Talk:Standard model (cryptography)
This article has not yet been rated on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | ||||||||||||||
|
probably we need a disambiguation page for "standard model"
Connection between CRS and the PKI models
[edit]The argument on this page showing that the PKI model is at least as powerful as the CRS model is incorrect - this is because in the common random string model, many parties may be required to share a common random string.
For example, you can use the CRS model to do non interactive zero knowledge proofs - the main advantage of using this model is that the verifier does not need to interact with the prover, the proof is simply a single message. Unlike the interactive setting, many different verifiers could verify the same proof in this model, and they do not even need to be present when the system is set up. If you create your common reference string by using a coin flipping protocol (which must be interactive, and between a fixed number of players), both of these advantages are lost.
For this reason, I'm going to remove this argument. Birkett 12:33, 1 November 2007 (UTC)
Ueli Maurer
[edit]Ueli Maurer is not this guy linked to. The link refers to right wing SVP party member which has nothing to do with the crypto guy.