Download:
by Eiichiro Fujisaki X, Tatsuaki Okamoto X, David Pointcheval, Jacques Stern
http://www.cosic.esat.kuleuven.ac.be/nessie/reports/phase1/enswp3-004.pdf
Add To MetaCart
Abstract:
Abstract. Recently Victor Shoup noted that there is a gap in the widely-believed security result of OAEP against adaptive chosen-ciphertext attacks. Moreover, he showed that, presumably, OAEP cannot be proven secure from the one-wayness of the underlying trapdoor permutation. This paper establishes another result on the security of OAEP. It proves that OAEP offers semantic security against adaptive chosenciphertext attacks, in the random oracle model, under the partial-domain one-wayness of the underlying permutation. Therefore, this uses a formally stronger assumption. Nevertheless, since partial-domain one-wayhess of the RSA function is equivalent to its (full-domain) one-wayness, it follows that the security of RSA-OAEP can actually be proven under the sole RSA assumption, although the reduction is not tight.
Citations
|
1976
|
A method for obtaining digital signatures and public-key cryptosystems
– Rivest, Shamir, et al.
- 1978
|
|
897
|
Random oracles are practical: A paradigm for designing efficient protocols
– Bellare, Rogaway
- 1993
|
|
844
|
Probabilistic encryption
– Goldwasser, Micali
- 1984
|
|
355
|
Nonmalleable cryptography
– Dolev, Dwork, et al.
|
|
354
|
Relations among notions of security for public-key encryption schemes
– Bellare, Desai, et al.
- 1462
|
|
245
|
Non-interactive zero-knowledge proof of knowledge and chosen ciphertext attack
– Rackoff, Simon
- 1992
|
|
166
|
Public-key Cryptosystems Provably Secure Against Chosen Ciphertext Attacks. STOC ’90
– Naor, Yung
|
|
154
|
Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1
– Bleichenbacher
- 1998
|
|
142
|
Optimal asymmetric encryption – How to encrypt with RSA
– Bellare, Rogaway
|
|
72
|
Finding a small root of a univariate modular equation
– Coppersmith
- 1996
|
|
65
|
OAEP reconsidered
– Shoup
- 2002
|
|
53
|
React: Rapid enhanced-security asymmetric cryptosystem transform
– Okamoto, Pointcheval
- 2001
|
|
19
|
Reaction Attacks against Several Public-Key Cryptosystems
– Hall, Goldberg, et al.
- 1999
|
|
14
|
On the power of misbehaving adversaries and security analysis of the original EPOC
– Joye, Quisquater, et al.
- 2001
|
