{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T11:18:29Z","timestamp":1778152709719,"version":"3.51.4"},"publisher-location":"Cham","reference-count":68,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031683756","type":"print"},{"value":"9783031683763","type":"electronic"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-68376-3_10","type":"book-chapter","created":{"date-parts":[[2024,8,15]],"date-time":"2024-08-15T21:02:07Z","timestamp":1723755727000},"page":"305-338","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":6,"title":["Ring Signatures for\u00a0Deniable AKEM: Gandalf\u2019s Fellowship"],"prefix":"10.1007","author":[{"given":"Phillip","family":"Gajland","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jonas","family":"Janneck","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eike","family":"Kiltz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,8,16]]},"reference":[{"key":"10_CR1","doi-asserted-by":"crossref","unstructured":"Masayuki Abe, Miyako Ohkubo, and Koutarou Suzuki. 1-out-of-n signatures from a variety of keys. In Yuliang Zheng, editor, Advances in Cryptology \u2013 ASIACRYPT\u00a02002, volume 2501 of Lecture Notes in Computer Science, pages 415\u2013432, Queenstown, New Zealand, December\u00a01\u20135, 2002. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-36178-2_26"},{"key":"10_CR2","doi-asserted-by":"crossref","unstructured":"Carlos Aguilar-Melchor, Slim Bettaieb, Xavier Boyen, Laurent Fousse, and Philippe Gaborit. Adapting Lyubashevsky\u2019s signature schemes to the ring signature setting. In Amr Youssef, Abderrahmane Nitaj, and Aboul\u00a0Ella Hassanien, editors, AFRICACRYPT 13: 6th International Conference on Cryptology in Africa, volume 7918 of Lecture Notes in Computer Science, pages 1\u201325, Cairo, Egypt, June\u00a022\u201324, 2013. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-642-38553-7_1"},{"key":"10_CR3","doi-asserted-by":"crossref","unstructured":"Martin\u00a0R. Albrecht, Valerio Cini, Russell W.\u00a0F. Lai, Giulio Malavolta, and Sri Aravinda\u00a0Krishnan Thyagarajan. Lattice-based SNARKs: Publicly verifiable, preprocessing, and recursively composable - (extended abstract). In Yevgeniy Dodis and Thomas Shrimpton, editors, Advances in Cryptology \u2013 CRYPTO\u00a02022, Part\u00a0II, volume 13508 of Lecture Notes in Computer Science, pages 102\u2013132, Santa Barbara, CA, USA, August\u00a015\u201318, 2022. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-031-15979-4_4"},{"key":"10_CR4","unstructured":"Martin\u00a0R. Albrecht, Rachel Player, and Sam Scott. Lattice estimator. https:\/\/github.com\/malb\/lattice-estimator, 2015. Commit: f18533a19433f6fb1d9fb396006f462adc6b8ad3"},{"issue":"3","key":"10_CR5","doi-asserted-by":"publisher","first-page":"169","DOI":"10.1515\/jmc-2015-0016","volume":"9","author":"MR Albrecht","year":"2015","unstructured":"Albrecht, M.R., Player, R., Scott, S.: On the concrete hardness of learning with errors. Journal of Mathematical Cryptology 9(3), 169\u2013203 (2015)","journal-title":"Journal of Mathematical Cryptology"},{"key":"10_CR6","doi-asserted-by":"crossref","unstructured":"Jo\u00ebl Alwen, Bruno Blanchet, Eduard Hauck, Eike Kiltz, Benjamin Lipp, and Doreen Riepel. Analysing the HPKE standard. In Anne Canteaut and Fran\u00e7ois-Xavier Standaert, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02021, Part\u00a0I, volume 12696 of Lecture Notes in Computer Science, pages 87\u2013116, Zagreb, Croatia, October\u00a017\u201321, 2021. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-77870-5_4"},{"key":"10_CR7","doi-asserted-by":"crossref","unstructured":"Jo\u00ebl Alwen, Jonas Janneck, Eike Kiltz, and Benjamin Lipp. The pre-shared key modes of HPKE. In Jian Guo and Ron Steinfeld, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02023, Part\u00a0VI, volume 14443 of Lecture Notes in Computer Science, pages 329\u2013360, Guangzhou, China, December\u00a04\u20138, 2023. Springer, Heidelberg, Germany","DOI":"10.1007\/978-981-99-8736-8_11"},{"key":"10_CR8","doi-asserted-by":"crossref","unstructured":"Shi Bai, Adeline Langlois, Tancr\u00e8de Lepoint, Damien Stehl\u00e9, and Ron Steinfeld. Improved security proofs in lattice-based cryptography: Using the R\u00e9nyi divergence rather than the statistical distance. In Tetsu Iwata and Jung\u00a0Hee Cheon, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02015, Part\u00a0I, volume 9452 of Lecture Notes in Computer Science, pages 3\u201324, Auckland, New Zealand, November\u00a030\u00a0\u2013\u00a0December\u00a03, 2015. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-662-48797-6_1"},{"key":"10_CR9","doi-asserted-by":"crossref","unstructured":"David Balb\u00e1s, Daniel Collins, and Phillip Gajland. WhatsUpp with sender keys? Analysis, improvements and security proofs. In Jian Guo and Ron Steinfeld, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02023, Part\u00a0V, volume 14442 of Lecture Notes in Computer Science, pages 307\u2013341, Guangzhou, China, December\u00a04\u20138, 2023. Springer, Heidelberg, Germany","DOI":"10.1007\/978-981-99-8733-7_10"},{"issue":"1","key":"10_CR10","doi-asserted-by":"publisher","first-page":"625","DOI":"10.1007\/BF01445125","volume":"296","author":"W Banaszczyk","year":"1993","unstructured":"Banaszczyk, W.: New bounds in some transference theorems in the geometry of numbers. Math. Ann. 296(1), 625\u2013635 (1993)","journal-title":"Math. Ann."},{"key":"10_CR11","doi-asserted-by":"crossref","unstructured":"Richard Barnes, Benjamin Beurdouche, Raphael Robert, Jon Millican, Emad Omara, and Katriel Cohn-Gordon. The Messaging Layer Security (MLS) Protocol. RFC 9420, July 2023","DOI":"10.17487\/RFC9420"},{"key":"10_CR12","doi-asserted-by":"crossref","unstructured":"Richard Barnes, Karthikeyan Bhargavan, Benjamin Lipp, and Christopher\u00a0A. Wood. Hybrid Public Key Encryption. RFC 9180, February 2022","DOI":"10.17487\/RFC9180"},{"key":"10_CR13","doi-asserted-by":"crossref","unstructured":"Carsten Baum, Huang Lin, and Sabine Oechsner. Towards practical lattice-based one-time linkable ring signatures. In David Naccache, Shouhuai Xu, Sihan Qing, Pierangela Samarati, Gregory Blanc, Rongxing Lu, Zonghua Zhang, and Ahmed Meddahi, editors, ICICS 18: 20th International Conference on Information and Communication Security, volume 11149 of Lecture Notes in Computer Science, pages 303\u2013322, Lille, France, October\u00a029\u201331, 2018. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-01950-1_18"},{"key":"10_CR14","unstructured":"Mihir Bellare and Phillip Rogaway. Code-based game-playing proofs and the security of triple encryption. Cryptology ePrint Archive, Report 2004\/331, 2004. https:\/\/eprint.iacr.org\/2004\/331"},{"key":"10_CR15","doi-asserted-by":"crossref","unstructured":"Adam Bender, Jonathan Katz, and Ruggero Morselli. Ring signatures: Stronger definitions, and constructions without random oracles. In Shai Halevi and Tal Rabin, editors, TCC\u00a02006: 3rd Theory of Cryptography Conference, volume 3876 of Lecture Notes in Computer Science, pages 60\u201379, New York, NY, USA, March\u00a04\u20137, 2006. Springer, Heidelberg, Germany","DOI":"10.1007\/11681878_4"},{"issue":"1","key":"10_CR16","doi-asserted-by":"publisher","first-page":"114","DOI":"10.1007\/s00145-007-9011-9","volume":"22","author":"A Bender","year":"2009","unstructured":"Bender, A., Katz, J., Morselli, R.: Ring signatures: Stronger definitions, and constructions without random oracles. J. Cryptol. 22(1), 114\u2013138 (2009)","journal-title":"J. Cryptol."},{"key":"10_CR17","doi-asserted-by":"crossref","unstructured":"Ward Beullens, Shuichi Katsumata, and Federico Pintore. Calamari and Falafl: Logarithmic (linkable) ring signatures from isogenies and lattices. In Shiho Moriai and Huaxiong Wang, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02020, Part\u00a0II, volume 12492 of Lecture Notes in Computer Science, pages 464\u2013492, Daejeon, South Korea, December\u00a07\u201311, 2020. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-64834-3_16"},{"key":"10_CR18","doi-asserted-by":"crossref","unstructured":"Dan Boneh, Craig Gentry, Ben Lynn, and Hovav Shacham. Aggregate and verifiably encrypted signatures from bilinear maps. In Eli Biham, editor, Advances in Cryptology \u2013 EUROCRYPT\u00a02003, volume 2656 of Lecture Notes in Computer Science, pages 416\u2013432, Warsaw, Poland, May\u00a04\u20138, 2003. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-39200-9_26"},{"key":"10_CR19","unstructured":"Zvika Brakerski and Yael\u00a0Tauman Kalai. A framework for efficient signatures, ring signatures and identity based encryption in the standard model. Cryptology ePrint Archive, Report 2010\/086, 2010. https:\/\/eprint.iacr.org\/2010\/086"},{"key":"10_CR20","doi-asserted-by":"crossref","unstructured":"Jacqueline Brendel, Rune Fiedler, Felix G\u00fcnther, Christian Janson, and Douglas Stebila. Post-quantum asynchronous deniable key exchange and the Signal handshake. In Goichiro Hanaoka, Junji Shikata, and Yohei Watanabe, editors, PKC\u00a02022: 25th International Conference on Theory and Practice of Public Key Cryptography, Part\u00a0II, volume 13178 of Lecture Notes in Computer Science, pages 3\u201334, Virtual Event, March\u00a08\u201311, 2022. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-97131-1_1"},{"key":"10_CR21","doi-asserted-by":"crossref","unstructured":"Jacqueline Brendel, Marc Fischlin, Felix G\u00fcnther, Christian Janson, and Douglas Stebila. Towards post-quantum security for Signal\u2019s X3DH handshake. In Orr Dunkelman, Michael J.\u00a0Jacobson Jr., and Colin O\u2019Flynn, editors, SAC 2020: 27th Annual International Workshop on Selected Areas in Cryptography, volume 12804 of Lecture Notes in Computer Science, pages 404\u2013430, Halifax, NS, Canada (Virtual Event), October\u00a021-23, 2020. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-81652-0_16"},{"key":"10_CR22","doi-asserted-by":"crossref","unstructured":"Emmanuel Bresson, Jacques Stern, and Michael Szydlo. Threshold ring signatures and applications to ad-hoc groups. In Moti Yung, editor, Advances in Cryptology \u2013 CRYPTO\u00a02002, volume 2442 of Lecture Notes in Computer Science, pages 465\u2013480, Santa Barbara, CA, USA, August\u00a018\u201322, 2002. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-45708-9_30"},{"key":"10_CR23","doi-asserted-by":"crossref","unstructured":"Suvradip Chakraborty, Dennis Hofheinz, Ueli Maurer, and Guilherme Rito. Deniable authentication when signing keys leak. In Carmit Hazay and Martijn Stam, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02023, Part\u00a0III, volume 14006 of Lecture Notes in Computer Science, pages 69\u2013100, Lyon, France, April\u00a023\u201327, 2023. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-031-30620-4_3"},{"key":"10_CR24","doi-asserted-by":"crossref","unstructured":"David Chaum and Eug\u00e8ne van Heyst. Group signatures. In Donald\u00a0W. Davies, editor, Advances in Cryptology \u2013 EUROCRYPT\u201991, volume 547 of Lecture Notes in Computer Science, pages 257\u2013265, Brighton, UK, April\u00a08\u201311, 1991. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-46416-6_22"},{"key":"10_CR25","unstructured":"Cong Chen, Oussama Danba, Jeffrey Hoffstein, Andreas Hulsing, Joost Rijneveld, John\u00a0M. Schanck, Peter Schwabe, William Whyte, Zhenfei Zhang, Tsunekazu Saito, Takashi Yamakawa, and Keita Xagawa. NTRU. Technical report, National Institute of Standards and Technology, 2020. available at https:\/\/csrc.nist.gov\/projects\/post-quantum-cryptography\/post-quantum-cryptography-standardization\/round-3-submissions"},{"key":"10_CR26","unstructured":"Daniel Collins, Lo\u00efs Huguenin-Dumittan, Ngoc\u00a0Khanh Nguyen, Nicolas Rolin, and Serge Vaudenay. K-waay: Fast and deniable post-quantum x3dh without ring signatures. Cryptology ePrint Archive, Paper 2024\/120, 2024. https:\/\/eprint.iacr.org\/2024\/120"},{"key":"10_CR27","doi-asserted-by":"crossref","unstructured":"Ivan Damg\u00e5rd, Helene Haagh, Rebekah Mercer, Anca Nitulescu, Claudio Orlandi, and Sophia Yakoubov. Stronger security and constructions of multi-designated verifier signatures. In Rafael Pass and Krzysztof Pietrzak, editors, TCC\u00a02020: 18th Theory of Cryptography Conference, Part\u00a0II, volume 12551 of Lecture Notes in Computer Science, pages 229\u2013260, Durham, NC, USA, November\u00a016\u201319, 2020. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-64378-2_9"},{"key":"10_CR28","volume-title":"Practical Signcryption","year":"2010","unstructured":"Dent, A.W., Zheng, Y. (eds.): Practical Signcryption. Springer, Berlin Heidelberg (2010)"},{"key":"10_CR29","doi-asserted-by":"crossref","unstructured":"Mario Di Raimondo and Rosario Gennaro. New approaches for deniable authentication. In Vijayalakshmi Atluri, Catherine Meadows, and Ari Juels, editors, ACM CCS 2005: 12th Conference on Computer and Communications Security, pages 112\u2013121, Alexandria, Virginia, USA, November\u00a07\u201311, 2005. ACM Press","DOI":"10.1145\/1102120.1102137"},{"key":"10_CR30","doi-asserted-by":"crossref","unstructured":"Mario Di Raimondo, Rosario Gennaro, and Hugo Krawczyk. Deniable authentication and key exchange. In Ari Juels, Rebecca\u00a0N. Wright, and Sabrina De Capitani di Vimercati, editors, ACM CCS 2006: 13th Conference on Computer and Communications Security, pages 400\u2013409, Alexandria, Virginia, USA, October\u00a030\u00a0\u2013\u00a0November\u00a03, 2006. ACM Press","DOI":"10.1145\/1180405.1180454"},{"key":"10_CR31","doi-asserted-by":"crossref","unstructured":"Yevgeniy Dodis, Aggelos Kiayias, Antonio Nicolosi, and Victor Shoup. Anonymous identification in ad hoc groups. In Christian Cachin and Jan Camenisch, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02004, volume 3027 of Lecture Notes in Computer Science, pages 609\u2013626, Interlaken, Switzerland, May\u00a02\u20136, 2004. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-540-24676-3_36"},{"key":"10_CR32","doi-asserted-by":"crossref","unstructured":"L\u00e9o Ducas, Vadim Lyubashevsky, and Thomas Prest. Efficient identity-based encryption over NTRU lattices. In Palash Sarkar and Tetsu Iwata, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02014, Part\u00a0II, volume 8874 of Lecture Notes in Computer Science, pages 22\u201341, Kaoshiung, Taiwan, R.O.C., December\u00a07\u201311, 2014. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-662-45608-8_2"},{"key":"10_CR33","doi-asserted-by":"crossref","unstructured":"Julien Duman, Kathrin H\u00f6velmanns, Eike Kiltz, Vadim Lyubashevsky, Gregor Seiler, and Dominique Unruh. A thorough treatment of highly-efficient NTRU instantiations. In Alexandra Boldyreva and Vladimir Kolesnikov, editors, PKC\u00a02023: 26th International Conference on Theory and Practice of Public Key Cryptography, Part\u00a0I, volume 13940 of Lecture Notes in Computer Science, pages 65\u201394, Atlanta, GA, USA, May\u00a07\u201310, 2023. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-031-31368-4_3"},{"key":"10_CR34","doi-asserted-by":"crossref","unstructured":"Cynthia Dwork, Moni Naor, and Amit Sahai. Concurrent zero-knowledge. In 30th Annual ACM Symposium on Theory of Computing, pages 409\u2013418, Dallas, TX, USA, May\u00a023\u201326, 1998. ACM Press","DOI":"10.1145\/276698.276853"},{"issue":"6","key":"10_CR35","doi-asserted-by":"publisher","first-page":"851","DOI":"10.1145\/1039488.1039489","volume":"51","author":"C Dwork","year":"2004","unstructured":"Dwork, C., Naor, M., Sahai, A.: Concurrent zero-knowledge. J. ACM 51(6), 851\u2013898 (2004)","journal-title":"J. ACM"},{"key":"10_CR36","doi-asserted-by":"crossref","unstructured":"Muhammed\u00a0F. Esgin, Ron Steinfeld, Amin Sakzad, Joseph\u00a0K. Liu, and Dongxi Liu. Short lattice-based one-out-of-many proofs and applications to ring signatures. In Robert\u00a0H. Deng, Val\u00e9rie Gauthier-Uma\u00f1a, Mart\u00edn Ochoa, and Moti Yung, editors, ACNS 19: 17th International Conference on Applied Cryptography and Network Security, volume 11464 of Lecture Notes in Computer Science, pages 67\u201388, Bogota, Colombia, June\u00a05\u20137, 2019. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-21568-2_4"},{"key":"10_CR37","doi-asserted-by":"crossref","unstructured":"Thomas Espitau, Pierre-Alain Fouque, Fran\u00e7ois G\u00e9rard, M\u00e9lissa Rossi, Akira Takahashi, Mehdi Tibouchi, Alexandre Wallet, and Yang Yu. Mitaka: A simpler, parallelizable, maskable variant of falcon. In Orr Dunkelman and Stefan Dziembowski, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02022, Part\u00a0III, volume 13277 of Lecture Notes in Computer Science, pages 222\u2013253, Trondheim, Norway, May\u00a030\u00a0\u2013\u00a0June\u00a03, 2022. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-031-07082-2_9"},{"key":"10_CR38","doi-asserted-by":"crossref","unstructured":"Thomas Espitau, Thi Thu\u00a0Quyen Nguyen, Chao Sun, Mehdi Tibouchi, and Alexandre Wallet. Antrag: Annular NTRU trapdoor generation - making mitaka as secure as falcon. In Jian Guo and Ron Steinfeld, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02023, Part\u00a0VII, volume 14444 of Lecture Notes in Computer Science, pages 3\u201336, Guangzhou, China, December\u00a04\u20138, 2023. Springer, Heidelberg, Germany","DOI":"10.1007\/978-981-99-8739-9_1"},{"key":"10_CR39","doi-asserted-by":"crossref","unstructured":"Thomas Espitau, Mehdi Tibouchi, Alexandre Wallet, and Yang Yu. Shorter hash-and-sign lattice-based signatures. In Yevgeniy Dodis and Thomas Shrimpton, editors, Advances in Cryptology \u2013 CRYPTO\u00a02022, Part\u00a0II, volume 13508 of Lecture Notes in Computer Science, pages 245\u2013275, Santa Barbara, CA, USA, August\u00a015\u201318, 2022. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-031-15979-4_9"},{"key":"10_CR40","unstructured":"Thibauld Feneuil and Matthieu Rivain. Threshold computation in the head: Improved framework for post-quantum signatures and zero-knowledge arguments. Cryptology ePrint Archive, Paper 2023\/1573, 2023. https:\/\/eprint.iacr.org\/2023\/1573"},{"key":"10_CR41","doi-asserted-by":"crossref","unstructured":"Manuel Fersch, Eike Kiltz, and Bertram Poettering. On the one-per-message unforgeability of (EC)DSA and its variants. In Yael Kalai and Leonid Reyzin, editors, TCC\u00a02017: 15th Theory of Cryptography Conference, Part\u00a0II, volume 10678 of Lecture Notes in Computer Science, pages 519\u2013534, Baltimore, MD, USA, November\u00a012\u201315, 2017. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-319-70503-3_17"},{"key":"10_CR42","doi-asserted-by":"crossref","unstructured":"Marc Fischlin and Sogol Mazaheri. Notions of deniable message authentication. In Proceedings of the 14th ACM Workshop on Privacy in the Electronic Society, WPES \u201915, page 55-64, New York, NY, USA, 2015. Association for Computing Machinery","DOI":"10.1145\/2808138.2808143"},{"key":"10_CR43","unstructured":"Phillip Gajland, Bor de\u00a0Kock, Miguel Quaresma, Giulio Malavolta, and Peter Schwabe. Swoosh: Practical lattice-based non-interactive key exchange. Cryptology ePrint Archive, Report 2023\/271, 2023. https:\/\/eprint.iacr.org\/2023\/271"},{"key":"10_CR44","doi-asserted-by":"crossref","unstructured":"Craig Gentry, Chris Peikert, and Vinod Vaikuntanathan. Trapdoors for hard lattices and new cryptographic constructions. In Richard\u00a0E. Ladner and Cynthia Dwork, editors, 40th Annual ACM Symposium on Theory of Computing, pages 197\u2013206, Victoria, BC, Canada, May\u00a017\u201320, 2008. ACM Press","DOI":"10.1145\/1374376.1374407"},{"key":"10_CR45","series-title":"volume 1423 of Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"267","DOI":"10.1007\/BFb0054868","volume-title":"Third Algorithmic Number Theory Symposium (ANTS)","author":"J Hoffstein","year":"1998","unstructured":"Hoffstein, J., Pipher, J., Silverman, J.H.: NTRU: A ring-based public key cryptosystem. In: Third Algorithmic Number Theory Symposium (ANTS). volume 1423 of Lecture Notes in Computer Science, pp. 267\u2013288. Springer, Heidelberg, Germany (1998)"},{"key":"10_CR46","doi-asserted-by":"crossref","unstructured":"Beno\u00eet Libert, San Ling, Khoa Nguyen, and Huaxiong Wang. Zero-knowledge arguments for lattice-based accumulators: Logarithmic-size ring signatures and group signatures without trapdoors. In Marc Fischlin and Jean-S\u00e9bastien Coron, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02016, Part\u00a0II, volume 9666 of Lecture Notes in Computer Science, pages 1\u201331, Vienna, Austria, May\u00a08\u201312, 2016. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-662-49896-5_1"},{"key":"10_CR47","doi-asserted-by":"crossref","unstructured":"Xingye Lu, Man\u00a0Ho Au, and Zhenfei Zhang. Raptor: A practical lattice-based (linkable) ring signature. In Robert\u00a0H. Deng, Val\u00e9rie Gauthier-Uma\u00f1a, Mart\u00edn Ochoa, and Moti Yung, editors, ACNS 19: 17th International Conference on Applied Cryptography and Network Security, volume 11464 of Lecture Notes in Computer Science, pages 110\u2013130, Bogota, Colombia, June\u00a05\u20137, 2019. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-21568-2_6"},{"key":"10_CR48","doi-asserted-by":"crossref","unstructured":"Vadim Lyubashevsky. Lattice signatures without trapdoors. In David Pointcheval and Thomas Johansson, editors, Advances in Cryptology \u2013 EUROCRYPT\u00a02012, volume 7237 of Lecture Notes in Computer Science, pages 738\u2013755, Cambridge, UK, April\u00a015\u201319, 2012. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-642-29011-4_43"},{"key":"10_CR49","unstructured":"Vadim Lyubashevsky and Daniele Micciancio. Generalized compact Knapsacks are collision resistant. In Michele Bugliesi, Bart Preneel, Vladimiro Sassone, and Ingo Wegener, editors, ICALP 2006: 33rd International Colloquium on Automata, Languages and Programming, Part\u00a0II, volume 4052 of Lecture Notes in Computer Science, pages 144\u2013155, Venice, Italy, July\u00a010\u201314, 2006. Springer, Heidelberg, Germany"},{"key":"10_CR50","doi-asserted-by":"crossref","unstructured":"Vadim Lyubashevsky, Ngoc\u00a0Khanh Nguyen, and Gregor Seiler. SMILE: Set membership from ideal lattices with applications to ring signatures and confidential transactions. In Tal Malkin and Chris Peikert, editors, Advances in Cryptology \u2013 CRYPTO\u00a02021, Part\u00a0II, volume 12826 of Lecture Notes in Computer Science, pages 611\u2013640, Virtual Event, August\u00a016\u201320, 2021. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-030-84245-1_21"},{"key":"10_CR51","unstructured":"Moxie Marlinspike and Trevor Perrin. The double ratchet algorithm, 2016"},{"key":"10_CR52","unstructured":"Moxie Marlinspike and Trevor Perrin. The x3dh key agreement protocol, 2016"},{"issue":"1","key":"10_CR53","doi-asserted-by":"publisher","first-page":"267","DOI":"10.1137\/S0097539705447360","volume":"37","author":"D Micciancio","year":"2007","unstructured":"Micciancio, D., Regev, O.: Worst-case to average-case reductions based on gaussian measures. SIAM J. Comput. 37(1), 267\u2013302 (2007)","journal-title":"SIAM J. Comput."},{"key":"10_CR54","doi-asserted-by":"crossref","unstructured":"Daniele Micciancio and Michael Walter. Gaussian sampling over the integers: Efficient, generic, constant-time. In Jonathan Katz and Hovav Shacham, editors, Advances in Cryptology \u2013 CRYPTO\u00a02017, Part\u00a0II, volume 10402 of Lecture Notes in Computer Science, pages 455\u2013485, Santa Barbara, CA, USA, August\u00a020\u201324, 2017. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-319-63715-0_16"},{"key":"10_CR55","doi-asserted-by":"crossref","unstructured":"Moni Naor. Deniable ring authentication. In Moti Yung, editor, Advances in Cryptology \u2013 CRYPTO\u00a02002, volume 2442 of Lecture Notes in Computer Science, pages 481\u2013498, Santa Barbara, CA, USA, August\u00a018\u201322, 2002. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-45708-9_31"},{"key":"10_CR56","unstructured":"Thomas Prest. Gaussian sampling in lattice-based cryptography. PhD thesis, Ecole normale sup\u00e9rieure-ENS PARIS, 2015"},{"key":"10_CR57","doi-asserted-by":"crossref","unstructured":"Thomas Prest. Sharper bounds in lattice-based cryptography using the R\u00e9nyi divergence. In Tsuyoshi Takagi and Thomas Peyrin, editors, Advances in Cryptology \u2013 ASIACRYPT\u00a02017, Part\u00a0I, volume 10624 of Lecture Notes in Computer Science, pages 347\u2013374, Hong Kong, China, December\u00a03\u20137, 2017. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-319-70694-8_13"},{"key":"10_CR58","unstructured":"Thomas Prest, Pierre-Alain Fouque, Jeffrey Hoffstein, Paul Kirchner, Vadim Lyubashevsky, Thomas Pornin, Thomas Ricosset, Gregor Seiler, William Whyte, and Zhenfei Zhang. FALCON. Technical report, National Institute of Standards and Technology, 2022. available at https:\/\/csrc.nist.gov\/Projects\/post-quantum-cryptography\/selected-algorithms-2022"},{"key":"10_CR59","unstructured":"Eric Rescorla, Kazuho Oku, Nick Sullivan, and Christopher\u00a0A. Wood. TLS Encrypted Client Hello. Internet-Draft draft-ietf-tls-esni-16, Internet Engineering Task Force, April 2023. Work in Progress"},{"key":"10_CR60","doi-asserted-by":"crossref","unstructured":"Ronald\u00a0L. Rivest, Adi Shamir, and Yael Tauman. How to leak a secret. In Colin Boyd, editor, Advances in Cryptology \u2013 ASIACRYPT\u00a02001, volume 2248 of Lecture Notes in Computer Science, pages 552\u2013565, Gold Coast, Australia, December\u00a09\u201313, 2001. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-45682-1_32"},{"key":"10_CR61","unstructured":"Peter Schwabe, Roberto Avanzi, Joppe Bos, L\u00e9o Ducas, Eike Kiltz, Tancr\u00e8de Lepoint, Vadim Lyubashevsky, John\u00a0M. Schanck, Gregor Seiler, Damien Stehl\u00e9, and Jintai Ding. CRYSTALS-KYBER. Technical report, National Institute of Standards and Technology, 2022. available at https:\/\/csrc.nist.gov\/Projects\/post-quantum-cryptography\/selected-algorithms-2022"},{"key":"10_CR62","doi-asserted-by":"crossref","unstructured":"Peter Schwabe, Douglas Stebila, and Thom Wiggers. Post-quantum TLS without handshake signatures. In Jay Ligatti, Xinming Ou, Jonathan Katz, and Giovanni Vigna, editors, ACM CCS 2020: 27th Conference on Computer and Communications Security, pages 1461\u20131480, Virtual Event, USA, November\u00a09\u201313, 2020. ACM Press","DOI":"10.1145\/3372297.3423350"},{"key":"10_CR63","doi-asserted-by":"crossref","unstructured":"Willy Susilo and Yi\u00a0Mu. Non-interactive deniable ring authentication. In Jong\u00a0In Lim and Dong\u00a0Hoon Lee, editors, ICISC 03: 6th International Conference on Information Security and Cryptology, volume 2971 of Lecture Notes in Computer Science, pages 386\u2013401, Seoul, Korea, November\u00a027\u201328, 2004. Springer, Heidelberg, Germany","DOI":"10.1007\/978-3-540-24691-6_29"},{"key":"10_CR64","doi-asserted-by":"crossref","unstructured":"Nik Unger and Ian Goldberg. Deniable key exchanges for secure messaging. In Indrajit Ray, Ninghui Li, and Christopher Kruegel, editors, ACM CCS 2015: 22nd Conference on Computer and Communications Security, pages 1211\u20131223, Denver, CO, USA, October\u00a012\u201316, 2015. ACM Press","DOI":"10.1145\/2810103.2813616"},{"issue":"1","key":"10_CR65","doi-asserted-by":"publisher","first-page":"21","DOI":"10.1515\/popets-2018-0003","volume":"2018","author":"N Unger","year":"2018","unstructured":"Unger, N., Goldberg, I.: Improved strongly deniable authenticated key exchanges for secure messaging. Proceedings on Privacy Enhancing Technologies 2018(1), 21\u201366 (2018)","journal-title":"Proceedings on Privacy Enhancing Technologies"},{"key":"10_CR66","unstructured":"WhatsApp. WhatsApp Encryption Overview Technical white paper, v.3, oct 2020. https:\/\/www.whatsapp.com\/security\/WhatsApp-Security-Whitepaper.pdf"},{"key":"10_CR67","doi-asserted-by":"crossref","unstructured":"Fangguo Zhang and Kwangjo Kim. ID-based blind signature and ring signature from pairings. In Yuliang Zheng, editor, Advances in Cryptology \u2013 ASIACRYPT\u00a02002, volume 2501 of Lecture Notes in Computer Science, pages 533\u2013547, Queenstown, New Zealand, December\u00a01\u20135, 2002. Springer, Heidelberg, Germany","DOI":"10.1007\/3-540-36178-2_33"},{"key":"10_CR68","doi-asserted-by":"crossref","unstructured":"Yuliang Zheng. Digital signcryption or how to achieve cost(signature & encryption) $$\\ll $$ cost(signature) + cost(encryption). In Burton\u00a0S. Kaliski Jr., editor, Advances in Cryptology \u2013 CRYPTO\u201997, volume 1294 of Lecture Notes in Computer Science, pages 165\u2013179, Santa Barbara, CA, USA, August\u00a017\u201321, 1997. Springer, Heidelberg, Germany","DOI":"10.1007\/BFb0052234"}],"container-title":["Lecture Notes in Computer Science","Advances in Cryptology \u2013 CRYPTO 2024"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-68376-3_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,8,15]],"date-time":"2024-08-15T21:04:30Z","timestamp":1723755870000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-68376-3_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031683756","9783031683763"],"references-count":68,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-68376-3_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"16 August 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"CRYPTO","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Annual International Cryptology Conference","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Santa Barbara, CA","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 August 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 August 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"44","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"crypto2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/crypto.iacr.org\/2024\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}