| dc.contributor.author | Cohen, Aloni(Aloni Jonathan) | |
| dc.contributor.author | Holmgren, Justin Lee | |
| dc.contributor.author | Nishimaki, Ryo | |
| dc.contributor.author | Vaikuntanathan, Vinod | |
| dc.contributor.author | Wichs, Daniel | |
| dc.date.accessioned | 2020-09-24T14:42:14Z | |
| dc.date.available | 2020-09-24T14:42:14Z | |
| dc.date.issued | 2018-12 | |
| dc.date.submitted | 2018-01 | |
| dc.identifier.issn | 1095-7111 | |
| dc.identifier.uri | https://hdl.handle.net/1721.1/127690 | |
| dc.description.abstract | A watermarking scheme for programs embeds some information called a mark into a program while preserving its functionality. No adversary can remove the mark without damaging the functionality of the program. In this work, we study the problem of watermarking various cryptographic programs such as pseudorandom function (PRF) evaluation, decryption, and signing. For example, given a PRF F, we create a marked program C that evaluates F(·). An adversary that gets C cannot come up with any program C ∗ in which the mark is removed but which still evaluates the PRF correctly on even a small fraction of the inputs. The work of Barak et al. [CRYPTO 2001, Springer, Berlin, 2001, pp. 1-18; J. ACM, 59 (2012), 6] shows that, assuming indistinguishability obfuscation (iO), such watermarking is impossible if the marked program C evaluates the original program with perfect correctness. In this work we show that, assuming iO, such watermarking is possible if the marked program C is allowed to err with even a negligible probability, which would be undetectable to the user. We also significantly extend the impossibility results to our relaxed setting. Our watermarking schemes are public key, meaning that we use a secret marking key to embed marks in programs, and a public detection key that allows anyone to detect marks in programs. Our schemes are secure against chosen program attacks where the adversary is given oracle access to the marking functionality. We emphasize that our security notion of watermark nonremovability considers arbitrary adversarial strategies to modify the marked program, in contrast to the prior works. ©2018 Society for Industrial and Applied Mathematics | en_US |
| dc.language.iso | en | |
| dc.publisher | Society for Industrial & Applied Mathematics (SIAM) | en_US |
| dc.relation.isversionof | https://dx.doi.org/10.1137/18M1164834 | en_US |
| dc.rights | Article is made available in accordance with the publisher's policy and may be subject to US copyright law. Please refer to the publisher's site for terms of use. | en_US |
| dc.source | SIAM | en_US |
| dc.title | Watermarking Cryptographic Capabilities | en_US |
| dc.type | Article | en_US |
| dc.identifier.citation | Cohen, Aloni et al., "Watermarking Cryptographic Capabilities." SIAM Journal on Computing 47, 6 (December 2018): 2157–2202 doi. 10.1137/18M1164834 ©2018 Authors | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory | en_US |
| dc.relation.journal | SIAM Journal on Computing | en_US |
| dc.eprint.version | Final published version | en_US |
| dc.type.uri | http://purl.org/eprint/type/JournalArticle | en_US |
| eprint.status | http://purl.org/eprint/status/PeerReviewed | en_US |
| dc.date.updated | 2019-07-09T16:58:59Z | |
| dspace.date.submission | 2019-07-09T16:58:59Z | |
| mit.journal.volume | 47 | en_US |
| mit.journal.issue | 6 | en_US |
| mit.metadata.status | Complete | |
