|![[Search]](http://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](http://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](http://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](http://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](http://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Computer Laboratory Security Seminar > Bitcoin as a source of verifiable public randomness
Bitcoin as a source of verifiable public randomnessAdd to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Laurent Simon. Abstract: Many security protocols can be strengthened by a public randomness beacon: a source of randomness which can be sampled by anybody after time t, but is strongly unpredictable to anybody prior to time t. Applications include public lotteries, election auditing, and multiple cryptographic protocols such as cut-and-choose or fair contract signing. Until recently, all proposals for instantiating a beacon either rely on a trusted third party (such as the NIST beacon or random.org) or have difficult-to-evaluate security properties (such as hashing stock market data). In this talk we introduce a new construction for building a beacon based on Bitcoin’s block chain. This beacon outputs 64 bits of min-entropy every 10 minutes on average and we can prove strong financial lower bounds on the cost of manipulating the output which are at least in the tens of thousands of dollars. We discuss constructions for building a manipulation-resistant lottery, a new security construction, on top of this primitive which can make attacks even more expensive. Finally, we discuss a number of interesting smart contracts that can be efficiently implemented by extending Bitcoin script to enable sampling the beacon output, including secure multi-party lotteries and self-enforcing non-interactive cut and choose. Bio: Joseph Bonneau is a Postdoctoral Research Fellow at the Center for Information Technology Policy, Princeton. His research interests include passwords and web authentication, Bitcoin and cryptocurrencies, HTTPS , and secure messaging software. He received a PhD from the University of Cambridge under the supervision of Ross Anderson and an MS from Stanford under the supervision of Dan Boneh. He has worked at Google, Yahoo, and Cryptography Research Inc. This talk is part of the Computer Laboratory Security Seminar series. This talk is included in these lists:
Note that ex-directory lists are not shown. |
Other listsUniversity of Cambridge, New Zealand Studies Seminar Group The obesity epidemic: Discussing the global health crisis Babbage Seminar Series Cambridge PhD Clinic Special panel discussion Statistical Methods for Cognitive PsychologistsOther talksBears, Bulls and Boers: Market Making and Southern African Mining Finance, 1894-1899 Arithmetic and Dynamics on Markoff-Hurwitz Varieties Frontiers in paediatric cancer research Borel Local Lemma Glanville Lecture 2017/18: The Book of Exodus and the Invention of Religion Babraham Distinguished Lecture - Endoplasmic reticulum turnover via selective autophagy |
Joseph Bonneau, Center For Information Technology Policy, Princeton
Tuesday 30 September 2014, 14:00-15:00