Computer Science
Courant Institute

Introduction to Cryptography

CSCI-GA 3210-001

Fall 2016

Announcements

My colleagues Thomas Vidick and Stephanie Wehner are teaching an online EdX course on quantum cryptography.
Make sure you are subscribed to our mailing list.

Homework assignments

Work is graded based on correctness, clarity, and conciseness. All solutions must be typeset in Latex, following the templates provided, and submitted electronically (send both TeX and PDF). Only submit work that you believe is correct; if you cannot solve a problem completely, you will get significantly more credit if you clearly identify the gaps in your solution. We recommend starting any longer solution with an informal yet accurate proof summary that describes the core idea. You are expected to read all the hints before the following class. Collaboration and consultation with external material is allowed, but must be declared for each question. The final exam will be based on homework questions.

For hints and further reading, use the Hint-o-matic.

Homework 0, solution template
Homework 1, solution template
Homework 2, solution template
Homework 3, solution template
Homework 4, solution template
Homework 5, solution template
Homework 6, solution template (due in two weeks)
Homework 7, solution template
Homework 8, solution template
Homework 9, solution template
Homework 10, solution template
Homework 11 (optional), solution template

Some Information

Lectures	Mondays 11:00am-12:50pm WWH 517
Instructor	Oded Regev
Office hours	Mondays 9:45am-10:45am, WWH 303
Reading	Introduction to Cryptography, by Jonathan Katz and Yehuda Lindell. A good introductory book. Foundations of Cryptography, Vol. 1 and 2 by Oded Goldreich. A comprehensive book for those who want to understand the material in greater depth. Lecture notes by Yevgeniy Dodis, which we'll follow closely Lecture notes by Chris Peikert Lecture notes by Rafael Pass and Abhi Shelat. Last year's course
Requirements	Active participation in class, homework assignments, final exam
Prerequisites	Students are expected to be comfortable reading and writing mathematical proofs, be at ease with algorithmic concepts, and have elementary knowledge of discrete math, number theory, and basic probability. No programming will be required for the course.

Schedule

Date	Class Topic
Sep 12	Introduction, Perfect Secrecy. Number theory. Lectures 1+2 of Peikert, Lecture 1 of Dodis, Section 1.3 of Pass-Shelat.
Sep 19	(Proof of Shannon's Theorem) Finishing number theory. One-way functions (and collections thereof). Weak one-way functions.
Sep 26	Examples of one-way functions. Weak OWFs to strong OWFs. Informal discussion of indistinguishability and pseudorandom generators.
Oct 3	Collections of one-way functions. More examples of OWFs. Application of OWFs to password storage.
Oct 17	Indistinguishability. Pseudorandom generators. Expanding PRGs.
Oct 24	Blum-Micali PRG. Hard-core bits. Goldreich-Levin; Pseudorandom functions: motivation and definition
Oct 31	Constructing Pseudorandom functions
Nov 7	Pseudorandom permutations and Luby-Rackoff; symmetric key encryption, definitions of security and constructions
Nov 14	Finishing symmetric key encryption
Nov 21	Public key encryption; Trapdoor one-way permutations; Diffie-Hellman protocol and ElGamal cryptosystem.
Nov 28	Authentication security definition and info theoretic construction.
Dec 5	Computational construction of MAC using PRF. Expanding input of MACs using CRHF or almost universal hash functions. Authenticated encryption.
Dec 12	Digital Signatures.
Dec 13	Lattice-based cryptography (bonus class)
Dec 19	Final exam

Computer Science Courant Institute