Cryptology ePrint Archive: Report 2012/673

Robust Encryption, Revisited

Pooya Farshim and Benoît Libert and Kenneth G. Paterson and Elizabeth A. Quaglia

Abstract: We revisit the notions of robustness introduced by Abdalla, Bellare, and Neven (TCC 2010). One of the main motivations for the introduction of strong robustness for public-key encryption (PKE) by Abdalla et al. to prevent certain types of attack on Sako's auction protocol. We show, perhaps surprisingly, that Sako's protocol is still vulnerable to attacks exploiting robustness problems in the underlying PKE scheme, even when it is instantiated with a \emph{strongly} robust scheme. This demonstrates that current notions of robustness are insufficient even for one of its most natural applications. To address this and other limitations in existing notions, we introduce a series of new robustness notions for PKE and explore their relationships. In particular, we introduce \emph{complete} robustness, our strongest new notion of robustness, and give a number of constructions for completely robust PKE schemes.

Category / Keywords: Robustness, Anonymity, Public-key encryption, Security proofs

Publication Info: PKC 2013

Date: received 28 Nov 2012, last revised 28 Nov 2012

Contact author: pooya farshim at gmail com

Available formats: PDF | BibTeX Citation

Version: 20121129:082308 (All versions of this report)

Discussion forum: Show discussion | Start new discussion