A CCA secure hybrid Damgård's ElGamal encryption

Yvo Desmedt; Duong Hieu Phan

doi:10.1007/978-3-540-88733-1_5

A CCA secure hybrid Damgård's ElGamal encryption

Yvo Desmedt
, Duong Hieu Phan

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

ElGamal encryption, by its efficiency, is one of the most used schemes in cryptographic applications. However, the original ElGamal scheme is only provably secure against passive attacks. Damgård proposed a slight modification of ElGamal encryption scheme (named Damgård's ElGamal scheme) that provides security against non-adaptive chosen ciphertext attacks under a knowledge-of-exponent assumption. Recently, the CCA1-security of Damgård's ElGamal scheme has been proven under more standard assumptions. In this paper, we study the open problem of CCA2-security of Damgård's ElGamal. By employing a data encapsulation mechanism, we prove that the resulted hybrid Damgård's ElGamal Encryption is secure against adaptive chosen ciphertext attacks. The down side is that the proof of security is based on a knowledge-of-exponent assumption. In terms of efficiency, this scheme is more efficient (e.g. one exponentiation less in encryption) than Kurosawa-Desmedt scheme, the most efficient scheme in the standard model so far.

Original language	English
Title of host publication	Provable Security - Second International Conference, ProvSec 2008, Proceedings
Publisher	Springer Verlag
Pages	68-82
Number of pages	15
ISBN (Print)	3540887326, 9783540887324
DOIs	https://doi.org/10.1007/978-3-540-88733-1_5
Publication status	Published - 1 Jan 2008
Externally published	Yes
Event	2nd International Conference on Provable Security, ProvSec 2008 - Shanghai, China Duration: 30 Oct 2008 → 1 Nov 2008

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5324 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	2nd International Conference on Provable Security, ProvSec 2008
Country/Territory	China
City	Shanghai
Period	30/10/08 → 1/11/08

Access to Document

10.1007/978-3-540-88733-1_5

Cite this

Desmedt, Y., & Phan, D. H. (2008). A CCA secure hybrid Damgård's ElGamal encryption. In Provable Security - Second International Conference, ProvSec 2008, Proceedings (pp. 68-82). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5324 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-540-88733-1_5

@inproceedings{06160baa52f14976a14f5a23338b333e,

title = "A CCA secure hybrid Damg{\aa}rd's ElGamal encryption",

abstract = "ElGamal encryption, by its efficiency, is one of the most used schemes in cryptographic applications. However, the original ElGamal scheme is only provably secure against passive attacks. Damg{\aa}rd proposed a slight modification of ElGamal encryption scheme (named Damg{\aa}rd's ElGamal scheme) that provides security against non-adaptive chosen ciphertext attacks under a knowledge-of-exponent assumption. Recently, the CCA1-security of Damg{\aa}rd's ElGamal scheme has been proven under more standard assumptions. In this paper, we study the open problem of CCA2-security of Damg{\aa}rd's ElGamal. By employing a data encapsulation mechanism, we prove that the resulted hybrid Damg{\aa}rd's ElGamal Encryption is secure against adaptive chosen ciphertext attacks. The down side is that the proof of security is based on a knowledge-of-exponent assumption. In terms of efficiency, this scheme is more efficient (e.g. one exponentiation less in encryption) than Kurosawa-Desmedt scheme, the most efficient scheme in the standard model so far.",

author = "Yvo Desmedt and Phan, \{Duong Hieu\}",

year = "2008",

month = jan,

day = "1",

doi = "10.1007/978-3-540-88733-1\_5",

language = "English",

isbn = "3540887326",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "68--82",

booktitle = "Provable Security - Second International Conference, ProvSec 2008, Proceedings",

note = "2nd International Conference on Provable Security, ProvSec 2008 ; Conference date: 30-10-2008 Through 01-11-2008",

}

Desmedt, Y & Phan, DH 2008, A CCA secure hybrid Damgård's ElGamal encryption. in Provable Security - Second International Conference, ProvSec 2008, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5324 LNCS, Springer Verlag, pp. 68-82, 2nd International Conference on Provable Security, ProvSec 2008, Shanghai, China, 30/10/08. https://doi.org/10.1007/978-3-540-88733-1_5

A CCA secure hybrid Damgård's ElGamal encryption. / Desmedt, Yvo; Phan, Duong Hieu.
Provable Security - Second International Conference, ProvSec 2008, Proceedings. Springer Verlag, 2008. p. 68-82 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5324 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A CCA secure hybrid Damgård's ElGamal encryption

AU - Desmedt, Yvo

AU - Phan, Duong Hieu

PY - 2008/1/1

Y1 - 2008/1/1

N2 - ElGamal encryption, by its efficiency, is one of the most used schemes in cryptographic applications. However, the original ElGamal scheme is only provably secure against passive attacks. Damgård proposed a slight modification of ElGamal encryption scheme (named Damgård's ElGamal scheme) that provides security against non-adaptive chosen ciphertext attacks under a knowledge-of-exponent assumption. Recently, the CCA1-security of Damgård's ElGamal scheme has been proven under more standard assumptions. In this paper, we study the open problem of CCA2-security of Damgård's ElGamal. By employing a data encapsulation mechanism, we prove that the resulted hybrid Damgård's ElGamal Encryption is secure against adaptive chosen ciphertext attacks. The down side is that the proof of security is based on a knowledge-of-exponent assumption. In terms of efficiency, this scheme is more efficient (e.g. one exponentiation less in encryption) than Kurosawa-Desmedt scheme, the most efficient scheme in the standard model so far.

AB - ElGamal encryption, by its efficiency, is one of the most used schemes in cryptographic applications. However, the original ElGamal scheme is only provably secure against passive attacks. Damgård proposed a slight modification of ElGamal encryption scheme (named Damgård's ElGamal scheme) that provides security against non-adaptive chosen ciphertext attacks under a knowledge-of-exponent assumption. Recently, the CCA1-security of Damgård's ElGamal scheme has been proven under more standard assumptions. In this paper, we study the open problem of CCA2-security of Damgård's ElGamal. By employing a data encapsulation mechanism, we prove that the resulted hybrid Damgård's ElGamal Encryption is secure against adaptive chosen ciphertext attacks. The down side is that the proof of security is based on a knowledge-of-exponent assumption. In terms of efficiency, this scheme is more efficient (e.g. one exponentiation less in encryption) than Kurosawa-Desmedt scheme, the most efficient scheme in the standard model so far.

UR - https://www.scopus.com/pages/publications/57049084040

U2 - 10.1007/978-3-540-88733-1_5

DO - 10.1007/978-3-540-88733-1_5

M3 - Conference contribution

AN - SCOPUS:57049084040

SN - 3540887326

SN - 9783540887324

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 68

EP - 82

BT - Provable Security - Second International Conference, ProvSec 2008, Proceedings

PB - Springer Verlag

T2 - 2nd International Conference on Provable Security, ProvSec 2008

Y2 - 30 October 2008 through 1 November 2008

ER -

A CCA secure hybrid Damgård's ElGamal encryption

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this