Intrusion-resilient public-key encryption

Authors:
Yevgeniy Dodis;Matt Franklin;Jonathan Katz;Atsuko Miyaji;Moti Yung
Affiliations:
Department of Computer Science, New York University;Department of Computer Science, University of California, Davis;Department of Computer Science, University of Maryland, College Park;Department of Computer Science, University of California, Davis and Japan Advanced Institute of Science and Technology;Department of Computer Science, Columbia University
Venue:
CT-RSA'03 Proceedings of the 2003 RSA conference on The cryptographers' track
Year:
2003

Citing 14
Cited 28

How to generate cryptographically strong sequences of pseudo-random bits

SIAM Journal on Computing
How to construct random functions

Journal of the ACM (JACM)
A simple unpredictable pseudo random number generator

SIAM Journal on Computing
An identity-based key-exchange protocol

EUROCRYPT '89 Proceedings of the workshop on the theory and application of cryptographic techniques on Advances in cryptology
Authentication and authenticated key exchanges

Designs, Codes and Cryptography
Simple forward-secure signatures from any signature scheme

Proceedings of the 7th ACM conference on Computer and communications security
The security of the cipher block chaining message authentication code

Journal of Computer and System Sciences
Maintaining Security in the Presence of Transient Faults

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
Proactive Secret Sharing Or: How to Cope With Perpetual Leakage

CRYPTO '95 Proceedings of the 15th Annual International Cryptology Conference on Advances in Cryptology
A Practice-Oriented Treatment of Pseudorandom Number Generators

EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology
A Concrete Security Treatment of Symmetric Encryption

FOCS '97 Proceedings of the 38th Annual Symposium on Foundations of Computer Science
Cryptographic support for secure logs on untrusted machines

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7
Network randomization protocol: a proactive pseudo-random generator

SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5
Theory and application of trapdoor functions

SFCS '82 Proceedings of the 23rd Annual Symposium on Foundations of Computer Science

Improved proxy re-encryption schemes with applications to secure distributed storage

ACM Transactions on Information and System Security (TISSEC)
A survey of key evolving cryptosystems

International Journal of Security and Networks
Construction of Yet Another Forward Secure Signature Scheme Using Bilinear Maps

ProvSec '08 Proceedings of the 2nd International Conference on Provable Security
DISH: Distributed Self-Healing

SSS '08 Proceedings of the 10th International Symposium on Stabilization, Safety, and Security of Distributed Systems
Key-Insulated Public Key Encryption with Auxiliary Helper Key: Model, Constructions and Formal Security Proofs

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Key Insulation and Intrusion Resilience over a Public Channel

CT-RSA '09 Proceedings of the The Cryptographers' Track at the RSA Conference 2009 on Topics in Cryptology
CCA2 secure (hierarchical) identity-based parallel key-insulated encryption without random oracles

Journal of Systems and Software
Parallel key-insulated public key encryption without random oracles

PKC'07 Proceedings of the 10th international conference on Practice and theory in public-key cryptography
Intrusion-resilient key exchange in the bounded retrieval model

TCC'07 Proceedings of the 4th conference on Theory of cryptography
Identity-based threshold key-insulated encryption without random oracles

CT-RSA'08 Proceedings of the 2008 The Cryptopgraphers' Track at the RSA conference on Topics in cryptology
Vanish: increasing data privacy with self-destructing data

SSYM'09 Proceedings of the 18th conference on USENIX security symposium
Key Evolution Systems in Untrusted Update Environments

ACM Transactions on Information and System Security (TISSEC)
Adversarial security: getting to the root of the problem

iNetSec'10 Proceedings of the 2010 IFIP WG 11.4 international conference on Open research problems in network security
Password-protected secret sharing

Proceedings of the 18th ACM conference on Computer and communications security
Efficient intrusion-resilient signatures without random oracles

Inscrypt'06 Proceedings of the Second SKLOIS conference on Information Security and Cryptology
Reducing the spread of damage of key exposures in key-insulated encryption

VIETCRYPT'06 Proceedings of the First international conference on Cryptology in Vietnam
Identity-based parallel key-insulated encryption without random oracles: security notions and construction

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Intrusion-resilient identity-based signature: Security definition and construction

Journal of Systems and Software
Identity-Based hierarchical strongly key-insulated encryption and its application

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
A strong identity based key-insulated cryptosystem

EUC'06 Proceedings of the 2006 international conference on Emerging Directions in Embedded and Ubiquitous Computing
Intrusion-Resilient secure channels

ACNS'05 Proceedings of the Third international conference on Applied Cryptography and Network Security
Secure key-updating for lazy revocation

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security
Parallel key-insulated public key encryption

PKC'06 Proceedings of the 9th international conference on Theory and Practice of Public-Key Cryptography
Intrusion-Resilience via the bounded-storage model

TCC'06 Proceedings of the Third conference on Theory of Cryptography
Yet another forward secure signature from bilinear pairings

ICISC'05 Proceedings of the 8th international conference on Information Security and Cryptology
Self-healing in unattended wireless sensor networks

ACM Transactions on Sensor Networks (TOSN)
Key-insulated symmetric key cryptography and mitigating attacks against cryptographic cloud software

Proceedings of the 7th ACM Symposium on Information, Computer and Communications Security
Optimized secure and reliable distributed data storage scheme and performance evaluation in unattended WSNs

Computer Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper provides a comprehensive treatment of forward-security in the context of shared-key based cryptographic primitives, as a practical means to mitigate the damage caused by key-exposure. We provide definitions of security, practical proven-secure constructions, and applications for the main primitives in this area. We identify forward-secure pseudorandom bit generators as the central primitive, providing several constructions and then showing how forward-secure message authentication schemes and symmetric encryption schemes can be built based on standard schemes for these problems coupled with forward-secure pseudorandom bit generators. We then apply forward-secure message authentication schemes to the problem of maintaining secure access logs in the presence of break-ins.