    Journal of Cryptology 20(4): 493-514, 2007. The full version is available.

  6. "A Forward-Secure Public-Key Encryption Scheme," with Ran Canetti and Shai Halevi
    Journal of Cryptology 20(3): 265-294, 2007. The full version is available.

  7. "Scalable Protocols for Authenticated Group Key Exchange," with Moti Yung
    Journal of Cryptology 20(1): 85-113, 2007. The full version is available.

  8. "Chosen-Ciphertext Security From Identity-Based Encryption," with Dan Boneh, Ran Canetti, and Shai Halevi
    SIAM Journal on Computing 36(5): 1301-1328, 2007. The full version is available.

  9. "Characterization of Security Notions for Probabilistic Private-Key Encryption," with Moti Yung
    Journal of Cryptology 19(1): 67-96, 2006. The full version is available.

  10. "A Pairwise Key Pre-Distribution Scheme for Wireless Sensor Networks," with Wenliang Du, Jing Deng, Yunghsiang S. Han, Pramod K. Varshney, and Aram Khalili
    ACM Transactions on Information and System Security 8(2): 228-258, 2005. The full version is available.

  11. "Bounds on the Efficiency of Generic Cryptographic Constructions," with Rosario Gennaro, Yael Gertner, and Luca Trevisan
    SIAM Journal on Computing 35(1): 217-246, 2005. The full version is available.

In Preparation

  1. "Efficient and Secure Authenticated Key Exchange Using Weak Passwords," with Rafail Ostrovsky and Moti Yung
    Accepted to Journal of the ACM (pending revisions). A preliminary full version is available.

  2. "Bounds on the Efficiency of 'Black-Box' Commitment Schemes," with Omer Horvitz
    Accepted to Theoretical Computer Science (pending revisions). A preliminary full version is available.

  3. "On Constructing Universal One-Way Hash Functions from Arbitrary One-Way Functions," with Chiu-Yuen Koo
    Accepted to Journal of Cryptology (pending revisions). A preliminary full version is available.

  4. "Two-Server Password-Only Authenticated Key Exchange," with Phil MacKenzie, Gelareh Taban, and Virgil Gligor
    In submission. A preliminary full version is available.

  5. "Parallel and Concurrent Security of the HB and HB+ Protocols," with Ji-Sun Shin and Adam Smith
    In submission. A preliminary full version is available.

  6. "Complete Fairness in Secure Two-Party Computation," with S. Dov Gordon, Carmit Hazay, and Yehuda Lindell
    In submission. An extended preliminary full version is available.

  7. "Predicate Encryption Supporting Disjunctions, Polynomial Equations, and Inner Products," with Amit Sahai and Brent Waters
    One of 4 papers from Eurocrypt 2008 invited to the Journal of Cryptology. A preliminary full version is available.

  8. "Which Languages Have 4-Round Zero-Knowledge Proofs?"
    One of 3 papers from TCC 2008 invited to the Journal of Cryptology. A preliminary full version is available.

  9. "Improving the Round Complexity of VSS in Point-to-Point Networks," with Chiu-Yuen Koo and Ranjit Kumaresan
    In submission. A preliminary full version is available.

Articles in refereed conferences and workshops

  1. "Improving the Round Complexity of VSS in Point-to-Point Networks," with Chiu-Yuen Koo and Ranjit Kumaresan
    International Colloquium on Automata, Languages, and Programming (ICALP) 2008

  2. "Complete Fairness in Secure Two-Party Computation," with S. Dov Gordon, Carmit Hazay, and Yehuda Lindell
    ACM Symposium on Theory of Computing (STOC) 2008
    The proceedings version (© ACM) is available

  3. "Predicate Encryption Supporting Disjunctions, Polynomial Equations, and Inner Products," with Amit Sahai and Brent Waters
    Eurocrypt 2008, to appear
    Invited to a special issue of J. Cryptology (one of 4 papers selected from Eurocrypt 2008)
    The proceedings version (© IACR) is available, as is a prelminary full version

  4. "How to Encrypt with a Malicious Random Number Generator," with Seny Kamara
    Fast Software Encryption (FSE) 2008

  5. "Aggregate Message Authentication Codes," with Yehuda Lindell
    RSA 2008 --- Cryptographers' Track

  6. "Bridging Cryptography and Game Theory: Recent Results and Future Directions"
    Invited paper, 5th Theory of Cryptography Conference (TCC 2008)
    The proceedings version (© IACR) is available. A full version is in preparation

  7. "Which Languages have 4-Round Zero-Knowledge Proofs?"
    5th Theory of Cryptography Conference (TCC 2008)
    Invited to a special issue of J. Cryptology (one of 3 papers selected from TCC 2008)

  8. "Universally-Composable Computation with an Unreliable Common Reference String," with Vipul Goyal
    5th Theory of Cryptography Conference (TCC 2008)
    The proceedings version (© IACR) is available

  9. "Efficient Cryptographic Protocols Based on the Hardness of Learning Parity with Noise"
    Invited paper, 11th IMA International Conference on Cryptography and Coding Theory, 2007

  10. "Round Complexity of Authenticated Broadcast with a Dishonest Majority," with Juan Garay, Chiu-Yuen Koo, and Rafail Ostrovsky
    IEEE Symposium on Foundations of Computer Science (FOCS) 2007
    The proceedings version is available.

  11. "Universally-Composable Two-Party Computation in Two Rounds," with Omer Horvitz
    Crypto 2007
    The proceedings version (© IACR) is available.

  12. "On Achieving the 'Best of Both Worlds' in Secure Multiparty Computation"
    ACM Symposium on Theory of Computing (STOC) 2007

  13. "Universally Composable Multi-Party Computation using Tamper-Proof Hardware"
    Eurocrypt 2007
    The proceedings version (© IACR) is available.

  14. "Round-Efficient Secure Computation in Point-to-Point Networks," with Chiu-Yuen Koo
    Eurocrypt 2007
    The proceedings version (© IACR) is available.

  15. "Concurrently-Secure Blind Signatures without Random Oracles or Setup Assumptions," with Carmit Hazay, Chiu-Yuen Koo, and Yehuda Lindell
    4th Theory of Cryptography Conference (TCC 2007)
    The proceedings version (© IACR) is available.

  16. "Exploiting Approximate Transitivity of Trust," with Ruggero Morselli, Bobby Bhattacharjee, and Michael Marsh
    Invited paper, BroadNets 2007

  17. "Rational Secret Sharing, Revisited," with S. Dov Gordon
    Security and Cryptography for Networks 2006
    (An extended abstract of this work was also accepted for presentation at NetEcon 2006)

  18. "Robust Fuzzy Extractors and Authenticated Key Agreement From Close Secrets," with Yevgeniy Dodis, Leo Reyzin, and Adam Smith
    Crypto 2006
    The proceedings version (© IACR) is available.

  19. "On Expected Constant-Round Protocols for Byzantine Agreement," with Chiu-Yuen Koo
    Crypto 2006
    A preliminary full version is available. An older version is available from the eprint archives.

  20. "Reliable Broadcast in Radio Networks: The Bounded Collision Case," with Chiu-Yuen Koo, Vartika Bhandari, and Nitin Vaidya
    PODC 2006

  21. "Parallel and Concurrent Security of the HB and HB+ Protocols," with Ji Sun Shin
    Eurocrypt 2006
    The full version is available.

  22. "Ring Signatures: Stronger Definitions, and Constructions without Random Oracles," with Adam Bender and Ruggero Morselli
    3rd Theory of Cryptography Conference (TCC) 2006
    A version available on eprint is an extended version of what appeared in the proceedings. The full version is available above.

  23. "Modeling Insider Attacks on Group Key-Exchange Protocols," with Ji Sun Shin
    ACM Conference on Computer and Communications Security 2005
    The full version and the presentation given at the conference are available.

  24. "Lower Bounds on the Efficiency of 'Black-Box' Commitment Schemes," with Omer Horvitz
    International Colloquium on Automata, Languages, and Programming (ICALP) 2005
    Invited to a special issue of Theoretical Computer Science
    The proceedings versionSpringer-Verlag) is available. A preliminary full version is available above.

  25. "Two-Server Password-Only Authenticated Key Exchange," with Phil MacKenzie, Gelareh Taban, and Virgil Gligor
    Applied Cryptography and Network Security (ACNS) 2005
    The proceedings versionSpringer-Verlag) and a preliminary full version are available.

  26. "Universally Composable Password-Based Key Exchange," with Ran Canetti, Shai Halevi, Yehuda Lindell, and Phil MacKenzie
    Eurocrypt 2005
    The proceedings version (© IACR) and a preliminary full version are available.

  27. "Secure Remote Authentication Using Biometric Data," with Xavier Boyen, Yevgeniy Dodis, Rafail Ostrovsky, and Adam Smith
    Eurocrypt 2005
    A revised version is available. (Note: this is essentially the same as the proceedings version, except that some mistakes have been fixed.)

  28. "Reducing Complexity Assumptions for Statistically-Hiding Commitment," with Iftach Haitner, Omer Horvitz, Chiu-Yuen Koo, Ruggero Morselli, and Ronen Shaltiel
    Eurocrypt 2005
    The proceedings version (© IACR) and a preliminary full version are available. An earlier version of the paper is also available.

  29. "Adaptively-Secure, Non-Interactive Public-Key Encryption," with Ran Canetti and Shai Halevi
    2nd Theory of Cryptography Conference (TCC), 2005
    The proceedings version (© IACR) and the full version are available.

  30. "Chosen Ciphertext Security of Multiple Encryption," with Yevgeniy Dodis
    2nd Theory of Cryptography Conference (TCC), 2005
    The proceedings version (© IACR) is available

  31. "Handling Expected Polynomial-Time Strategies in Simulation-Based Security Proofs," with Yehuda Lindell
    2nd Theory of Cryptography Conference (TCC), 2005
    The proceedings version (© IACR) is available, and the full version is available above.

  32. "Improved Efficiency for CCA-Secure Cryptosystems Built Using IBE," with Dan Boneh
    RSA 2005 --- Cryptographers' Track
    The proceedings version (© Springer-Verlag) is available. The full version is available above.

  33. "Identity-Based Zero Knowledge," with Rafail Ostrovsky and Michael Rabin
    Security in Communication Networks, 2004

  34. "Round-Optimal Secure Two-Party Computation," with Rafail Ostrovsky
    Crypto 2004
    The proceedings version (© IACR) is available.

  35. "A Game-Theoretic Framework for Analyzing Trust-Inference Protocols," with Ruggero Morselli and Bobby Bhattacharjee
    Second Workshop on the Economics of Peer-to-Peer Systems, 2004
    A preliminary manuscript is available, as well as the presentation that was given at the P2Pecon workshop. A full(er) version of the paper is available on request. This is a work in progress, and I would appreciate any comments or suggestions.

  36. "One-Round Protocols for Two-Party Authenticated Key Exchange," with Ik Rae Jeong and Dong Hoon Lee
    Applied Cryptography and Network Security (ACNS) 2004
    A full version is available.

  37. "Chosen-Ciphertext Security From Identity-Based Encryption," with Ran Canetti and Shai Halevi
    Eurocrypt 2004
    An early version is available at the eprint archives. The proceedings version (© IACR) is also available. The full version is available above.

  38. "Trust Preserving Set Operations," with Ruggero Morselli, Bobby Bhattacharjee, and Pete Keleher
    IEEE Infocom 2004

  39. "A Generic Construction for Intrusion-Resilient Public-Key Encryption," with Yevgeniy Dodis, Matt Franklin, Atsuko Miyaji, and Moti Yung
    RSA 2004 --- Cryptographers' Track.

  40. "Binary Tree Encryption: Constructions and Applications"
    Invited paper, ICISC 2003
    The proceedings versionSpringer-Verlag) is available.

  41. "Efficiency Improvements for Signature Schemes with Tight Security Reductions," with Nan Wang
    ACM Conference on Computer and Communications Security 2003
    The proceedings version (© ACM) is available (note: this version is slightly updated from what actually appears in the proceedings). The full version is available above.

  42. "Scalable Protocols for Authenticated Group Key Exchange," with Moti Yung
    Crypto 2003
    The proceedings version (© IACR) is available. The full version is available above.

  43. "Lower Bounds on the Efficiency of Encryption and Digital Signature Schemes," with Rosario Gennaro and Yael Gertner
    ACM Symposium on Theory of Computing (STOC) 2003
    The proceedings version (© ACM) is available. The full version is available above.

  44. "Round Efficiency of Multi-Party Computation with a Dishonest Majority," with Rafail Ostrovsky and Adam Smith
    Eurocrypt 2003
    The proceedings version (© IACR) and a preliminary full version are available.

  45. "A Forward-Secure Public-Key Encryption Scheme," with Ran Canetti and Shai Halevi
    Eurocrypt 2003
    The proceedings version (© IACR) is available, and the full version is available above. Older versions of the paper are available here and here.

  46. "Efficient and Non-Malleable Proofs of Plaintext Knowledge and Applications"
    Eurocrypt 2003
    The proceedings version (© IACR) is available. A slightly extended (but older) version is available at the eprint archives.

  47. "Intrusion-Resilient Public-Key Encryption," with Yevgeniy Dodis, Matt Franklin, Atsuko Miyaji, and Moti Yung
    RSA 2003 --- Cryptographers' Track

  48. "Toward Secure Key Distribution in Truly Ad-Hoc Networks," with Aram Khalili and William Arbaugh
    IEEE Workshop on Security and Assurance in Ad-Hoc Networks 2003

  49. "Strong Key-Insulated Signature Schemes," with Yevgeniy Dodis, Shouhuai Xu, and Moti Yung
    Public-Key Cryptography 2003

  50. "Forward Secrecy in Password-Only Key Exchange Protocols," with Rafail Ostrovsky and Moti Yung
    Security in Communication Networks 2002
    A preliminary full version is available above.

  51. "Threshold Cryptosystems Based on Factoring," with Moti Yung
    Asiacrypt 2002

  52. "Implementation of Chosen-Ciphertext Attacks against PGP and GnuPG," with Kahil Jallad, Jena Lee, and Bruce Schneier
    Information Security Conference 2002

  53. "Key-Insulated Public-Key Cryptosystems," with Yevgeniy Dodis, Shouhuai Xu, and Moti Yung
    Eurocrypt 2002

  54. "Incremental and Unforgeable Encryption," with Enrico Buonanno and Moti Yung
    Fast Software Encryption 2001

  55. "Efficient Password-Authenticated Key Exchange Using Human-Memorizable Passwords," with Rafail Ostrovsky and Moti Yung
    Eurocrypt 2001
    A preliminary full version is available above. An older version is available at the eprint archives.

  56. "Efficient and Non-Interactive, Non-Malleable Commitment," with Giovanni Di Crescenzo, Rafail Ostrovsky, and Adam Smith
    Eurocrypt 2001

  57. "Cryptographic Counters and Applications to Electronic Voting," with Rafail Ostrovsky and Steven Myers
    Eurocrypt 2001

  58. "A Chosen-Ciphertext Attack against Several E-mail Encryption Protocols," with Bruce Schneier
    USENIX Security Symposium 2000

  59. "Unforgeable Encryption and Chosen-Ciphertext-Secure Modes of Operation," with Moti Yung
    Fast Software Encryption 2000

  60. "Complete Characterization of Security Notions for Probabilistic, Private-Key Encryption," with Moti Yung
    ACM Symposium on Theory of Computing (STOC) 2000
    The full version is available above

  61. "On the Efficiency of Local Decoding Procedures for Error-Correcting Codes," with Luca Trevisan
    ACM Symposium on Theory of Computing (STOC) 2000

Manuscripts

  1. "Collusion-Free Multiparty Computation in the Mediated Model," with Yehuda Lindell
  2. "Partial Fairness in Secure Two-Party Computation," with Dov Gordon
  3. "Signing a Linear Subspace: Signatures for Network Coding," with Dan Boneh, David Freeman, and Brent Waters.
    This supersedes an earlier version, "Compact Signatures for Network Coding," with Brent Waters
  4. "Complete Fairness in Multi-Party Computation without an Honest Majority," with Dov Gordon
  5. "Realizing Deniability over the Internet," with Yevgeniy Dodis, Adam Smith, and Shabsi Walfish
  6. "Analyzing the HB and HB+ Protocols in the 'Large Error' Case," with Adam Smith
    This work is superseded by the journal version "Parallel and Concurrent Security of the HB and HB+ Protocols," with Ji-Sun Shin and Adam Smith
  7. "KeyChains: A Decentralized Public-Key Infrastructure," with Ruggero Morselli, Bobby Bhattacharjee, and Mike Marsh
    Technical Report CS-TR-4788, Department of Computer Science, University of Maryland, 2006. Also filed as UMIACS-2006-12.

PhD thesis

"Efficient Cryptographic Protocols Preventing 'Man-in-the-Middle' Attacks"
Columbia University, 2002
Includes results from the following papers (see above for full publication information) and also some additional, unpublished results: