### Analysis of Gong et al.'s CCA2-Secure Homomorphic Encryption

Hyung Tae Lee, San Ling, and Huaxiong Wang

##### Abstract

It is a well-known result that homomorphic encryption is not secure against adaptive chosen ciphertext attacks (CCA2) because of its malleable property. Very recently, however, Gong et al. proposed a construction asserted to be a CCA2-secure additively homomorphic encryption (AHE) scheme; in their construction, the adversary is not able to obtain a correct answer when querying the decryption oracle on a ciphertext obtained by modifying the challenge ciphertext (Theoretical Computer Science, 2016). Because their construction is very similar to Paillier's AHE, it appeared to support an additively homomorphic property, though they did not specify an evaluation algorithm for the scheme in their paper. In this paper, we present a simple CCA2 attack on their construction by re-randomizing the challenge ciphertext. Furthermore, we look into an additively homomorphic property of their construction. To do this, we first consider a typical candidate for an addition algorithm on ciphertexts, as provided for previous AHE constructions, and establish that it does not function correctly. Subsequently, we provide plausible evidence for the hardness of achieving an additively homomorphic property with their construction. According to our analysis, it seems hard to preserve an additively homomorphic property of their construction without any modification. In addition, as a minor contribution, we point out a flaw in the decryption algorithm of their construction and present a rectified algorithm for correct decryption.

Available format(s)
Category
Public-key cryptography
Publication info
Published elsewhere. Theoretical Computer Science
DOI
10.1016/j.tcs.2016.06.014
Keywords
Contact author(s)
hyungtaelee @ ntu edu sg
History
2016-06-20: revised
See all versions
Short URL
https://ia.cr/2016/019

CC BY

BibTeX

@misc{cryptoeprint:2016/019,
author = {Hyung Tae Lee and San Ling and Huaxiong Wang},
title = {Analysis of Gong et al.'s CCA2-Secure Homomorphic Encryption},
howpublished = {Cryptology ePrint Archive, Paper 2016/019},
year = {2016},
doi = {10.1016/j.tcs.2016.06.014},
note = {\url{https://eprint.iacr.org/2016/019}},
url = {https://eprint.iacr.org/2016/019}
}

Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.