Public Key Encryption

Qijun Gu; Pascal Paillier; Tanja Lange; Edlyn Teske; Darrel Hankerson; Alfred Menezes; David Zhang; Feng Yue; Wangmeng Zuo; Jean-Jacques Quisquater; Gildas Avoine; Gerald Brose; Marijke De Soete; Torben Pedersen; Tom Caddy; Hugo Krawczyk; Yvo Desmedt; Mr. Qiushi Yang; Dwight Horne; Carlisle Adams; David Naccache; François-Xavier Standaert; Jean-Jacques Quisquater; Jorge Guajardo∗; Peter Landrock; Danny De Cock; Marijke De Soete; Mike Just; Torben Pedersen; Lorrie Faith Cranor; Friedrich L. Bauer; Bart Preneel; Pierrick Gaudry; Sabrina De Capitani di Vimercati; Friedrich L. Bauer; Sabrina De Capitani di Vimercati; Pierangela Samarati; Burt Kaliski; Friedrich L. Bauer; Daniel J. Bernstein; Jon Callas; Daniel Nagy; Akira Otsuka; Bart Preneel; Lars R. Knudsen; Gregor Leander; Clemens Heinrich; Anton Stiglic; Anton Stiglic; Anton Stiglic; Anton Stiglic; Burt Kaliski; Hakan Hacigiümüş; Bijit Hore; Sharad Mehrotra; Sabrina De Capitani di Vimercati; Claudio A. Ardagna; Shucheng Yu; Wenjing Lou; Kui Ren; Carlo Blundo; Sabrina De Capitani Di Vimercati; Giovanni Livraga; Donggang Liu; Anton Stiglic; Kazue Sako; Alex Biryukov; Catherine Meadows; Berry Schoenmakers; George Necula; Claude Carlet; Mohamed Omar Rayes; Jeffrey J Wiley; Berry Schoenmakers; Debbie Cook; Marc Vauclair; Jerome A. Solinas; Tor Helleseth; Gerrit Bleumer; Anton Stiglic; Burt Kaliski; François Koeune; Kazue Sako; Gerrit Bleumer; Gerrit Bleumer

doi:10.1007/978-1-4419-5906-5_1039

Overview In this lecture, we will introduce the notion of Public-Key Encryption. We will define the basic notion of security for this primitive, i.e. Semantic Security. We will discuss an alternative formulation of the semantic security definition that is sometimes more intuitive to work with. Finally, we will give two examples of semantically-secure public-key encryption schemes, namely the El-Gamal Encryption and the Paillier Encryption schemes. Throughout the sequel, we denote the security

more »

... rameter by λ. A public-key encryption (PKE) scheme E = (G, E, D) consists of three algorithms. • The key generation algorithm G takes as input the security parameter λ in unary form and outputs a pair (P K, SK), the public key and secret key for E. That is (P K, SK) ← G(1 λ ). • The encryption algorithm E takes as input a public key P K and a message m and outputs a ciphertext c. That is, c ← E(P K, m). • The decryption algorithm D takes as input a secret key SK and a ciphertext c and outputs a message m. That is m ← D(SK, m). Usually, the key generation and encryption algorithms are probabilistic while the decryption algorithm is deterministic 1 . The correctness property of the PKE scheme E is defined as: The most basic notion of security for a PKE encryption scheme E is Semantic Security or Indistinguishability. As usual, we define this notion in terms of a game between a challenger 1 The encryption algorithm must be probabilistic, even to satisfy the most basic notion of security for PKE schemes. The decryption algorithm may be probabilistic, but for most PKE schemes it is possible to derandomize the The task of the adversary A in this definition is to distinguish between these two games and its advantage against the encryption scheme E is defined as: A public-key encryption scheme E is said to be secure under this definition is the advantage AdvDist A is negligible for any probabilistic polynomial-time adversary A. We will now show L8-2

doi:10.1007/978-1-4419-5906-5_1039 fatcat:iceadqsp2ree3ls6rn7atp6ttu

Citation

Qijun Gu, Pascal Paillier, Tanja Lange, Edlyn Teske, Darrel Hankerson, Alfred Menezes, David Zhang, Feng Yue, Wangmeng Zuo, Jean-Jacques Quisquater, Gildas Avoine, Gerald Brose, Marijke De Soete, Torben Pedersen, Tom Caddy, Hugo Krawczyk, Yvo Desmedt, Mr. Qiushi Yang, Dwight Horne, Carlisle Adams, David Naccache, François-Xavier Standaert, Jean-Jacques Quisquater, Jorge Guajardo∗, Peter Landrock, Danny De Cock, Marijke De Soete, Mike Just, Torben Pedersen, Lorrie Faith Cranor, Friedrich L. Bauer, Bart Preneel, Pierrick Gaudry, Sabrina De Capitani di Vimercati, Friedrich L. Bauer, Sabrina De Capitani di Vimercati, Pierangela Samarati, Burt Kaliski, Friedrich L. Bauer, Daniel J. Bernstein, Jon Callas, Daniel Nagy, Akira Otsuka, Bart Preneel, Lars R. Knudsen, Gregor Leander, Clemens Heinrich, Anton Stiglic, Anton Stiglic, Anton Stiglic, Anton Stiglic, Burt Kaliski, Hakan Hacigiümüş, Bijit Hore, Sharad Mehrotra, Sabrina De Capitani di Vimercati, Claudio A. Ardagna, Shucheng Yu, Wenjing Lou, Kui Ren, Carlo Blundo, Sabrina De Capitani Di Vimercati, Giovanni Livraga, Donggang Liu, Anton Stiglic, Kazue Sako, Alex Biryukov, Catherine Meadows, Berry Schoenmakers, George Necula, Claude Carlet, Mohamed Omar Rayes, Jeffrey J Wiley, Berry Schoenmakers, Debbie Cook, Marc Vauclair, Jerome A. Solinas, Tor Helleseth, Gerrit Bleumer, Anton Stiglic, Burt Kaliski, François Koeune, Kazue Sako, Gerrit Bleumer, Gerrit Bleumer. "Public Key Encryption." Encyclopedia of Cryptography and Security (2011) 997-997

Public Key Encryption [chapter]

Preserved Fulltext