Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack

Cramer, Ronald; Shoup, Victor

doi:10.1137/s0097539702403773

Cited by 718 publications

(653 citation statements)

References 41 publications

Supporting

Mentioning

646

Contrasting

Unclassified

Order By: Relevance

“…Cramer and Shoup showed the first provably secure practical public-key encryption scheme in the standard model [3,6]. It is secure against adaptive chosen ciphertext attack (IND-CCA) under the Decisional Diffie-Hellman (DDH) assumption.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A New Paradigm of Hybrid Encryption Scheme

Kurosawa

Desmedt

2004

Lecture Notes in Computer Science

254

208

View full text Add to dashboard Cite

Abstract. In this paper, we show that a key encapsulation mechanism (KEM) does not have to be IND-CCA secure in the construction of hybrid encryption schemes, as was previously believed. That is, we present a more efficient hybrid encryption scheme than Shoup [12] by using a KEM which is not necessarily IND-CCA secure. Nevertheless, our scheme is secure in the sense of IND-CCA under the DDH assumption in the standard model. This result is further generalized to universal2 projective hash families.

show abstract

Section: Introductionmentioning

confidence: 99%

“…For hybrid encryption schemes, Shoup formalized the notion of a key encapsulation mechanism (KEM), and an appropriate notion of security against adaptive chosen ciphertext attack [12,6]. A KEM works just like a public key encryption scheme, except that the encryption algorithm takes no input other than the recipient's public key.…”

Section: Introductionmentioning

confidence: 99%

A New Paradigm of Hybrid Encryption Scheme

Kurosawa

Desmedt

2004

Lecture Notes in Computer Science

254

208

View full text Add to dashboard Cite

show abstract

“…Recall that the Cramer-Shoup system [11] and its variants [33,28] provide efficient chosen ciphertext secure encryption without random oracles. All these systems require that the private key be used to test ciphertext validity during decryption.…”

Section: Introductionmentioning

confidence: 99%

Chosen Ciphertext Secure Public Key Threshold Encryption Without Random Oracles

Boneh

Boyen²,

Halevi³

2006

Lecture Notes in Computer Science

107

120

View full text Add to dashboard Cite

show abstract

“…The hybrid public key encryption paradigm has gained strength in recent years with the definition and formal security analysis of the generic KEM-DEM construction [7,8,17]. In this approach to hybrid encryption one defines a symmetric data encapsulation mechanism (DEM) which takes a key k and a message M and computes C ← DEM k (M ).…”

Section: Introductionmentioning

confidence: 99%

“…In fact, Cramer and Shoup [7] established that an hybrid encryption scheme is IND-CCA2 secure, if both the KEM and DEM modules are semantically secure [9] against adaptive chosen ciphertext attacks [14] (see Theorems 4 and 5 in [7]). …”

Section: Introductionmentioning

confidence: 99%

Efficient Identity-Based Key Encapsulation to Multiple Parties

Barbosa

Farshim

2005

Cryptography and Coding

View full text Add to dashboard Cite

Abstract. We introduce the concept of identity based key encapsulation to multiple parties (mID-KEM), and define a security model for it. This concept is the identity based analogue of public key KEM to multiple parties. We also analyse possible mID-KEM constructions, and propose an efficient scheme based on bilinear pairings. We prove our scheme secure in the random oracle model under the Gap Bilinear Diffie-Hellman assumption.

show abstract

Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack

Cited by 718 publications

References 41 publications

A New Paradigm of Hybrid Encryption Scheme

A New Paradigm of Hybrid Encryption Scheme

Chosen Ciphertext Secure Public Key Threshold Encryption Without Random Oracles

Efficient Identity-Based Key Encapsulation to Multiple Parties

Contact Info

Product

Resources

About