The Kurosawa-Desmedt key encapsulation is not chosen-ciphertext secure
- Authors
- Choi, Seung Geol; Herranz, Javier; Hofheinz, Dennis; Hwang, Jung Yeon; Kiltz, Eike; Lee, Dong Hoon; Yung, Moti
- Issue Date
- 31-7월-2009
- Publisher
- ELSEVIER SCIENCE BV
- Keywords
- Cryptography; Hybrid encryption; Key encapsulation mechanism
- Citation
- INFORMATION PROCESSING LETTERS, v.109, no.16, pp.897 - 901
- Indexed
- SCIE
SCOPUS
- Journal Title
- INFORMATION PROCESSING LETTERS
- Volume
- 109
- Number
- 16
- Start Page
- 897
- End Page
- 901
- URI
- https://scholar.korea.ac.kr/handle/2021.sw.korea/119646
- DOI
- 10.1016/j.ipl.2009.04.007
- ISSN
- 0020-0190
- Abstract
- At CRYPTO 2004, Kurosawa and Desmedt presented a new hybrid encryption scheme that is chosen-ciphertext (CCA2) secure in the standard model. Until now it was unknown if the key encapsulation part of the Kurosawa-Desmedt scheme by itself is still CCA2-secure or not. In this note we answer this question to the negative, namely we present a simple CCA2 attack on the Kurosawa-Desmedt key encapsulation mechanism. Our attack further supports the design paradigm of Kurosawa and Desmedt to build CCA2-secure hybrid encryption from weak key encapsulation. (C) 2009 Elsevier B.V. All rights reserved.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - School of Cyber Security > Department of Information Security > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.