Leakage-Resilient Certificate-based Key Encapsulation Scheme Resistant to Continual Leakage

Wu, Jui-Di; Tseng, Yuh‐Min; Huang, Sen–Shan; Tsai, Tung-Tso

doi:10.1109/ojcs.2020.3008961

Cited by 6 publications

(8 citation statements)

References 43 publications

(81 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The CA uses its own secret key CSK to compute the member's certificate CTF m using the member ID m 's identity information and public key, and returns it back to the member ID m . By combining the adversary models of both the LR certificate-based signature (LR-CBS) scheme (Wu et al, 2019) and the LR certificate-based encryption (LR-CBE) scheme (Wu et al, 2020a), we define the adversary model of the FCLR-CBSC scheme. In this adversary model, there are two types of adversaries that include an uncertified member and the honest-but-curious CA.…”

Section: Contributionsmentioning

confidence: 99%

“…Based on the frameworks of both the LR-CBS (Wu et al, 2019) and the LR-CBE (Wu et al, 2020a) schemes, a new framework of FCLR-CBSC schemes is defined as follows.…”

Section: Frameworkmentioning

confidence: 99%

“…To resist such leakage attacks, researchers offer leakage-resilient cryptography as a solution. In the past, numerous leakage-resilient signature (LRS) schemes (Galindo and Virek, 2013;Wu et al, 2019;Tseng et al, 2020;Wu et al, 2020b), leakage-resilient encryption (LRE) schemes (Kiltz and Pietrzak, 2010;Galindo et al, 2016;Wu et al, 2018Wu et al, , 2020aTseng et al, 2022), and leakage-resilient authenticated key agreement protocols (Tseng et al, 2021;Peng et al, 2021;Tsai et al, 2022) under various PKS settings have been published in the literature.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Fully Continuous Leakage-Resilient Certificate-Based Signcryption Scheme for Mobile Communications

Tseng¹,

Tsai²,

Huang³

2022

Informatica

Self Cite

View full text Add to dashboard Cite

Due to the popularity of mobile communication, many computing devices are exposed to remote environments without physical protection so that these devices easily suffer from leakage attacks (e.g., side-channel attacks). Under such leakage attacks, when a computing device performs some cryptographic algorithm, an adversary may acquire partial bits of secret keys participated in this cryptographic algorithm. To resist leakage attacks, researchers offer leakage-resilient cryptography as a solution. A signcryption scheme combines signing and encrypting processes to simultaneously provide both authentication and confidentiality, which is an important cryptographic primitive. Indeed, many leakage-resilient signcryption schemes under various public key system (PKS) settings were proposed. Unfortunately, these schemes still have two shortcomings, namely, bounded leakage resilience and conditionally continuous leakage resilience. In this paper, a “fully” continuous leakage-resilient certificate-based signcryption (FCLR-CBSC) scheme is proposed. Security analysis is formally proved to show that our scheme possesses both authentication and confidentiality against two types of adversaries in the certificate-based PKS setting. Performance analysis and simulation experience show that our scheme is suited to run on both a PC and a mobile device.

show abstract

Section: Contributionsmentioning

confidence: 99%

“…Based on the frameworks of both the LR-CBS (Wu et al, 2019) and the LR-CBE (Wu et al, 2020a) schemes, a new framework of FCLR-CBSC schemes is defined as follows.…”

Section: Frameworkmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Fully Continuous Leakage-Resilient Certificate-Based Signcryption Scheme for Mobile Communications

Tseng¹,

Tsai²,

Huang³

2022

Informatica

Self Cite

View full text Add to dashboard Cite

show abstract

“…To remove the key escrow problem, certificate-based public key system (CB-PKS) was proposed by Gentry [8], which not only eliminates the key escrow problem in the ID-PKS, but also avoids the construction of PKI in traditional public key systems. Based on the CB-PKS, a large number of certificate-based encryption (CBE) schemes have been published in the literature [7,9,19,25,29,30] to protect the confidentiality of private data. Research related to CBE continues to be explored to this day.…”

Section: Introductionmentioning

confidence: 99%

“…To the best of our knowledge, there is no related work on equality test of ciphertexts in the CB-PKS. Table 1 lists the comparisons between the PKE scheme [31], the PKEET scheme [6], IBE scheme [23], IBEET scheme [13], CBE scheme [25] and our CBEET scheme in terms of public key setting, eliminating PKI construction, avoiding key escrow problem and possessing equality test property. After comparing with other existing schemes, we attempt to propose the first CBEET scheme that provides the equality test of ciphertexts in the CB-PKS.…”

Section: Introductionmentioning

confidence: 99%

CBEET: Constructing Certificate-based Encryption with Equality Test in the CB-PKS

Tsai,

LIN,

2023

ITC

View full text Add to dashboard Cite

To maintain the confidentiality of private data, encryption mechanisms have become prevalent. Researchers always strive to design secure and efficient encryption mechanisms in both symmetric and asymmetric key systems. Certificate-based public key systems (CB-PKS) belong to the family of asymmetric key systems. CB-PKS offers solutions to both the key escrow problem present in identity-based public key systems, and the need to construct a public key infrastructure in traditional public key systems. The past saw a wealth of research into the encryption mechanisms in the CB-PKS, called certificate-based encryption (CBE). Indeed, encrypted data (ciphertext) can be used in other applications such as the comparison of personal medical data as two ciphertexts can be compared to determine if they contain the same data (plaintext). However, the equality test of two ciphertexts in the CB-PKS is an open issue since research which has empirically studied is scant. The purpose of this paper is to propose the first certificate-based encryption with equality test (CBEET), and to prove that it is secure under the bilinear Diffie-Hellman (BDH) assumption.

show abstract

A Lightweight Leakage-Resilient Identity-Based Mutual Authentication and Key Exchange Protocol for Resource-limited Devices

Tseng¹,

Chen²,

Huang³

2021

Computer Networks

View full text Add to dashboard Cite

Leakage-Resilient Certificate-based Key Encapsulation Scheme Resistant to Continual Leakage

Cited by 6 publications

References 43 publications

Fully Continuous Leakage-Resilient Certificate-Based Signcryption Scheme for Mobile Communications

Fully Continuous Leakage-Resilient Certificate-Based Signcryption Scheme for Mobile Communications

CBEET: Constructing Certificate-based Encryption with Equality Test in the CB-PKS

A Lightweight Leakage-Resilient Identity-Based Mutual Authentication and Key Exchange Protocol for Resource-limited Devices

Contact Info

Product

Resources

About