CryptoDB

Paper: Generic Certificateless Encryption in the Standard Model

Authors: Qiong Huang Duncan S. Wong URL: http://eprint.iacr.org/2007/095 Search ePrint Search Google Despite the large number of certificateless encryption schemes recently proposed, many of them have been found to be insecure under a practical attack called \emph{malicious-but-passive} KGC attack, since they all follow the same key generation procedure as that of the one proposed by Al-Riyami and Paterson in ASIACRYPT 2003. The only provably secure certificateless encryption scheme against this attack is due to Libert and Quisquater (PKC 2006). However, the security can only be shown in the random oracle model. % In this paper, we first show that a scheme which has a different key generation procedure from that of Al-Riyami and Paterson also suffers from the malicious-but-passive KGC attack. Our attacking techniques are different from the previous attacks and may cause greater extent of damage than the previous ones. We also propose a generic construction of certificateless encryption which can be proven secure against this attack \emph{in the standard model}. This generic scheme is not only the first one proven secure in the standard model, but is also very efficient to instantiate. We also describe how to use short signature and hybrid encryption to construct highly efficient instantiations of this generic scheme.
BibTeX
@misc{eprint-2007-13377,
title={Generic Certificateless Encryption in the Standard Model},
booktitle={IACR Eprint archive},
keywords={cryptographic protocols / certificateless encryption},
url={http://eprint.iacr.org/2007/095},
note={ csqhuang@cityu.edu.hk 13586 received 14 Mar 2007},
author={Qiong Huang and Duncan S. Wong},
year=2007
}