International Association for Cryptologic Research

International Association
for Cryptologic Research


Paper: Hybrid Encryption in a Multi-user Setting, Revisited

Federico Giacon
Eike Kiltz
Bertram Poettering
DOI: 10.1007/978-3-319-76578-5_6
Search ePrint
Search Google
Conference: PKC 2018
Abstract: This paper contributes to understanding the interplay of security notions for PKE, KEMs, and DEMs, in settings with multiple users, challenges, and instances. We start analytically by first studying (a) the tightness aspects of the standard hybrid KEM+DEM encryption paradigm, (b) the inherent weak security properties of all deterministic DEMs due to generic key-collision attacks in the multi-instance setting, and (c) the negative effect of deterministic DEMs on the security of hybrid encryption.We then switch to the constructive side by (d) introducing the concept of an augmented data encapsulation mechanism (ADEM) that promises robustness against multi-instance attacks, (e) proposing a variant of hybrid encryption that uses an ADEM instead of a DEM to alleviate the problems of the standard KEM+DEM composition, and (f) constructing practical ADEMs that are secure in the multi-instance setting.
  title={Hybrid Encryption in a Multi-user Setting, Revisited},
  booktitle={Public-Key Cryptography – PKC 2018},
  series={Public-Key Cryptography – PKC 2018},
  author={Federico Giacon and Eike Kiltz and Bertram Poettering},