Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model: extended abstract

Full text

Pdf (445 KB)

Source

ASIAN ACM Symposium on Information, Computer and Communications Security archive
Proceedings of the 2nd ACM symposium on Information, computer and communications security table of contents

Singapore

SESSION: Cryptosystems & analysis table of contents

Pages: 273 - 283

Year of Publication: 2007

ISBN:1-59593-574-6

Authors

Joseph K. Liu	University of Bristol, Bristol, UK
Man Ho Au	University of Wollongong, Wollongong, Australia
Willy Susilo	University of Wollongong, Wollongong, Australia

Sponsor

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 17, Downloads (12 Months): 178, Citation Count: 4

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1229285.1266994 What is a DOI?

ABSTRACT

Certificateless Public Key Cryptography (CL-PKC) enjoys a number of features of Identity-Based Cryptography (IBC) while without having the problem of key escrow. However, it does suffer from an attack where the adversary, Carol, replaces Alice's public key by someone's public key so that Bob, who wants to send an encrypted message to Alice, uses Alice's identity and other's public key as the inputs to the encryption function. As a result, Alice cannot decrypt the message while Bob is unaware of this. We call it Denial-of-Decryption (DoD) Attack as its nature is similar to the well known Denial-of-Service (DoS) Attack. Based on CL-PKC, we propose a new paradigm called Self-Generated-Certificate Public Key Cryptography (SGC-PKC) that captures the DoD Attack. We also provide a generic construction of a self-generated-certificate public key encryption scheme in the standard model. Our generic construction uses certificateless signature and certificateless encryption as the building block.

In addition, we further propose a certificateless signature and a certificateless encryption scheme with concrete implementation that are all provably secure in the standard model, which are the first in the literature regardless of the generic constructions by Yum and Lee which may contain security weaknesses as pointed out by others. We believe these concrete implementations are of independent interest.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	S. S. Al-Riyami and K. Paterson. Certificateless public key cryptography. In Proc. ASIACRYPT 2003, pages 452--473. Springer-Verlag, 2003. Lecture Notes in Computer Science No. 2894.
	2	S. S. Al-Riyami and K. Paterson. Certificateless public key cryptography. Cryptology ePrint Archive, Report 2003/126, 2003. http://eprint.iacr.org/2003/126/.
	3	J. Baek, R. Safavi-Naini, and W. Susilo. Certificateless public key encryption without pairing. In ISC 05, pages 134--148. Springer-Verlag, 2005. Lecture Notes in Computer Science Vol. 3650.
	4	K. Bentahar, P. Farshim, and J. Malone-Lee. Generic constructions of identity-based and certificateless KEMs. Cryptology ePrint Archive, Report 2005/058, 2005. http://eprint.iacr.org/2005/058/.
	5	D. Boneh and J. Katz. Improved efficiency for cca-secure cryptosystems built using identity-based encryption. In CT-RSA, pages 87--103, 2005.
	6	H. Chabanne, D. H. Phan, and D. Pointcheval. Public traceability in traitor tracing schemes. In Proc. EUROCRYPT 2005, volume 3494 of LNCS, pages 542--558. Springer, 2005.
	7	Z. Cheng and R. Comley. Efficient certificateless public key encryption. Cryptology ePrint Archive, Report 2005/012, 2005. http://eprint.iacr.org/2005/012/.
	8	S. Chow, C. Boyd, and J. Gonzalez. Security-mediated certificateless cryptography. In PKC 2006, volume 3958 of Lecture Notes in Computer Science, pages 508--524. Springer-Verlag, 2006.
	9	A. Dent and C. Kudla. On proofs of security for certificateless cryptosystems. Cryptology ePrint Archive, Report 2005/348, 2005. http://eprint.iacr.org/2005/348/.
	10	C. Gentry. Certificate-based encryption and the certificate revocation problem. In Proc. EUROCRYPT 2003, pages 272--293. Springer-Verlag, 2003. Lecture Notes in Computer Science No. 2656.
	11	M. Girault. Self-certified public keys. In Proc. EUROCRYPT 91, pages 490--497. Springer-Verlag, 1992. Lecture Notes in Computer Science No. 547.
	12	M. Gorantla, R. Gangishetti, M. Das, and A. Saxena. An effective certificateless signature scheme based on bilinear pairings. In WOSIS 2005, pages 31--39. INSTICC Press, 2005.
	13	B. Hu, D. Wong, Z. Zhang, and X. Deng. Key replacement attack against a generic construction of certificateless signature. In ACISP '06, pages 235--246. Springer-Verlag, 2006. Lecture Notes in Computer Science No. 4058.
	14	X. Huang, W. Susilo, Y. Mu, and F. Zhang. On the security of certificateless signature schemes from Asiacrypt 2003. In CANS 2005, pages 13--25. Springer-Verlag, 2005. Lecture Notes in Computer Science No. 3810.
	15	Xinyi Huang , Willy Susilo , Yi Mu , Futai Zhang, Certificateless Designated Verifier Signature Schemes, Proceedings of the 20th International Conference on Advanced Information Networking and Applications - Volume 2 (AINA'06), p.15-19, April 18-20, 2006 [doi>10.1109/AINA.2006.124]
	16	B. Libert and J. Quisquater. On constructing certificateless cryptosystems from identity based encryption. In PKC 2006, pages 474--490. Springer-Verlag, 2006. Lecture Notes in Computer Science No. 3958.
	17	J. K. Liu, M. H. Au, and W. Susilo. Self-generated-certificate public key cryptography and certificateless signature / encryption scheme in the standard model. Cryptology ePrint Archive, Report 2006/373, 2006. http://eprint.iacr.org/.
	18	Anna Lysyanskaya, Unique Signatures and Verifiable Random Functions from the DH-DDH Separation, Proceedings of the 22nd Annual International Cryptology Conference on Advances in Cryptology, p.597-612, August 18-22, 2002
	19	K. Paterson and J. Schuldt. Efficient identity-based signatures secure in the standard model. Cryptology ePrint Archive, Report 2006/080, 2006. http://eprint.iacr.org/2006/080/, To Appear in ACISP 2006.
	20	H. Petersen and P. Horster. Self-certified keys - concepts and applications. In 3rd Int. Conference on Communications and Multimedia Security, pages 102--116. Chapnam and Hall, 1997.
	21	Shahrokh Saeednia, Identity-Based and Self-Certified Key-Exchange Protocols, Proceedings of the Second Australasian Conference on Information Security and Privacy, p.303-313, July 07-09, 1997
	22	Shahrokh Saeednia, A note on Girault's self-certified model, Information Processing Letters, v.86 n.6, p.323-327, 30 June 2003 [doi>10.1016/S0020-0190(03)00203-5]
	23	Adi Shamir, Identity-based cryptosystems and signature schemes, Proceedings of CRYPTO 84 on Advances in cryptology, p.47-53, August 1985, Santa Barbara, California, United States
	24	Y. Shi and J. Li. Provable efficient certificateless public key encryption. Cryptology ePrint Archive, Report 2005/287, 2005. http://eprint.iacr.org/2005/287/.
	25	V. Shoup. Lower bounds for discrete logarithms and related problems. In Proc. EUROCRYPT 97, volume 1233 of Lecture Notes in Computer Science, pages 250--266. Springer, 1997.
	26	B. Waters. Efficient identity-based encryption without random oracles. In Proc. EUROCRYPT 2005, volume 3494 of LNCS, pages 114--127. Springer-Verlag, 2005.
	27	D. H. Yum and P. J. Lee. Generic construction of certificateless encryption. In ICCSA '04, pages 802--811. Springer-Verlag, 2004. Lecture Notes in Computer Science No. 3040.
	28	D. H. Yum and P. J. Lee. Generic construction of certificateless signature. In ACISP '04, pages 200--211. Springer-Verlag, 2004. Lecture Notes in Computer Science No. 3108.

CITED BY 4

	Edna Milgo, A secure unidirectional proxy re-encryption using identity and secret key exchange, Proceedings of the 47th Annual Southeast Regional Conference, March 19-21, 2009, Clemson, South Carolina
	Hu Xiong , Zhiguang Qin , Fagen Li, An Improved Certificateless Signature Scheme Secure in the Standard Model, Fundamenta Informaticae, v.88 n.1-2, p.193-206, December 2008
	Lei Zhang , Futai Zhang, A new certificateless aggregate signature scheme, Computer Communications, v.32 n.6, p.1079-1085, April, 2009
	Joseph K. Liu , Joonsang Baek , Jianying Zhou, Certificate-based sequential aggregate signature, Proceedings of the second ACM conference on Wireless network security, March 16-19, 2009, Zurich, Switzerland

INDEX TERMS

Keywords:
certificateless encryption, certificateless signature

Collaborative Colleagues:

Joseph K. Liu: colleagues

Man Ho Au: colleagues

Willy Susilo: colleagues

Adobe Acrobat

QuickTime

Windows Media Player

Real Player