Tight Security of Twin-DH Hashed ElGamal KEM in Multi-User Setting

Yuji Hashimoto; Koji Nuida; Goichiro Hanaoka

doi:10.1587/TRANSFUN.2021CIP0008

Tight Security of Twin-DH Hashed ElGamal KEM in Multi-User Setting

Yuji Hashimoto
, Koji Nuida
, Goichiro Hanaoka

研究成果: ジャーナルへの寄稿 › 学術誌 › 査読

抄録

It is an important research area to construct a cryptosystem that satisfies the security for multi-user setting. In addition, it is desirable that such a cryptosystem is tightly secure and the ciphertext size is small. For IND-CCA public key encryption schemes for multi-user setting with constant-size ciphertexts tightly secure under the DH assumptions, in 2020, Y. Sakai and G. Hanaoka firstly proposed such a scheme (implicitly based on hybrid encryption paradigm) under the DDH assumption. More recently, Y. Lee et al. proposed such a hybrid encryption scheme (with slightly stronger security) where the assumption for the KEM part is weakened to the CDH assumption. In this paper, we revisit the twin-DH hashed ElGamal KEM with even shorter ciphertexts than those schemes, and prove that its IND-CCA security for multi-user setting is in fact tightly reducible to the CDH assumption.

本文言語	英語
ページ（範囲）	173-181
ページ数	9
ジャーナル	IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
巻	E105A
号	3
DOI	https://doi.org/10.1587/TRANSFUN.2021CIP0008
出版ステータス	出版済み - 3月 2022
外部発表	はい

!!!All Science Journal Classification (ASJC) codes

信号処理
コンピュータグラフィックスおよびコンピュータ支援設計
電子工学および電気工学
応用数学

文献へのアクセス

10.1587/TRANSFUN.2021CIP0008

他のファイルとリンク

引用スタイル

@article{c1e6d51e6107460cba44b6f01bb35db1,

title = "Tight Security of Twin-DH Hashed ElGamal KEM in Multi-User Setting",

abstract = "It is an important research area to construct a cryptosystem that satisfies the security for multi-user setting. In addition, it is desirable that such a cryptosystem is tightly secure and the ciphertext size is small. For IND-CCA public key encryption schemes for multi-user setting with constant-size ciphertexts tightly secure under the DH assumptions, in 2020, Y. Sakai and G. Hanaoka firstly proposed such a scheme (implicitly based on hybrid encryption paradigm) under the DDH assumption. More recently, Y. Lee et al. proposed such a hybrid encryption scheme (with slightly stronger security) where the assumption for the KEM part is weakened to the CDH assumption. In this paper, we revisit the twin-DH hashed ElGamal KEM with even shorter ciphertexts than those schemes, and prove that its IND-CCA security for multi-user setting is in fact tightly reducible to the CDH assumption.",

author = "Yuji Hashimoto and Koji Nuida and Goichiro Hanaoka",

note = "Publisher Copyright: Copyright {\textcopyright} 2022 The Institute of Electronics, Information and Communication Engineers.",

year = "2022",

month = mar,

doi = "10.1587/TRANSFUN.2021CIP0008",

language = "English",

volume = "E105A",

pages = "173--181",

journal = "IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences",

issn = "0916-8508",

publisher = "Maruzen Co., Ltd/Maruzen Kabushikikaisha",

number = "3",

}

TY - JOUR

T1 - Tight Security of Twin-DH Hashed ElGamal KEM in Multi-User Setting

AU - Hashimoto, Yuji

AU - Nuida, Koji

AU - Hanaoka, Goichiro

PY - 2022/3

Y1 - 2022/3

N2 - It is an important research area to construct a cryptosystem that satisfies the security for multi-user setting. In addition, it is desirable that such a cryptosystem is tightly secure and the ciphertext size is small. For IND-CCA public key encryption schemes for multi-user setting with constant-size ciphertexts tightly secure under the DH assumptions, in 2020, Y. Sakai and G. Hanaoka firstly proposed such a scheme (implicitly based on hybrid encryption paradigm) under the DDH assumption. More recently, Y. Lee et al. proposed such a hybrid encryption scheme (with slightly stronger security) where the assumption for the KEM part is weakened to the CDH assumption. In this paper, we revisit the twin-DH hashed ElGamal KEM with even shorter ciphertexts than those schemes, and prove that its IND-CCA security for multi-user setting is in fact tightly reducible to the CDH assumption.

AB - It is an important research area to construct a cryptosystem that satisfies the security for multi-user setting. In addition, it is desirable that such a cryptosystem is tightly secure and the ciphertext size is small. For IND-CCA public key encryption schemes for multi-user setting with constant-size ciphertexts tightly secure under the DH assumptions, in 2020, Y. Sakai and G. Hanaoka firstly proposed such a scheme (implicitly based on hybrid encryption paradigm) under the DDH assumption. More recently, Y. Lee et al. proposed such a hybrid encryption scheme (with slightly stronger security) where the assumption for the KEM part is weakened to the CDH assumption. In this paper, we revisit the twin-DH hashed ElGamal KEM with even shorter ciphertexts than those schemes, and prove that its IND-CCA security for multi-user setting is in fact tightly reducible to the CDH assumption.

UR - https://www.scopus.com/pages/publications/85149141212

UR - https://www.scopus.com/pages/publications/85149141212#tab=citedBy

U2 - 10.1587/TRANSFUN.2021CIP0008

DO - 10.1587/TRANSFUN.2021CIP0008

M3 - Article

AN - SCOPUS:85149141212

SN - 0916-8508

VL - E105A

SP - 173

EP - 181

JO - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

JF - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

IS - 3

ER -

Tight Security of Twin-DH Hashed ElGamal KEM in Multi-User Setting

抄録

!!!All Science Journal Classification (ASJC) codes

文献へのアクセス

他のファイルとリンク

フィンガープリント

引用スタイル