Cryptology ePrint Archive: Report 2021/1504

CCA SecureA Posteriori Openable Encryption in the Standard Model

Xavier Bultel

Abstract: A Posteriori Openable Public Key Encryptions (APOPKE) allow any user to generate a constant-size key that decrypts the messages they have sent over a chosen period of time. As an important feature, the period can be dynamically chosen after the messages have been sent. This primitive was introduced in 2016 by Bultel and Lafourcade. They also defined the Chosen-Plaintext Attack (CPA) security for APOPKE, and designed a scheme called GAPO, which is CPA secure in the random oracle model. In this paper, we formalize the Chosen-Ciphertext Attack (CCA) security for APOPKE, then we design a scheme called CHAPO (for CHosen-ciphetext attack resistant A Posteriori Openable encryption), and we prove its CCA security in the standard model. CHAPO is approximately twice as efficient as GAPO and is more generic. We also give news applications, and discuss the practical impact of its CCA security.

Category / Keywords: cryptographic protocols / CCA security, Standard Model, Openable Encryption

Original Publication (with minor differences): CT-RSA 2022

Date: received 13 Nov 2021

Contact author: xavier bultel at insa-cvl fr

Available format(s): PDF | BibTeX Citation

Version: 20211115:125835 (All versions of this report)

Short URL: ia.cr/2021/1504


[ Cryptology ePrint archive ]