Notification of publicly available cryptography code:
Cryptography code and access to a repository for continuing development will
be made publicly available on or after Monday Jan 9th 2006 as part of the
Open Source Squeak Project (www.squeak.org <http://www.squeak.org/> ).
The code can be accessed two ways. Either through www.squeakSource.com
<http://www.squeaksource.com/> in the cryptography project
or through the squeak software itself.
The location for the Squeak Montecello repository using HTTP accessed
through the Squeak software is:
Squeak Cryptography Team Leader
For each of the following applications of hash functions, explain which
of hash function properties (preimage resistant, second preimage resistant
and collision resistant) are needed and which are not.
(a) Cryptographic signatures are produced by computing a hash of a message,
then applying a signature function to the hash of the message. Suppose Eve
has a list of messages m1,...mn, and their signatures computed using Bob's
signing key, but does not have Bob's signing key. Assuming that the
signature function is not susceptible to attack, it should not be possible
for Eve to present Bob's signature on any message other than m1,...mn.
(b) Suppose that Eve works for a Certificate Authority. She does not have
access to the special harware that computes digital signatures, but she
knows the hash function. In addition, Eve can get messages signed, but every
message that is signed automatically goes into a log file that Eve cannot
change. Eve should not be able to produce a certificate signed by the
Certificate Authority that does not appear in the log file.
Anybody can explain these to me?
[image: Reply With