CryptoDB
Certificate-Based Encryption and the Certificate Revocation Problem
| Authors: | |
|---|---|
| Download: | |
| Abstract: | We introduce the notion of certificate-based encryption. In this model, a certificate -- or, more generally, a signature -- acts not only as a certificate but also as a decryption key. To decrypt a message, a keyholder needs both its secret key and an up-to-date certificate from its CA (or a signature from an authorizer). Certificate-based encryption combines the best aspects of identity-based encryption (implicit certification) and public key encryption (no escrow). We demonstrate how certificate-based encryption can be used to construct an efficient PKI requiring less infrastructure than previous proposals, including Micali's Novomodo, Naor-Nissim and Aiello-Lodha-Ostrovsky. |
BibTeX
@misc{eprint-2003-11897,
title={Certificate-Based Encryption and the Certificate Revocation Problem},
booktitle={IACR Eprint archive},
keywords={public-key cryptography /},
url={http://eprint.iacr.org/2003/183},
note={Eurocrypt 2003 cgentry@docomolabs-usa.com 12297 received 2 Sep 2003},
author={Craig Gentry},
year=2003
}