Paper 2003/163

Multipurpose Identity-Based Signcryption : A Swiss Army Knife for Identity-Based Cryptography

Xavier Boyen

Abstract

A combined Identity-Based Signature/Encryption system with multiple security properties is presented. The scheme allows Alice to sign a message and encrypt it for Bob ("confidentiality") in such a way that the ciphertext does not reveal anything about their identities ("anonymity"); upon receipt, Bob is convinced that he is Alice's intended addressee ("authentication") but is unable to prove this to a third party ("unlinkability"); nevertheless, the decrypted message bears a signature by Alice that anyone can verify ("non-repudiation"). The construction is based on the Bilinear Diffie-Hellman assumption, and proved secure in the random oracle model.

Note: Minor corrections.

Metadata
Available format(s)
PDF PS
Category
Public-key cryptography
Publication info
Published elsewhere. An extended abstract appears in CRYPTO 2003.
Keywords
ID-based cryptographysigncryptionmultiple security properties.
Contact author(s)
eprint @ boyen org
History
2004-02-26: last of 2 revisions
2003-08-11: received
See all versions
Short URL
https://ia.cr/2003/163
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2003/163,
      author = {Xavier Boyen},
      title = {Multipurpose Identity-Based Signcryption : A Swiss Army Knife for Identity-Based Cryptography},
      howpublished = {Cryptology {ePrint} Archive, Paper 2003/163},
      year = {2003},
      url = {https://eprint.iacr.org/2003/163}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.