## CryptoDB

### Paper: NAEP: Provable Security in the Presence of Decryption Failures

Authors: Nick Howgrave-Graham Joseph H. Silverman Ari Singer William Whyte URL: http://eprint.iacr.org/2003/172 Search ePrint Search Google We consider the impact of the possibility of decryption failures in proofs of security for padding schemes, where these failures are both message and key dependent. We explain that an average case failure analysis is not necessarily sufficient to achieve provable security with existing CCA2-secure schemes. On a positive note, we introduce NAEP, an efficient padding scheme similar to PSS-E designed especially for the NTRU one-way function. We show that with this padding scheme we can prove security in the presence of decryption failures, under certain explicitly stated assumptions. We also discuss the applicability of proofs of security to instantiated cryptosystems in general, introducing a more practical notion of cost to describe the power of an adversary.
##### BibTeX
@misc{eprint-2003-11886,
title={NAEP: Provable Security in the Presence of Decryption Failures},
booktitle={IACR Eprint archive},
keywords={public-key cryptography / lattice techniques, public-key cryptography, encryption schemes, provable security},
url={http://eprint.iacr.org/2003/172},
note={ wwhyte@ntru.com 12278 received 14 Aug 2003},
author={Nick Howgrave-Graham and Joseph H. Silverman and Ari Singer and William Whyte},
year=2003
}