Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model

Joseph K. Liu, Man Ho Au, Willy Susilo

Research output: Chapter in Book/Report/Conference proceedingConference PaperOtherpeer-review

172 Citations (Scopus)

Abstract

Certificateless Public Key Cryptography (CL-PKC) enjoys a number of features of Identity-Based Cryptography (IBC) while without having the problem of key escrow. However, it does suffer from an attack where the adversary, Carol, replaces Alice's public key by someone's public key so that Bob, who wants to send an encrypted message to Alice, uses Alice's identity and other's public key as the inputs to the encryption function. As a result, Alice cannot decrypt the message while Bob is unaware of this. We call it Denial-of-Decryption (DoD) Attack as its nature is similar to the well known Denial-of-Service (DoS) Attack. Based on CL-PKC, we propose a new paradigm called Self-Generated-Certificate Public Key Cryptography (SGC-PKC) that captures the DoD Attack. We also provide a generic construction of a self-generated-certificate public key encryption scheme in the standard model. Our generic construction uses certificateless signature and certificateless encryption as the building block. In addition, we further propose a certificateless signature and a certificateless encryption scheme with concrete implementation that are all provably secure in the standard model, which are the first in the literature regardless of the generic constructions by Yum and Lee which may contain security weaknesses as pointed out by others. We believe these concrete implementations are of independent interest.

Original languageEnglish
Title of host publicationProceedings of the 2nd ACM Symposium on Information, Computer and Communications Security
Place of PublicationNew York NY USA
PublisherAssociation for Computing Machinery (ACM)
Pages273-283
Number of pages11
ISBN (Electronic)1595935746
ISBN (Print)9781595935748
DOIs
Publication statusPublished - 2007
Externally publishedYes
EventACM Symposium on Information, Computer and Communications Security, ASIACCS '07 - Singapore, Singapore
Duration: 20 Mar 200722 Mar 2007
Conference number: 2nd

Conference

ConferenceACM Symposium on Information, Computer and Communications Security, ASIACCS '07
Abbreviated titleASIACCS '07
CountrySingapore
CitySingapore
Period20/03/0722/03/07

Keywords

  • Certificateless encryption
  • Certificateless signature

Cite this

Liu, J. K., Au, M. H., & Susilo, W. (2007). Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model. In Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security (pp. 273-283). New York NY USA: Association for Computing Machinery (ACM). https://doi.org/10.1145/1229285.1266994
Liu, Joseph K. ; Au, Man Ho ; Susilo, Willy. / Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model. Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security. New York NY USA : Association for Computing Machinery (ACM), 2007. pp. 273-283
@inproceedings{7aaddfe34caf40dc94437238d0512e7e,
title = "Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model",
abstract = "Certificateless Public Key Cryptography (CL-PKC) enjoys a number of features of Identity-Based Cryptography (IBC) while without having the problem of key escrow. However, it does suffer from an attack where the adversary, Carol, replaces Alice's public key by someone's public key so that Bob, who wants to send an encrypted message to Alice, uses Alice's identity and other's public key as the inputs to the encryption function. As a result, Alice cannot decrypt the message while Bob is unaware of this. We call it Denial-of-Decryption (DoD) Attack as its nature is similar to the well known Denial-of-Service (DoS) Attack. Based on CL-PKC, we propose a new paradigm called Self-Generated-Certificate Public Key Cryptography (SGC-PKC) that captures the DoD Attack. We also provide a generic construction of a self-generated-certificate public key encryption scheme in the standard model. Our generic construction uses certificateless signature and certificateless encryption as the building block. In addition, we further propose a certificateless signature and a certificateless encryption scheme with concrete implementation that are all provably secure in the standard model, which are the first in the literature regardless of the generic constructions by Yum and Lee which may contain security weaknesses as pointed out by others. We believe these concrete implementations are of independent interest.",
keywords = "Certificateless encryption, Certificateless signature",
author = "Liu, {Joseph K.} and Au, {Man Ho} and Willy Susilo",
year = "2007",
doi = "10.1145/1229285.1266994",
language = "English",
isbn = "9781595935748",
pages = "273--283",
booktitle = "Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security",
publisher = "Association for Computing Machinery (ACM)",
address = "United States of America",

}

Liu, JK, Au, MH & Susilo, W 2007, Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model. in Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security. Association for Computing Machinery (ACM), New York NY USA, pp. 273-283, ACM Symposium on Information, Computer and Communications Security, ASIACCS '07, Singapore, Singapore, 20/03/07. https://doi.org/10.1145/1229285.1266994

Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model. / Liu, Joseph K.; Au, Man Ho; Susilo, Willy.

Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security. New York NY USA : Association for Computing Machinery (ACM), 2007. p. 273-283.

Research output: Chapter in Book/Report/Conference proceedingConference PaperOtherpeer-review

TY - GEN

T1 - Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model

AU - Liu, Joseph K.

AU - Au, Man Ho

AU - Susilo, Willy

PY - 2007

Y1 - 2007

N2 - Certificateless Public Key Cryptography (CL-PKC) enjoys a number of features of Identity-Based Cryptography (IBC) while without having the problem of key escrow. However, it does suffer from an attack where the adversary, Carol, replaces Alice's public key by someone's public key so that Bob, who wants to send an encrypted message to Alice, uses Alice's identity and other's public key as the inputs to the encryption function. As a result, Alice cannot decrypt the message while Bob is unaware of this. We call it Denial-of-Decryption (DoD) Attack as its nature is similar to the well known Denial-of-Service (DoS) Attack. Based on CL-PKC, we propose a new paradigm called Self-Generated-Certificate Public Key Cryptography (SGC-PKC) that captures the DoD Attack. We also provide a generic construction of a self-generated-certificate public key encryption scheme in the standard model. Our generic construction uses certificateless signature and certificateless encryption as the building block. In addition, we further propose a certificateless signature and a certificateless encryption scheme with concrete implementation that are all provably secure in the standard model, which are the first in the literature regardless of the generic constructions by Yum and Lee which may contain security weaknesses as pointed out by others. We believe these concrete implementations are of independent interest.

AB - Certificateless Public Key Cryptography (CL-PKC) enjoys a number of features of Identity-Based Cryptography (IBC) while without having the problem of key escrow. However, it does suffer from an attack where the adversary, Carol, replaces Alice's public key by someone's public key so that Bob, who wants to send an encrypted message to Alice, uses Alice's identity and other's public key as the inputs to the encryption function. As a result, Alice cannot decrypt the message while Bob is unaware of this. We call it Denial-of-Decryption (DoD) Attack as its nature is similar to the well known Denial-of-Service (DoS) Attack. Based on CL-PKC, we propose a new paradigm called Self-Generated-Certificate Public Key Cryptography (SGC-PKC) that captures the DoD Attack. We also provide a generic construction of a self-generated-certificate public key encryption scheme in the standard model. Our generic construction uses certificateless signature and certificateless encryption as the building block. In addition, we further propose a certificateless signature and a certificateless encryption scheme with concrete implementation that are all provably secure in the standard model, which are the first in the literature regardless of the generic constructions by Yum and Lee which may contain security weaknesses as pointed out by others. We believe these concrete implementations are of independent interest.

KW - Certificateless encryption

KW - Certificateless signature

UR - http://www.scopus.com/inward/record.url?scp=84876341103&partnerID=8YFLogxK

U2 - 10.1145/1229285.1266994

DO - 10.1145/1229285.1266994

M3 - Conference Paper

SN - 9781595935748

SP - 273

EP - 283

BT - Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security

PB - Association for Computing Machinery (ACM)

CY - New York NY USA

ER -

Liu JK, Au MH, Susilo W. Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model. In Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security. New York NY USA: Association for Computing Machinery (ACM). 2007. p. 273-283 https://doi.org/10.1145/1229285.1266994