Identity-Based Encryption Secure against Selective Opening Chosen-Ciphertext Attack
Conference Proceeding Article
Security against selective opening attack (SOA) requires that in a multi-user setting, even if an adversary has access to all ciphertexts from users, and adaptively corrupts some fraction of the users by exposing not only their messages but also the random coins, the remaining unopened messages retain their privacy. Recently, Bellare, Waters and Yilek considered SOA-security in the identity-based setting, and presented the first identity-based encryption (IBE) schemes that are proven secure against selective opening chosen plaintext attack (SO-CPA). However, how to achieve SO-CCA security for IBE is still open. In this paper, we introduce a new primitive called extractable IBE and define its IND-ID-CCA security notion. We present a generic construction of SO-CCA secure IBE from an IND-ID-CCA secure extractable IBE with “One-Sided Public Openability”(1SPO), a collision-resistant hash function and a strengthened cross-authentication code. Finally, we propose two concrete constructions of extractable 1SPO-IBE schemes, resulting in the first simulation-based SO-CCA secure IBE schemes without random oracles.
identity-based encryption, chosen ciphertext security, selective opening security
Advances in Cryptology - EUROCRYPT 2014: 33rd Annual International Conference on the Theory and Applications of Cryptographic Techniques, Copenhagen, Denmark, May 11-15, 2014: Proceedings
City or Country
Lai, Junzuo; DENG, Robert H.; Liu, Shengli; Weng, Jian; and Zhao, Yunlei.
Identity-Based Encryption Secure against Selective Opening Chosen-Ciphertext Attack. (2014). Advances in Cryptology - EUROCRYPT 2014: 33rd Annual International Conference on the Theory and Applications of Cryptographic Techniques, Copenhagen, Denmark, May 11-15, 2014: Proceedings. 8441, 77-92. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/2605