Paper 2013/704
Adaptive Witness Encryption and Asymmetric Password-based Cryptography
Mihir Bellare and Viet Tung Hoang
Abstract
We show by counter-example that the soundness security requirement for witness encryption given by Garg, Gentry, Sahai and Waters (STOC 2013) does not suffice for the security of their own applications. We introduce adaptively-sound (AS) witness encryption to fill the gap. We then introduce asymmetric password-based encryption (A-PBE). This offers gains over classical, symmetric password-based encryption in the face of attacks that compromise servers to recover hashed passwords. We distinguish between invasive A-PBE schemes (they introduce new password-based key-derivation functions) and non-invasive ones (they can use existing, deployed password-based key-derivation functions). We give simple and efficient invasive A-PBE schemes and use AS-secure witness encryption to give non-invasive A-PBE schemes.
Metadata
- Available format(s)
- Category
- Foundations
- Publication info
- A major revision of an IACR publication in PKC 2015
- Keywords
- Passwordswitness encryption
- Contact author(s)
- vth005 @ eng ucsd edu
- History
- 2015-02-12: last of 3 revisions
- 2013-11-03: received
- See all versions
- Short URL
- https://ia.cr/2013/704
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2013/704, author = {Mihir Bellare and Viet Tung Hoang}, title = {Adaptive Witness Encryption and Asymmetric Password-based Cryptography}, howpublished = {Cryptology {ePrint} Archive, Paper 2013/704}, year = {2013}, url = {https://eprint.iacr.org/2013/704} }