[PDF] Top 20 Public-Key Encryption with Weak Randomness: Security against Strong Chosen Distribution Attacks

Public-Key Encryption with Weak Randomness: Security against Strong Chosen Distribution Attacks

... probabilistic encryption schemes, using weak randomness can lead to catastrophic attacks in particular when the used randomness has little or even no ...ElGamal encryption scheme ... See full document

32

Hedged Public-key Encryption: How to Protect against Bad Randomness

... side-channel attacks, system resets or for a variety of other ...poor randomness will have as little as possible impact on the security of the scheme in the following ...good randomness the ... See full document

34

Public-Key Encryption Indistinguishable Under Plaintext-Checkable Attacks

... under chosen-ciphertext attack (IND-CCA) is now considered the de facto security notion for public-key ...stronger security guarantee than what is ...weaker security notion, ... See full document

27

Security Against Related Randomness Attacks via Reconstructive Extractors

... Related Randomness Attack (RRA) setting, the adversary can not only force the reuse of existing random values as in the RA setting, but can also force the use of functions of those random ...reset attacks ... See full document

21

An Efficient Public-Key Searchable Encryption Scheme Secure against Inside Keyword Guessing Attacks

... Our security model has a major difference with other PEKS ...the security models above are considered in the multi-user setting and the chosen-key model [22], in which there are multiple data ... See full document

22

Related Randomness Security for Public Key Encryption, Revisited

... required randomness, is a complex and diﬃcult task, and several examples of RNGs failing in practice are known [23, 24, 26, 27, ...of attacks made possible by randomness failures are many ...signing ... See full document

30

(Tightly) QCCA-Secure Key-Encapsulation Mechanism in the Quantum Random Oracle Model

... indistinguishability against quantum chosen-ciphertext attacks (IND-qCCA security) of key-encapsulation mechanisms (KEMs) in quantum random oracle model ...deterministic ... See full document

14

Resisting Randomness Subversion: Fast Deterministic and Hedged Public-key Encryption in the Standard Model

... of public-key encryption (PKE). We first consider randomness-subversion attacks, namely ones that undermine randomness-generation ...deterministic public-key ... See full document

51

Encryption with Untrusted Keys: Security against Chosen Objects Attack

... comprehensive security definition, we present a general result that any construction with a collection of simpler properties meets the above ...“security against Chosen Objects Attack,” or ... See full document

38

Related Randomness Attacks for Public Key Encryption

... that randomness failures of var- ious kinds are endemic in deployed cryptographic ...schemes against such ...a public key encryption scheme to reuse random values, and functions of ... See full document

26

Sender Equivocable Encryption Schemes Secure against Chosen-Ciphertext Attacks Revisited

... a public-key encryption (PKE) scheme is formalized by Fehr et ...secure against chosen-plaintext/ciphertext selective opening attacks (SO-CPA/CCA ...some randomness, such ... See full document

19

Leakage-Resilient Chosen-Ciphertext Secure Public-Key Encryption from Hash Proof System and One-Time Lossy Filter

... leakage-resilient security against chosen-ciphertext attacks (LR- ...identity-based encryption (IBE) scheme with master key-dependent chosen-plaintext (mKDM-sID-CPA) ... See full document

23

Hedged Nonce-Based Public-Key Encryption: Adaptive Security under Randomness Failures

... of randomness failures, we recommend that one use HN-IND secure N-PKE if possible, and, espe- cially, employ a combination of a variety of things which do not repeat ...independent chosen randomness as ... See full document

30

Predicate encryption against master-key tampering attacks

... many key generation queries to the tampering oracle and receive secret keys generated under the falsified master key φ( MSK ) both in Phase 1 and Phase ...2. Key generation queries for X where R ( ... See full document

20

Signature Schemes with a Fuzzy Private Key

... (and security systems based on them) to be used in ...fuzzy key setting required in our work by some practical biometric ...fuzzy key setting is ...the weak simulatability of the linear sketch ... See full document

51

A new public key system based on Polynomials over finite fields GF(2)

... Decryption operation for both “off-line” and “on-line” encryption will require one regular exponentiation as in the case with “on-line” encryption and one multiplication or one XOR operation. Signature ... See full document

5

On Public Key Encryption from Noisy Codewords

... abstract encryption scheme described in Mic- ciancio’s online talk [32] which generalizes the encryption schemes of Regev and ...lattice-based public key encryption, for example in [33, ... See full document

37

Public Auditing of Dynamic Data Sharing in Cloud Storage Using Aggregate Cryptosystem

... new public-key cryptosystems that produce constant-size ciphertexts such that efficient delegations of decryption rights for any set of ciphertexts are ...single key, but the power of all the keys ... See full document

9

Fault attacks on pairing-based protocols revisited

... fault attacks on computing a pairing value e(P, Q), where P is a public point and Q is a secret ...these attacks are in fact effective only on a small number of pairing-based protocols, and that too ... See full document

16

Concise Multi-Challenge CCA-Secure Encryption and Signatures with Almost Tight Security

... first public-key encryption scheme whose chosen- ciphertext security [46,47] in the multi-user setting tightly relates to a standard hardness assumption, which solved a problem left ... See full document

31