A new construction on randomized message-locked encryption in the standard model via UCEs
详细信息 查看全文
- 作者:Huige Wang ; Kefei Chen ; Baodong Qin ; Xuejia Lai…
- 关键词:message ; locked encryption3 (MLE3) ; universal computational extractors (UCEs) ; privacy chosendistribution attacks3 (PRV ; CDA3) ; strong tag consistency (STC) ; standard model
- 刊名:SCIENCE CHINA Information Sciences
- 出版年:2017
- 出版时间:May 2017
- 年:2017
- 卷:60
- 期:5
- 全文大小:350 KB
- 刊物类别:Computer Science
- 刊物主题:Chinese Library of Science
Information Systems and Communication Service - 出版者:Science China Press, co-published with Springer
- ISSN:1869-1919
- 卷排序:60
文摘
We present a new primitive of randomized message-locked encryption (MLE) in this paper and define a new security model for it. The new primitive, named message-locked encryption3 (hereafter referred as MLE3), is actually a variant of randomized message-locked encryption (Bellare et al. Eurocrypt’13). In order to prevent trivial attacks, our primitive admits a semi-trusted server, which is allowed to hold a secret key of public key encryption (PKE), to verify the correctness of a tag. The new security notion, called privacy chosen-distribution attacks3 (PRV-CDA3), requires that a ciphertext generated by encrypting an unpredictable message and another ciphertext (possible invalid) chosen randomly from a ciphertext space are indistinguishable. Compared with the priori proposed security notion, privacy chosen-distribution attacks (PRV-CDA) (Bellare et al. Eurocrypt’13), which requires that two ciphertexts generated by encrypting two unpredictable messages are indistinguishable, the security notion we propose is much stronger. Based on the new primitive, under the blackbox reductions, we put forward a novel construction which achieves both privacy chosen-distribution attacks3 (PRV-CDA3) and strong tag consistency (STC) securities in the standard model via universal computational extractors (UCEs) (Bellare et al. Crypto’13). In addition, our scheme also provides the validity-testing for ciphertext.