Warning: This is the Spring 2018 course website.
The latest CS355 website is online here.

Syllabus

Date	Topic and Readings
—	Problem Set 1 (due Friday, April 13 at 5pm via Gradescope). Problem Set 2 (due Friday, April 27 at 5pm via Gradescope). Problem Set 3 (due Friday, May 11 at 5pm via Gradescope). Problem Set 4 (due Friday, May 25 at 5pm via Gradescope). Problem Set 5 (due Friday, June 8 at 5pm via Gradescope). You must use LaTeX to write up your problem set. You must use the provided template to typset your assignment.
Foundations of Cryptography
April 2 (David)	Topics (Lecture Notes) Logistics and administration Symmetric primitives: one-way functions (OWFs), pseudorandom generators (PRGs), and pseudorandom functions (PRFs) The Blum-Micali PRG and hybrid arguments Readings Boneh-Shoup (Section 2.4, 3.4.2-3.4.3)
April 4 (Henry)	Topics (Lecture Notes) Random-oracle model RSA full-domain hash signatures Readings Luca Trevisan's blog post on RSA-FDH Boneh-Shoup (Section 8.10.2)
Cryptographic Protocols
April 9 (Sam)	Topics (Lecture Notes) Interactive proof systems Zero-knowledge (simulation-based definitions) Readings How To Simulate It (Sections 5.1-5.3), by Yehuda Lindell
April 11 (David)	Topics (Lecture Notes) Proofs of knowledge Sigma protocols Readings Boneh-Shoup (Section 19.1, 19.4-19.6)
April 13	Problem Set 1 Due at 5pm via Gradescope.
April 16 (Henry)	Topics (Lecture Notes) Non-interactive zero-knowledge Fiat-Shamir heuristic Readings Susan Hohenberger's lecture notes on Fiat-Shamir Boneh-Shoup (Section 19.6)
April 18 (Sam)	Topics (Lecture Notes) Oblivious transfer (OT) and Yao's garbled circuits Readings A Proof of Security of Yao's Protocol for Two-Party Computation (Section 1 and Section 4, p. 12-15), by Yehuda Lindell and Benny Pinkas
April 23 (David)	Topics (Lecture Notes) Shamir secret sharing Beaver triples and MPC in the preprocessing model Readings How to Share a Secret, by Adi Shamir (CACM 1979)
April 25 (Henry)	Topics (Lecture Notes) From MPC to zero-knowledge proofs (MPC-in-the-head) Readings Zero-Knowledge from Secure Multiparty Computation, by Yuval Ishai, Eyal Kushilevitz, Rafail Ostrovsky, and Amit Sahai (STOC 2007)
April 27	Problem Set 2 Due at 5pm via Gradescope
Post-Quantum Cryptography
April 30 (Sam)	Topics (Lecture Notes) The short integer solutions (SIS) problem SIS Hash Function Readings A Decade of Lattice Cryptography (Sections 2.2 and 4.1), by Chris Peikert
May 2 (Sam)	Topics (Lecture Notes) Lattice signatures The learning with errors (LWE) problem Regev encryption Readings A Decade of Lattice Cryptography (Sections 4.2 and 5.2.1), by Chris Peikert
May 7 (David)	Topics (Lecture Notes) Fully homomorphic encryption (FHE) Readings A Decade of Lattice Cryptography (Section 6.1), by Chris Peikert
May 9 (Sam)	Topics (Lecture Notes) Alternatives to LWE for post-quantum cryptography Readings Post-Quantum Cryptography, by Daniel J. Bernstein and Tanja Lange
May 11	Problem Set 3 Due at 5pm via Gradescope
Applications
May 14 (Henry)	Topics (Lecture Notes) Real-world cryptanalysis: Infineon attack Readings The Return of Coppersmith’s Attack: Practical Factorization of Widely Used RSA Moduli, by Matus Nemec, Marek Sys, Petr Svenda, Dusan Klinec, and Vashek Matyas (CCS 2017) Mining Your Ps and Qs - Widespread Weak Keys in Network Devices, by Nadia Heninger, Zakir Durumeric, Eric Wustrow, and J. Alex Halderman (USENIX Security 2012)
May 16 (Sam)	Topics (Lecture Notes) Elliptic curve cryptography Introduction to Pairings Readings Elliptic Curve Cryptosystems, by Neal Koblitz
May 21 (David)	Topics (Lecture Notes) More applications of pairings-based cryptography: short signatures, identity-based encryption, broadcast encryption Readings Short Signatures from the Weil Pairing, by Dan Boneh, Ben Lynn, and Hovav Shacham (Asiacrypt 2001)
May 23 (David)	Topics (Lecture Notes) Linear probabilistically checkable proofs (linear PCPs) Succinct non-interactive argument (SNARG) systems Readings Succinct Non-Interactive Arguments via Linear Interactive Proofs, by Nir Bitansky, Alessandro Chiesa, Yuval Ishai, Rafail Ostrovsky, and Omer Paneth (TCC 2013)
May 25	Problem Set 4 Due at 5pm via Gradescope
May 28	No class: Memorial Day holiday
May 30 (Henry)	Topics (Lecture Notes) Private computation of aggregate statistics Proofs on secret-shared data Readings Prio: Private, Robust, and Scalable Computation of Aggregate Statistics, by Henry Corrigan-Gibbs and Dan Boneh (NSDI 2017)
June 4 (David)	Bonus lecture: program obfuscation (Lecture Notes)
June 6 (Henry)	Bonus lecture: cryptanalysis (Lecture Notes)
June 8	Problem Set 5 Due at 5pm via Gradescope

Warning: This is the Spring 2018 course website. The latest CS355 website is online here.

Warning: This is the Spring 2018 course website.
The latest CS355 website is online here.