Paper 2009/600

Constructing Certificateless Encryption and ID-Based Encryption from ID-Based Key Agreement

D. Fiore, R. Gennaro, and N. P. Smart


We discuss the relationship between ID-based key agreement protocols, certificateless encryption and ID-based key encapsulation mechanisms. In particular we show how in some sense ID-based key agreement is a primitive from which all others can be derived. In doing so we focus on distinctions between what we term pure ID-based schemes and non-pure schemes, in various security models. We present security models for ID-based key agreement which do not ``look natural'' when considered as analogues of normal key agreement schemes, but which look more natural when considered in terms of the models used in certificateless encryption.

Available format(s)
Public-key cryptography
Publication info
Published elsewhere. Full version of the paper that will appear at Pairing 2010
Contact author(s)
nigel @ cs bris ac uk
fiore @ dmi unict it
rosario @ us ibm com
2010-08-30: last of 2 revisions
2009-12-09: received
See all versions
Short URL
Creative Commons Attribution


      author = {D.  Fiore and R.  Gennaro and N. P.  Smart},
      title = {Constructing Certificateless Encryption and {ID}-Based Encryption from {ID}-Based Key Agreement},
      howpublished = {Cryptology ePrint Archive, Paper 2009/600},
      year = {2009},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.