Adapts slides for SWITS presentation

Author: dbosk

slides/Makefile

@@ -1,4 +1,4 @@
-FIGS+= 	tposet.tikz
+FIGS+= 	trump.jpg
 FIGS+= 	proofshare.tikz
 FIGS+= 	Jacobs-method.jpg
 
@@ -24,7 +24,7 @@ DEPENDS+=	ecurrency.bib
 .PHONY: all
 all: slides-short.pdf
 
-slides-short.pdf: slides-short.tex preamble.tex ${DEPENDS} ${FIGS}
+slides-short.pdf: slides-short.tex preamble.tex revision.tex ${DEPENDS} ${FIGS}
 slides-short.pdf: idea.tex
 
 preamble.tex: ../paper/preamble.tex
@@ -46,7 +46,7 @@ clean:
 print: slides-short.pdf
 
 
-tposet.tikz: ../fig/tposet.tikz
+trump.jpg: ../fig/trump.jpg
 proofshare.tikz: ../fig/proofshare.tikz
 Jacobs-method.jpg: ../fig/Jacobs-method.jpg
 

slides/idea.tex

@@ -1,5 +1,13 @@
 \mode*
 
+\section{What's the problem?}
+
+\begin{frame}
+  \centering
+  \includegraphics[height=\textheight]{trump.jpg}
+\end{frame}
+
+
 \section[Participating]{Participating in a protest}
 
 \subsection{Joining a protest}
@@ -9,13 +17,6 @@ \subsection{Joining a protest}
   \includegraphics[height=0.5\textheight]{ProtestVerif-join.png}
 \end{frame}
 
-\begin{frame}
-  \begin{align*}
-    cid &\gets H(\text{\enquote{WE MUST STAND UP \dots}}) \\
-    pid &\gets PRF_{k_P}(cid)
-  \end{align*}
-\end{frame}
-
 \subsection{During in a protest}
 
 \begin{frame}
@@ -28,60 +29,13 @@ \subsection{During in a protest}
   \includegraphics{proofshare.tikz}
 \end{frame}
 
-\begin{frame}
-  \begin{minipage}{\linewidth}
-    \begin{align*}
-      P\to W\colon & pid \\
-      W\leftrightarrow P\colon & \text{perform distance bounding} \\
-      W\colon & wid\gets PRF_{k_W}(pid), \\
-        & wsig\gets PRF_{k_W}(wid, t_s, l) \\
-      W\to P\colon & (wid, t_s, l, wsig) \\
-    \end{align*}
-  \end{minipage}
-\end{frame}
-
-\begin{frame}
-  % XXX Describe distance bounding
-  \centering
-  \procedure{Distance-bounding Schnorr}{%
-    \textbf{Prover}\colon g, q = |\langle g\rangle|, x\in \ZZ_q
-    \> \>
-    \textbf{Verifier}\colon g, q, X = g^x \\
-    \beta_i \sample \bin, y \sample \ZZ_q
-    \> \> \alpha_i \sample \bin \\
-    g^y, commit(\beta_1, \dotsc, \beta_n) \> \sendmessageright*{} \> \\
-    \> \text{Rapid phase} \> \\
-    \> \sendmessageleft*{\alpha_i} \> \\
-    \> \sendmessageright*{\beta_i} \> \\
-    \> \text{Verification phase} \> \\
-    c\gets \alpha_1|\beta_2|\dotsb|\alpha_n|\beta_n \\
-    r\gets y + cx \> \sendmessageright*{} \> g^r =^? X^cY\\
-  }
-\end{frame}
-
 \subsection{After the protest}
 
 \begin{frame}
   \centering
   \includegraphics[height=0.5\textheight]{ProtestVerif-endprotest.png}
 \end{frame}
 
-\begin{frame}
-  \begin{align*}
-    \{W, P\}\rightsquigarrow S\colon & H(pid, wid, t_s, l, wsig)
-  \end{align*}
-\end{frame}
-
-\begin{frame}
-  \begin{align*}
-    W\rightsquigarrow S\colon & (pid, wid, t_s, l, wsig),\\
-    & NIZK(wid = PRF_{k_W}(pid), wsig = PRF_{k_W}(wid, t_s, l),\\
-    & \exists sign(k_W)) \\
-    P\rightsquigarrow S\colon & (pid, wid, t_s, l, wsig),\\
-    & NIZK(pid = PRF_{k_P}(cid), \exists sign(k_P))
-  \end{align*}
-\end{frame}
-
 
 \section[Verifying]{Verifying a protest}
 
@@ -94,7 +48,7 @@ \subsection{Verifying proof shares}
 
 \begin{frame}
   \begin{columns}
-    \begin{column}{0.5\linewidth}
+    \begin{column}{0.6\linewidth}
       \tiny
       \includegraphics[width=\linewidth]{proofshare.tikz}
     \end{column}
@@ -113,11 +67,20 @@ \subsection{Verifying proof shares}
 \subsection{Counting proofs}
 
 \begin{frame}
-  \begin{itemize}
-    \item Each \(pid\) with more than \(t\) valid proof shares is counted.
-    \item \(t\) is a threshold set to be higher than expected size of collusion 
-      clusters.
-  \end{itemize}
+  \begin{example}[No trusted witnesses]
+    \begin{itemize}
+      \item Each \(pid\) with more than \(t\) valid proof shares is counted.
+      \item \(t\) is a threshold set to be higher than expected size of collusion 
+        clusters.
+    \end{itemize}
+  \end{example}
+
+  \begin{example}[Trusted witnesses]
+    \begin{itemize}
+      \item Alternatively, each \(\pid\) with a proof share issued by a trusted 
+        witness is counted.
+    \end{itemize}
+  \end{example}
 \end{frame}
 
 \begin{frame}
@@ -127,13 +90,88 @@ \subsection{Counting proofs}
 \end{frame}
 
 
+\begin{figure}
+  \centering
+  %\footnotesize
+  \begin{minipage}{\linewidth}
+    \begin{align*}
+      O\to \text{all}\colon & \text{manifesto} \\
+      P\colon & t_s\gets \TSget \\
+        & \cid\gets \Hash[\text{manifesto}], \\
+        & \pid\gets \ACprf[_{\sk_P}][\cid] \\
+      W\colon & t_s'\gets \TSget
+      \\[-1em]
+      \noalign{\hfill Join}
+      \midrule
+      \noalign{\hfill Participation}
+      \\[-3em]
+      P\to W\colon & \pid \\
+      P\leftrightarrow W\colon &
+        \PPK\mleft\{ (\sk_P) : \mright. \\
+        & \qquad \pid = \ACprf[_{\sk_P}][\cid], \\
+        & \qquad \mleft. \sigma_P' = \ACblind[\ACsign[_{\ssk}][\sk_P]] \mright\} 
+        \\
+      W\colon & \wid\gets \ACprf[_{\sk_W}][\pid] \\
+      W\to P\colon & (\wid, t_s', l)
+      \\[-1em]
+      \noalign{\hfill Participation}
+      \midrule
+      \noalign{\hfill Submission}
+      \\[-2em]
+      P\colon & t_e\gets \TSstamp[\Hash[\pid, \wid, t_s, t_s', l]] \\
+      W\colon & t_e'\gets \TSstamp[\Hash[\pid, \wid, t_s, t_s', l]] \\
+      W\to S\colon & (\pid, \wid, t_s, t_s', t_e, l, \pi_{\wid}),\quad 
+      \text{where} \\
+        & \pi_{\wid} = \SPK\mleft\{ (\sk_W) : \mright. \\
+        & \qquad \wid = \ACprf[_{\sk_W}][\pid], \\
+        & \qquad \mleft. \sigma_W' = \ACblind[\ACsign[_{\ssk}][\sk_W]]\mright\} 
+        \\
+        & \qquad\qquad (\pid, \wid, t_s, t_s', l) \\
+      P\to S\colon & (\cid, \pid, \wid, t_s, t_s', t_e, l, \pi_{\pid}),\quad 
+      \text{where}\\
+        & \pi_{\pid} = \SPK\mleft\{ (\sk_P) : \mright. \\
+        & \qquad \pid = \ACprf[_{\sk_P}][\cid], \\
+        & \qquad \mleft. \sigma_P' = \ACblind[\ACsign[_{\ssk}][\sk_P]] \mright\} 
+        \\
+        & \qquad\qquad (\cid, \pid, \wid, t_s, t_s', l)
+    \end{align*}
+  \end{minipage}
+  \caption{%
+    An overview of the Join, Participation and Submission phases of \PRIVO.\@
+    The organizer \(O\) broadcasts the manifesto.
+    The protester \(P\), witness \(W\) and their computations are as in \cref{fig:ProofFig}.
+    Finally, both \(P\) and \(W\) submits the proof shares to a permanent storage \(S\).
+  }%
+  \label{fig:ProtocolOverview}
+\end{figure}
+
 \section{Conclusions}
 
 \begin{frame}
+  \begin{block}{Contributions}
+    \begin{itemize}
+      \item Distance-bounding Schnorr protocol
+      \item \Ie distance-bounding \acs{ZKP} and anonymous credentials
+      \item Solves crowd counting in adversarial setting.
+    \end{itemize}
+  \end{block}
+\end{frame}
+
+\begin{frame}
+  \begin{greenblock}{Possibilities}
+    \begin{itemize}
+      \item We can implement this by extending BankID.
+      \item There are blockchains (ledgers) with reasonable transaction 
+        throughput, \eg OmniLedger.
+    \end{itemize}
+  \end{greenblock}
+
   \begin{alertblock}{Limits}
     \begin{itemize}
       \item Cannot trust results that are pro-government if government issues 
         credentials (Sybil).
+
+      \item Requires a chip in smartphones for distance bounding.
     \end{itemize}
   \end{alertblock}
 \end{frame}