Certificateless public key encryption: A new generic construction and two pairing-free schemes

The certificateless encryption (CLE) scheme proposed by Baek, Safavi-Naini and Susilo is computation-friendly since it does not require any pairing operation. Unfortunately, an error was later discovered in their security proof and so far the provable security of the scheme remains unknown. Recently...

Full description

Saved in:
Bibliographic Details
Main Authors: YANG, Guomin, TAN, Chik How
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2011
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/7443
https://ink.library.smu.edu.sg/context/sis_research/article/8446/viewcontent/1_s2.0_S0304397510005876_main.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-8446
record_format dspace
spelling sg-smu-ink.sis_research-84462022-10-20T07:45:27Z Certificateless public key encryption: A new generic construction and two pairing-free schemes YANG, Guomin TAN, Chik How The certificateless encryption (CLE) scheme proposed by Baek, Safavi-Naini and Susilo is computation-friendly since it does not require any pairing operation. Unfortunately, an error was later discovered in their security proof and so far the provable security of the scheme remains unknown. Recently, Fiore, Gennaro and Smart showed a generic way (referred to as the FGS transformation) to transform identity-based key agreement protocols to certificateless key encapsulation mechanisms (CL-KEMs). As a typical example, they showed that the pairing-free CL-KEM underlying Baek et al.’s CLE can be “generated” by applying their transformation to the Fiore–Gennaro (FG) identity-based key agreement (IB-KA) protocol.In this paper, we show that directly applying the Fiore–Gennaro–Smart (FGS) transformation to the original FG IB-KA protocol in fact results in an insecure CL-KEM scheme against strong adversaries, we also give a way to fix the problem without adding any computational cost. The reason behind our attack is that the FGS transformation requires the underlying IB-KA protocol to be secure in a model that is stronger than the conventional security models where existing IB-KA protocols are proved secure, and the FG IB-KA protocol is in fact insecure in the new model. This motivates us to construct a new generic transformation from IB-KA protocols to CLE schemes. In the paper we present such a transformation which only requires the underlying IB-KA protocol to be secure in a security model that is weaker than the existing security models for IB-KA protocols. We illustrate our transformation by generating a new pairing-free CLE scheme that is obtained by directly applying our transformation to the original FG IB-KA protocol. 2011-03-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7443 info:doi/10.1016/j.tcs.2010.10.025 https://ink.library.smu.edu.sg/context/sis_research/article/8446/viewcontent/1_s2.0_S0304397510005876_main.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Certificateless cryptography Public key encryption Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic Certificateless cryptography
Public key encryption
Information Security
spellingShingle Certificateless cryptography
Public key encryption
Information Security
YANG, Guomin
TAN, Chik How
Certificateless public key encryption: A new generic construction and two pairing-free schemes
description The certificateless encryption (CLE) scheme proposed by Baek, Safavi-Naini and Susilo is computation-friendly since it does not require any pairing operation. Unfortunately, an error was later discovered in their security proof and so far the provable security of the scheme remains unknown. Recently, Fiore, Gennaro and Smart showed a generic way (referred to as the FGS transformation) to transform identity-based key agreement protocols to certificateless key encapsulation mechanisms (CL-KEMs). As a typical example, they showed that the pairing-free CL-KEM underlying Baek et al.’s CLE can be “generated” by applying their transformation to the Fiore–Gennaro (FG) identity-based key agreement (IB-KA) protocol.In this paper, we show that directly applying the Fiore–Gennaro–Smart (FGS) transformation to the original FG IB-KA protocol in fact results in an insecure CL-KEM scheme against strong adversaries, we also give a way to fix the problem without adding any computational cost. The reason behind our attack is that the FGS transformation requires the underlying IB-KA protocol to be secure in a model that is stronger than the conventional security models where existing IB-KA protocols are proved secure, and the FG IB-KA protocol is in fact insecure in the new model. This motivates us to construct a new generic transformation from IB-KA protocols to CLE schemes. In the paper we present such a transformation which only requires the underlying IB-KA protocol to be secure in a security model that is weaker than the existing security models for IB-KA protocols. We illustrate our transformation by generating a new pairing-free CLE scheme that is obtained by directly applying our transformation to the original FG IB-KA protocol.
format text
author YANG, Guomin
TAN, Chik How
author_facet YANG, Guomin
TAN, Chik How
author_sort YANG, Guomin
title Certificateless public key encryption: A new generic construction and two pairing-free schemes
title_short Certificateless public key encryption: A new generic construction and two pairing-free schemes
title_full Certificateless public key encryption: A new generic construction and two pairing-free schemes
title_fullStr Certificateless public key encryption: A new generic construction and two pairing-free schemes
title_full_unstemmed Certificateless public key encryption: A new generic construction and two pairing-free schemes
title_sort certificateless public key encryption: a new generic construction and two pairing-free schemes
publisher Institutional Knowledge at Singapore Management University
publishDate 2011
url https://ink.library.smu.edu.sg/sis_research/7443
https://ink.library.smu.edu.sg/context/sis_research/article/8446/viewcontent/1_s2.0_S0304397510005876_main.pdf
_version_ 1770576340097957888