Quiz Entry - updated: 2026.07.14
What kinds of real-world systems are typical cryptographic protocol applications?
E-voting, biometric passports, e-cash (Bitcoin), DRM on e-readers, signed software updates — each requires multiple algorithms combined into a multi-phase protocol with specific security goals.
| Protocol | Real-world example |
|---|---|
| E-voting | Estonian i-Voting, Swiss CHvote, US absentee ballot systems |
| Biometric pass | Swiss E-Pass, EU eIDAS, ICAO 9303 |
| e-Cash | Bitcoin, Ethereum, Lightning Network |
| DRM on e-readers | Kindle, Tolino — books bound to device + account |
| Software update | Windows Update, apt/yum, Apple App Store auto-updates |
For each system, the security review asks the same three questions:
- What phases does the protocol have? Most non-trivial protocols have setup, operation, and revocation phases — each with different security requirements.
- Which algorithms are used in each phase? Different parts may need different primitives — e.g. RSA for cert signing, AES for content encryption, HMAC for device binding.
- Are any necessary primitives missing? Sometimes the protocol assumes an algorithm that doesn't exist or isn't strong enough — that's a research gap (e.g. fully-homomorphic encryption was theoretical for decades before becoming practical).
Tip: When designing a new system, look at the closest existing protocol first. E-voting alone has had 30+ years of academic research (Helios, Civitas, Belenios). Reinventing it from scratch — without a literature survey — almost guarantees you'll repeat known attacks.