BEGIN:VCALENDAR
VERSION:2.0
PRODID:icalendar-ruby
CALSCALE:GREGORIAN
METHOD:PUBLISH
BEGIN:VTIMEZONE
TZID:Europe/Vienna
BEGIN:DAYLIGHT
DTSTART:20170326T030000
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
END:DAYLIGHT
BEGIN:STANDARD
DTSTART:20171029T020000
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTAMP:20260427T120230Z
UID:59d35e4b96f57912314922@ist.ac.at
DTSTART:20171012T140000
DTEND:20171012T153000
DESCRIPTION:Speaker: Georg Fuchsbauer\nhosted by Krzysztof Pietrzak\nAbstra
 ct: Motivated by the subversion of trusted public parameters in mass-surve
 illance activities\, we study the security of non-interactive zero-knowled
 ge (NIZK) proofs in the presence of a maliciously chosen common reference 
 string. We provide definitions for subversion-resistant soundness and zero
  knowledge. After showing that subversion-soundness is impossible for NIZK
 s\, we construct a subversion-ZK proof system.We then turn to ZK-SNARKs (s
 uccinct non-interactive arguments of knowledge)\, which are NIZK systems w
 ith short and efficiently verifiable proofs\, used e.g. in cryptocurrencie
 s such as Zcash. We show that under plausible hardness assumptions\, many 
 SNARK schemes proposed in the literature are subversion-ZK or can be made 
 at very little cost.
LOCATION:Meeting room 2nd floor / Central Bldg. (I01.2OG.)\, ISTA
ORGANIZER:pietrzak@ist.ac.at
SUMMARY:Georg Fuchsbauer: Subversion-resistant zero knowledge (Georg Fuchsb
 auer\, ENS Paris)
URL:https://talks-calendar.ista.ac.at/events/872
END:VEVENT
END:VCALENDAR