chosen ciphertext attack
Homomorphic Authenticated Encryption Secure Against Chosen-Ciphertext Attack
... under chosen ciphertext ...a ciphertext is done with respect to a labeled ...the ciphertext is still malleable by function evaluation, a decryption query should essentially declare how the ...
23
A New Variant of the Cramer-Shoup KEM Secure against Chosen Ciphertext Attack
... [8] D. Cash, E. Kiltz and V. Shoup, The Twin Diffie-Hellman Problem and Applications, In Eurocrypt ’08, LNCS 4965, pp. 127–145, Springer-Verlag, 2008. Full version available on Cryptology ePrint Archive: Report 2008/067 ...
13
Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack
... adaptive chosen ciphertext ...of attack by simply allowing an adversary to obtain decryptions of its choice, ...“target” ciphertext — we want to guarantee that the adversary cannot obtain any ...
65
Identity-Based Encryption Secure Against Selective Opening Chosen-Ciphertext Attack
... Organization. The rest of the paper is organized as follows. Some preliminaries are given in Section 2. We introduce the notion and security model of extractable 1SPO-IBE in Section 3. The notion of strengthened XAC and ...
47
Public Key Trace and Revoke Scheme Secure against Adaptive Chosen Ciphertext Attack
... as Chosen Plaintext Attack (CPA), and a Broadcast Encryption Scheme withstanding such an attack is said to be z-Resilient against ...an attack is not powerful enough to model some realistic ...
22
On Homomorphic Encryption and Chosen-Ciphertext Security
... CS98. Ronald Cramer and Victor Shoup. A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack. In CRYPTO ’98, volume 1462, pages 1–13. Springer Verlag, 1998. ...
15
Circular chosen-ciphertext security with compact ciphertexts
... [17] David Cash, Matthew Green, and Susan Hohenberger. New definitions and separations for circular security. Cryptology ePrint Archive, Report 2010/144, 2010. http://eprint.iacr.org/. [18] Ronald Cramer and Victor ...
22
On Quantum Chosen-Ciphertext Attacks and Learning with Errors
... so-called chosen-plaintext attacks ...devastating attack that allows an adversary to exercise precise control over a cryptosystem is characterized by a chosen-ciphertext attack ...the ...
31
A Characterization of Authenticated-Encryption as a Form of Chosen-Ciphertext Security
... every ciphertext it queries is ...a chosen-ciphertext attack model: our main result proves that the IND-CCA3 and authenticated-encryption are equivalent ...
7
Efficient Chosen-Ciphertext Secure Identity-Based Encryption with Wildcards
... 16. Charles Rackoff and Daniel R. Simon. Non-interactive zero-knowledge proof of knowl- edge and chosen ciphertext attack. In Joan Feigenbaum, editor, CRYPTO’91, volume 576 of LNCS, pages 433–444, ...
20
Chosen-Ciphertext Security from Slightly Lossy Trapdoor Functions
... tive) chosen-ciphertext attack (IND-CCA) [13, 17] ...challenge ciphertext to the decryption oracle, as this would lead to a trivial ...
14
Weak adaptive chosen ciphertext secure hybrid encryption scheme
... Weak chosen ciphertext security In this section we describe the new security notion named as weak adaptive chosen ciphertext security(IND-WCCA) for hybrid encryption ...adaptive chosen ...
12
Noncommutative Polly Cracker-type cryptosystems and chosen-ciphertext security
... consider chosen-ciphertext attacks against non- commutative Polly Cracker-type ...a chosen-ciphertext attack, which assumes a very sim- ple private ...this attack which are valid ...
21
Chosen Ciphertext Security with Optimal Ciphertext Overhead
... the ciphertext overhead of such schemes can never match the generic lower ...whose ciphertext overhead is essentially independent of the size of the underlying ...optimal ciphertext overhead is the ...
19
Relaxing Chosen-Ciphertext Security
... For instance, consider a voting scheme in which votes are encrypted, and illegal duplicate votes are detected via direct ciphertext comparison. In such cases, the full power of CCA security is indeed used. We ...
39
Enhanced Chosen-Ciphertext Security and Applications
... CCA security of DEM is not sufficient. Surpringly, this does not work: hybrid encryption does not preserve the ECCA security of the KEM. Roughly speaking, the subtlety in the proof arises when the simulator needs to ...
33
Chosen-Ciphertext Security from Subset Sum
... It is well known that the above weak tag-based CCA notion can be gener- ically enhanced to full-fledged IND-CCA security using a one-time signature scheme [17]. This allows us to conclude Theorem 1. Efficiency. Let ` be ...
13
Chosen-Ciphertext Security via Correlated Products
... We motivate the study of security under correlated products by relating it to the study of chosen-ciphertext security. Specifically, we show that any collection of injective trapdoor functions that is secure ...
33
Chosen-Ciphertext Secure RSA-type Cryptosystems
... dependent-RSA problem [38] and another one is based on the decisional small 𝑒-th residues problem [11]. 1.4 Relation to IBE technique Our technique shares many common features with the identity-based construc- tion in ...
19
Chosen-Ciphertext Secure Proxy Re-Encryption
... a ciphertext under one key into a ciphertext of the same message under a different ...against chosen ciphertext ...against chosen ciphertext attacks for PRE schemes, and present ...
22