Cryptology ePrint Archive: Report 2012/423

Programmable encryption and key-dependent messages

Dominique Unruh

Abstract: We present the notion of PROG-KDM security for public-key encryption schemes. This security notion captures both KDM security and revealing of secret keys (key corruptions) in a single definition. This is achieved by requiring the existence of a simulator that can program ciphertexts when a secret key is revealed, i.e., the simulator can delay the decision what plaintext is contained in what ciphertext to the moment where the ciphertext is opened. The definition is formulated in the random oracle model.

We show that PROG-KDM security can be achieved by showing that a natural and practical construction in the ideal cipher model is PROG-KDM secure (hybrid encryption using authenticated CBC encryption).

Category / Keywords: public-key cryptography / key-dependent messages, selective opening, revealing secret keys

Date: received 27 Jul 2012

Contact author: unruh at ut ee

Available formats: PDF | BibTeX Citation

Version: 20120805:141239 (All versions of this report)

Discussion forum: Show discussion | Start new discussion