Stateful public-key cryptosystems: how to encrypt with one 160-bit exponentiation

Authors:
Mihir Bellare;Tadayoshi Kohno;Victor Shoup
Affiliations:
University of California San Diego, La Jolla, CA;University of Washington, Seattle, WA;New York University, New York, NY
Venue:
Proceedings of the 13th ACM conference on Computer and communications security
Year:
2006

Citing 21
Cited 16

Universal one-way hash functions and their cryptographic applications

STOC '89 Proceedings of the twenty-first annual ACM symposium on Theory of computing
Random oracles are practical: a paradigm for designing efficient protocols

CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Untraceable off-line cash in wallet with observers

CRYPTO '93 Proceedings of the 13th annual international cryptology conference on Advances in cryptology
The random oracle methodology, revisited (preliminary version)

STOC '98 Proceedings of the thirtieth annual ACM symposium on Theory of computing
Nonmalleable Cryptography

SIAM Journal on Computing
The Oracle Diffie-Hellman Assumptions and an Analysis of DHIES

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Non-Interactive Zero-Knowledge Proof of Knowledge and Chosen Ciphertext Attack

CRYPTO '91 Proceedings of the 11th Annual International Cryptology Conference on Advances in Cryptology
Digital Signcryption or How to Achieve Cost(Signature & Encryption)

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
Collision-Resistant Hashing: Towards Making UOWHFs Practical

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
Relations Among Notions of Security for Public-Key Encryption Schemes

CRYPTO '98 Proceedings of the 18th Annual International Cryptology Conference on Advances in Cryptology
On the Security of Joint Signature and Encryption

EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology
Multi-recipient Public-Key Encryption with Shortened Ciphertext

PKC '02 Proceedings of the 5th International Workshop on Practice and Theory in Public Key Cryptosystems: Public Key Cryptography
Randomness Re-use in Multi-recipient Encryption Schemeas

PKC '03 Proceedings of the 6th International Workshop on Theory and Practice in Public Key Cryptography: Public Key Cryptography
Threshold Signatures, Multisignatures and Blind Signatures Based on the Gap-Diffie-Hellman-Group Signature Scheme

PKC '03 Proceedings of the 6th International Workshop on Theory and Practice in Public Key Cryptography: Public Key Cryptography
A Concrete Security Treatment of Symmetric Encryption

FOCS '97 Proceedings of the 38th Annual Symposium on Foundations of Computer Science
OCB: A block-cipher mode of operation for efficient authenticated encryption

ACM Transactions on Information and System Security (TISSEC)
Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack

SIAM Journal on Computing
An improved protocol for demonstrating possession of discrete logarithms and some generalizations

EUROCRYPT'87 Proceedings of the 6th annual international conference on Theory and application of cryptographic techniques
Improved efficiency for CCA-secure cryptosystems built using identity-based encryption

CT-RSA'05 Proceedings of the 2005 international conference on Topics in Cryptology
Tag-KEM/DEM: a new framework for hybrid encryption and a new analysis of kurosawa-desmedt KEM

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Chosen-Ciphertext security from tag-based encryption

TCC'06 Proceedings of the Third conference on Theory of Cryptography

Stateful identity-based encryption scheme: faster encryption and decryption

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Ad-Hoc Threshold Broadcast Encryption with Shorter Ciphertexts

Electronic Notes in Theoretical Computer Science (ENTCS)
Efficient public key encryption with smallest ciphertext expansion from factoring

Designs, Codes and Cryptography
The Power of Proofs-of-Possession: Securing Multiparty Signatures against Rogue-Key Attacks

EUROCRYPT '07 Proceedings of the 26th annual international conference on Advances in Cryptology
Affiliation-Hiding Envelope and Authentication Schemes with Efficient Support for Multiple Credentials

ICALP '08 Proceedings of the 35th international colloquium on Automata, Languages and Programming, Part II
Generic Construction of Stateful Identity Based Encryption

ISC '09 Proceedings of the 12th International Conference on Information Security
Practical ID-based encryption for wireless sensor network

ASIACCS '10 Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security
Chosen-ciphertext secure key-encapsulation based on gap hashed Diffie-Hellman

PKC'07 Proceedings of the 10th international conference on Practice and theory in public-key cryptography
Secure hybrid encryption from weakened key encapsulation

CRYPTO'07 Proceedings of the 27th annual international cryptology conference on Advances in cryptology
Randomness reuse: extensions and improvements

Cryptography and Coding'07 Proceedings of the 11th IMA international conference on Cryptography and coding
Generic constructions of stateful public key encryption and their applications

ACNS'08 Proceedings of the 6th international conference on Applied cryptography and network security
Authenticated key agreement with key re-use in the short authenticated strings model

SCN'10 Proceedings of the 7th international conference on Security and cryptography for networks
On shortening ciphertexts: new constructions for compact public key and stateful encryption schemes

CT-RSA'11 Proceedings of the 11th international conference on Topics in cryptology: CT-RSA 2011
Acquiring key privacy from data privacy

Inscrypt'10 Proceedings of the 6th international conference on Information security and cryptology
Resettable public-key encryption: how to encrypt on a virtual machine

CT-RSA'10 Proceedings of the 2010 international conference on Topics in Cryptology
Leakage-resilience of stateless/stateful public-key encryption from hash proofs

ACISP'12 Proceedings of the 17th Australasian conference on Information Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

We show how to significantly speed-up the encryption portion of some public-key cryptosystems by the simple expedient of allowing a sender to maintain state that is re-used across different encryptions.In particular we present stateful versions of the DHIES and Kurosawa-Desmedt schemes that each use only 1 exponentiation to encrypt, as opposed to 2 and 3 respectively in the original schemes, yielding the fastest discrete-log based public-key encryption schemes known in the random-oracle and standard models respectively. The schemes are proven to meet an appropriate extension of the standard definition of IND-CCA security that takes into account novel types of attacks possible in the stateful setting.