[go: up one dir, main page]

What a lovely hat

Is it made out of tin foil?

Paper 2002/089

On Chosen Ciphertext Security of Multiple Encryptions

Oded Goldreich, Yoad Lustig, and Moni Naor

Abstract

We consider the security of multiple and possibly related plaintexts in the context of a chosen ciphertext attack. That is the attacker in addition and concurrently to obtaining encryptions of multiple plaintexts under the same key, may issue encryption and decryption queries and partial information queries. Loosely speaking, an encryption scheme is considered secure under such attacks if all that the adversary can learn from such attacks about the selected plaintexts can be obtained from the corresponding partial information queries. The above definition extends the definition of semantic security under chosen ciphertext attacks (CCAs), which is also formulated in this work. The extension is in considering the security of multiple plaintexts rather than the security of a single plaintext. We prove that both these formulations are equivalent to the standard formulation of CCA, which refers to indistinguishability of encryptions. The good news is that any encryption scheme that is secure in the standard CCA sense is in fact secure in the extended model. The treatment holds both for public-key and private-key encryption schemes.

Note: Preliminary version: February 2002.

Metadata
Available format(s)
PS
Category
Foundations
Publication info
Published elsewhere. Unknown where it was published
Keywords
Security of Encryption SchemesChosen Ciphertext Attacks
Contact author(s)
oded @ wisdom weizmann ac il
History
2002-07-04: received
Short URL
https://ia.cr/2002/089
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2002/089,
      author = {Oded Goldreich and Yoad Lustig and Moni Naor},
      title = {On Chosen Ciphertext Security of Multiple Encryptions},
      howpublished = {Cryptology {ePrint} Archive, Paper 2002/089},
      year = {2002},
      url = {https://eprint.iacr.org/2002/089}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.