Firstly, we provide algorithms to search for proofs of security against chosen-plaintext and chosen-ciphertext attacks in the random oracle model. These algorithms are based on domain-specific logics with a computational interpretation and yield quantitative security guarantees; for proofs of chosen-plaintext security, we output machine-checked proofs in EasyCrypt. Secondly, we provide a crawler for exhaustively exploring the space of padding-based encryption schemes under user-specified restrictions (e.g. on the size of their description), using filters to prune the search space. Lastly, we provide a calculator that computes the security level and efficiency of provably secure schemes that use RSA as trapdoor permutation.
Using these three tools, we explore over 1.3 million encryption schemes, including more than 100 variants of OAEP studied in the literature, and prove chosen-plaintext and chosen-ciphertext security for more than 250,000 and 17,000 schemes, respectively.
Category / Keywords: public-key cryptography / public-key cryptography, synthesis, provable security, one-way functions, RSA, OAEP, EasyCrypt Publication Info: An abridged version of this paper is under submission. This is the full version. Date: received 11 Dec 2012, last revised 13 Dec 2012 Contact author: santiago at microsoft com Available formats: PDF | BibTeX Citation Version: 20121214:185243 (All versions of this report) Discussion forum: Show discussion | Start new discussion