[Resource Topic] 2009/377: Chosen-Ciphertext Secure RSA-type Cryptosystems

Welcome to the resource topic for 2009/377

Title:
Chosen-Ciphertext Secure RSA-type Cryptosystems

Authors: Benoit Chevallier-Mames, Marc Joye

Abstract:

This paper explains how to design fully secure RSA-type cryptosystems from schemes only secure against passive attacks, in the standard model. We rely on instance-independence assumptions, which, roughly speaking, conjecture that for certain problems, an interactive access to a solver for another problem does not help the challenger. Previously, instance-independence assumptions were used in a “negative” way, to prove that certain schemes proven in the random oracle model were not provable in the standard model. Our paradigm applies virtually to all (weakly secure) RSA-type encryption schemes for which public-key RSA exponent can be arbitrarily chosen. As an illustration, we present a chosen-ciphertext secure variant of the Naccache-Stern encryption scheme.

ePrint: https://eprint.iacr.org/2009/377

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .