Paper 2010/159

Identity-Based Encryption Secure against Selective Opening Attack

Mihir Bellare, Brent Waters, and Scott Yilek


We present the first Identity-Based Encryption (IBE) schemes that are proven secure against selective opening attack (SOA). This means that if an adversary, given a vector of ciphertexts, adaptively corrupts some fraction of the senders, exposing not only their messages but also their coins, the privacy of the unopened messages is guaranteed. Achieving security against such attacks is well-known to be challenging and was only recently solved in the PKE case, but the techniques used there do not solve the IBE case. Our solutions illustrate two techniques to achieving SOA-secure IBE, one based on the Boyen-Waters anonymous IBE and the other based on Waters’ dual-system approach.

Available format(s)
Publication info
Published elsewhere. Unknown where it was published
identity-based encryptionselective opening attacks
Contact author(s)
syilek @ cs ucsd edu
2010-12-07: last of 4 revisions
2010-03-26: received
See all versions
Short URL
Creative Commons Attribution


      author = {Mihir Bellare and Brent Waters and Scott Yilek},
      title = {Identity-Based Encryption Secure against Selective Opening Attack},
      howpublished = {Cryptology ePrint Archive, Paper 2010/159},
      year = {2010},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.