[PDF] Top 20 Simulation-Based Selective Opening Security for Receivers under Chosen-Ciphertext Attacks

Simulation-Based Selective Opening Security for Receivers under Chosen-Ciphertext Attacks

... of simulation-based selective opening security for receivers under chosen-ciphertext attacks (RSIM-SO-CCA ...other security notions in the CCA ... See full document

27

Improved Identity based Anonymous Broadcast Encryption with Chosen Ciphertext Security

... anonymously under the standard Decisional Bilinear Diffie-Hellman Assumption ...identity based broadcast encryption scheme which can satisfy simultaneously anonymity and confidentiality and secured against ... See full document

8

Standard Security Does Imply Security Against Selective Opening for Markov Distributions

... Proving Security under Selective Opening ...indistinguishability under chosen-plaintext attacks (IND-CPA ...IND-CPA security already implies security against ... See full document

22

Sender Equivocable Encryption Schemes Secure against Chosen-Ciphertext Attacks Revisited

... against chosen-plaintext/ciphertext selective opening attacks (SO-CPA/CCA ...the simulation and real encryption are ...secure under chosen-plaintext attack (CPA ... See full document

19

Almost-tight Identity Based Encryption against Selective Opening Attack

... identity based encryption (IBE) under selective opening attack (SOA) whose security is almost-tightly related to a set of computational ...achieving ciphertext ... See full document

25

Non-malleability under Selective Opening Attacks: Implication and Separation

... the simulation-based security notions ...SIM-SO-ATK security) in this paper are described as “Exp SIM-XX-ATK-Real PKE,A (κ) ≈ c Exp SIM-XX-ATK-Ideal PKE,S (κ)”, free of “relation ... See full document

26

Selective Opening Security for Receivers

... and simulation-based security notions in the receiver ...of security. Loosely speaking, a ciphertext includes a commitment to the plaintext together with encryptions of the ... See full document

34

Standard Security Does Not Imply Indistinguishability Under Selective Opening

... SOA security have also been investi- gated by B¨ ohl et ...IND-SOA security we consider is the weakest known notion of SOA security among the ones studied (and that the “efficient resamplability” ... See full document

20

Identity-Based Encryption Secure Against Selective Opening Chosen-Ciphertext Attack

... against Chosen-Plaintext Attack (CPA) and Security against Chosen-Ciphertext Attack (CCA) are now well-accepted security notions for ...“selective opening attack” (SOA). ... See full document

47

Simulation-based Selective Opening CCA Security for PKE from Key Encapsulation Mechanisms

... study simulation-based, selective opening security against chosen-ciphertext attacks (SIM-SO-CCA security) for public key encryption ...a selective ... See full document

25

Simulation-based Receiver Selective Opening CCA Secure PKE from Standard Computational Assumptions

... accepted security notions are IND-CPA and IND-CCA security [10, ...IND-CCA security might not be strong enough when considering Selective Opening (SO) attacks in a multi-user ... See full document

36

Constructing and Understanding Chosen Ciphertext Security via Puncturable Key Encapsulation Mechanisms

... a ciphertext, but in PTBE, a secret key is punctured by a ...the security requirement called eCPA security whose formalization is a PTBE-analogue of eCPA security for a PKEM (and thus we ... See full document

42

A unidirectional conditional proxy re-encryption scheme based on non-monotonic access structure

... A security model for unidirectional C-PRE schemes is also proposed in this ...attributed based encryption (ABE) scheme presented by Ostrovsky et ...the security of our C-PRE scheme is proved ... See full document

25

Cryptanalysis of a pairing-free certificate-based proxy re-encryption scheme for secure data sharing in public clouds

... two based on the direction of ...the ciphertext to be re-encrypted only in one direction ...the ciphertext to be re-encrypted in both ways ...given ciphertext can be re-encrypted only once ... See full document

11

Identity-Based Revocation from Subset Difference Methods under Simple Assumptions

... One method to build a collusion-resistant PKBE scheme is to use bilinear groups. Boneh, Gentry, and Waters [7] proposed the first PKBE scheme with short ciphertexts in bilinear groups and proved its selective ... See full document

27

Public-Key Encryption with Weak Randomness: Security against Strong Chosen Distribution Attacks

... a ciphertext whose first bit is b (this is possible assuming the ciphertexts look uniform; if not, one can still show similar attacks by using hash functions to randomize the predicate that will reveal ...a ... See full document

32

Generic Construction of Forward-Secure Identity- Based Encryption

... scheme based on the hierarchical identity-based encryption (HIBE) scheme proposed by Gentry and Silverberg ...shorter ciphertext and less decryption time than the one in ...the security of Yao ... See full document

7

Leakage-Resilient Certificateless Short Signature Scheme

... Threshold cryptography provides in which the secret key generation method [25-27]. It can resolve the key escrow problem. But none of the solutions was entirely satisfactory. In 2003, Al-Riyami and Paterson [28] has ... See full document

9

Homomorphic Authenticated Encryption Secure Against Chosen-Ciphertext Attack

... various security notions for HAE and study relations among ...IND-CCA security is not achievable due to the malleability, nevertheless we may define a version of IND-CCA for ...a ciphertext is done ... See full document

23

Hill Cipher Modifications: A Detailed Review

... The Hill cipher was invented by L.S. Hill in 1929 [1, 2]. It is a famous a classical symmetric cipher based on matrix transformation. Hill cipher is a monoalphabetic polygraphic substitution block cipher. Hill ... See full document

8