Revision as of 22:18, 21 April 2023 edit David Eppstein (talk \| contribs) Autopatrolled, Administrators 235,660 edits Benny Chor ← Previous edit		Revision as of 01:22, 28 June 2023 edit undo Dimawik (talk \| contribs) Extended confirmed users 2,446 edits →Applications: added information Tag: harv or sfn error Next edit →
Line 18: In 1993, [[Mihir Bellare]] and [[Phillip Rogaway]]<ref name="bellrog"/> were the first to advocate their use in cryptographic constructions. In their definition, the random oracle produces a bit-string of [[infinity\|infinite]] length which can be truncated to the length desired. When a random oracle is used within a security proof, it is made available to all players, including the adversary or adversaries. == Domain separation == A single oracle may be treated as multiple oracles by pre-pending a fixed bit-string to the beginning of each query (e.g., queries formatted as "1\|x" or "0\|x" can be considered as calls to two separate random oracles, similarly "00\|x", "01\|x", "10\|x" and "11\|x" can be used to represent calls to four separate random oracles). This practice is usually called '''___domain separation'''.{{sfn\|Bellare\|Davis\|Günther\|2020\|p=3}} == Limitations ==

Random oracle: Difference between revisions