Selective opening security for receivers

Carmit Hazay; Arpita Patra; Bogdan Warinschi

doi:10.1007/978-3-662-48797-6_19

Selective opening security for receivers

Carmit Hazay, Arpita Patra, Bogdan Warinschi

Bar-Ilan University - The Alexander Kofkin Faculty of Engineering

Bar-Ilan University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In a selective opening (SO) attack an adversary breaks into a subset of honestly created ciphertexts and tries to learn information on the plaintexts of some untouched (but potentially related) ciphertexts. Contrary to intuition, standard security notions do not always imply security against this type of adversary, making SO security an important standalone goal. In this paper we study receiver security, where the attacker is allowed to obtain the decryption keys corresponding to some of the ciphertexts. First we study the relation between two existing security definitions, one based on simulation and the other based on indistinguishability, and show that the former is strictly stronger. We continue with feasibility results for both notions which we show can be achieved from (variants of) non-committing encryption schemes. In particular, we show that indistinguishability-based SO security can be achieved from a tweaked variant of non-committing encryption which, in turn, can be instantiated from a variety of basic, well-established, assumptions. We conclude our study by showing that SO security is however strictly weaker than all variants of non-committing encryption that we consider, leaving potentially more efficient constructions as an interesting open problem.

Original language	English
Title of host publication	Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings
Editors	Jung Hee Cheon, Tetsu Iwata
Publisher	Springer Verlag
Pages	443-469
Number of pages	27
ISBN (Print)	9783662487969
DOIs	https://doi.org/10.1007/978-3-662-48797-6_19
State	Published - 2015
Event	21st International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2015 - Auckland, New Zealand Duration: 29 Nov 2015 → 3 Dec 2015

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	9452

Conference

Conference	21st International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2015
Country/Territory	New Zealand
City	Auckland
Period	29/11/15 → 3/12/15

Keywords

Encryption schemes
Noncommitting encryption
Selective opening attacks

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-662-48797-6_19

Cite this

Hazay, C., Patra, A., & Warinschi, B. (2015). Selective opening security for receivers. In J. H. Cheon, & T. Iwata (Eds.), Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings (pp. 443-469). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9452). Springer Verlag. https://doi.org/10.1007/978-3-662-48797-6_19

Hazay, Carmit ; Patra, Arpita ; Warinschi, Bogdan. / Selective opening security for receivers. Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings. editor / Jung Hee Cheon ; Tetsu Iwata. Springer Verlag, 2015. pp. 443-469 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{960bb740b8444345ada96a3bf32ddb77,

title = "Selective opening security for receivers",

abstract = "In a selective opening (SO) attack an adversary breaks into a subset of honestly created ciphertexts and tries to learn information on the plaintexts of some untouched (but potentially related) ciphertexts. Contrary to intuition, standard security notions do not always imply security against this type of adversary, making SO security an important standalone goal. In this paper we study receiver security, where the attacker is allowed to obtain the decryption keys corresponding to some of the ciphertexts. First we study the relation between two existing security definitions, one based on simulation and the other based on indistinguishability, and show that the former is strictly stronger. We continue with feasibility results for both notions which we show can be achieved from (variants of) non-committing encryption schemes. In particular, we show that indistinguishability-based SO security can be achieved from a tweaked variant of non-committing encryption which, in turn, can be instantiated from a variety of basic, well-established, assumptions. We conclude our study by showing that SO security is however strictly weaker than all variants of non-committing encryption that we consider, leaving potentially more efficient constructions as an interesting open problem.",

keywords = "Encryption schemes, Noncommitting encryption, Selective opening attacks",

author = "Carmit Hazay and Arpita Patra and Bogdan Warinschi",

note = "Publisher Copyright: {\textcopyright} International Association for Cryptologic Research 2015.; 21st International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2015 ; Conference date: 29-11-2015 Through 03-12-2015",

year = "2015",

doi = "10.1007/978-3-662-48797-6_19",

language = "الإنجليزيّة",

isbn = "9783662487969",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "443--469",

editor = "Cheon, {Jung Hee} and Tetsu Iwata",

booktitle = "Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings",

address = "ألمانيا",

}

Hazay, C, Patra, A & Warinschi, B 2015, Selective opening security for receivers. in JH Cheon & T Iwata (eds), Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 9452, Springer Verlag, pp. 443-469, 21st International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2015, Auckland, New Zealand, 29/11/15. https://doi.org/10.1007/978-3-662-48797-6_19

Selective opening security for receivers. / Hazay, Carmit; Patra, Arpita; Warinschi, Bogdan.
Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings. ed. / Jung Hee Cheon; Tetsu Iwata. Springer Verlag, 2015. p. 443-469 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9452).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Selective opening security for receivers

AU - Hazay, Carmit

AU - Patra, Arpita

AU - Warinschi, Bogdan

N1 - Publisher Copyright: © International Association for Cryptologic Research 2015.

PY - 2015

Y1 - 2015

N2 - In a selective opening (SO) attack an adversary breaks into a subset of honestly created ciphertexts and tries to learn information on the plaintexts of some untouched (but potentially related) ciphertexts. Contrary to intuition, standard security notions do not always imply security against this type of adversary, making SO security an important standalone goal. In this paper we study receiver security, where the attacker is allowed to obtain the decryption keys corresponding to some of the ciphertexts. First we study the relation between two existing security definitions, one based on simulation and the other based on indistinguishability, and show that the former is strictly stronger. We continue with feasibility results for both notions which we show can be achieved from (variants of) non-committing encryption schemes. In particular, we show that indistinguishability-based SO security can be achieved from a tweaked variant of non-committing encryption which, in turn, can be instantiated from a variety of basic, well-established, assumptions. We conclude our study by showing that SO security is however strictly weaker than all variants of non-committing encryption that we consider, leaving potentially more efficient constructions as an interesting open problem.

AB - In a selective opening (SO) attack an adversary breaks into a subset of honestly created ciphertexts and tries to learn information on the plaintexts of some untouched (but potentially related) ciphertexts. Contrary to intuition, standard security notions do not always imply security against this type of adversary, making SO security an important standalone goal. In this paper we study receiver security, where the attacker is allowed to obtain the decryption keys corresponding to some of the ciphertexts. First we study the relation between two existing security definitions, one based on simulation and the other based on indistinguishability, and show that the former is strictly stronger. We continue with feasibility results for both notions which we show can be achieved from (variants of) non-committing encryption schemes. In particular, we show that indistinguishability-based SO security can be achieved from a tweaked variant of non-committing encryption which, in turn, can be instantiated from a variety of basic, well-established, assumptions. We conclude our study by showing that SO security is however strictly weaker than all variants of non-committing encryption that we consider, leaving potentially more efficient constructions as an interesting open problem.

KW - Encryption schemes

KW - Noncommitting encryption

KW - Selective opening attacks

UR - http://www.scopus.com/inward/record.url?scp=84961275621&partnerID=8YFLogxK

U2 - 10.1007/978-3-662-48797-6_19

DO - 10.1007/978-3-662-48797-6_19

M3 - منشور من مؤتمر

SN - 9783662487969

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 443

EP - 469

BT - Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings

A2 - Cheon, Jung Hee

A2 - Iwata, Tetsu

PB - Springer Verlag

T2 - 21st International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2015

Y2 - 29 November 2015 through 3 December 2015

ER -

Hazay C, Patra A, Warinschi B. Selective opening security for receivers. In Cheon JH, Iwata T, editors, Advances in Cryptology - ASIACRYPT 2015 - 21st International Conference on the Theory and Application of Cryptology and Information Security, 2015, Proceedings. Springer Verlag. 2015. p. 443-469. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-662-48797-6_19

Selective opening security for receivers

Abstract

Publication series

Conference

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this