Standard security does not imply security against selective-opening

Mihir Bellare; Rafael Dowsley; Brent Waters; Scott Yilek

doi:10.1007/978-3-642-29011-4_38

Standard security does not imply security against selective-opening

Mihir Bellare, Rafael Dowsley, Brent Waters, Scott Yilek

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

40 Citations (Scopus)

Abstract

We show that no commitment scheme that is hiding and binding according to the standard definition is semantically-secure under selective opening attack (SOA), resolving a long-standing and fundamental open question about the power of SOAs. We also obtain the first examples of IND-CPA encryption schemes that are not secure under SOA, both for sender corruptions where encryption coins are revealed and receiver corruptions where decryption keys are revealed. These results assume only the existence of collision-resistant hash functions.

Original language	English
Title of host publication	Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings
Editors	David Pointcheval, Thomas Johansson
Place of Publication	Cambridge UK
Publisher	Springer
Pages	645-662
Number of pages	18
Volume	7237
ISBN (Print)	9783642290107
DOIs	https://doi.org/10.1007/978-3-642-29011-4_38
Publication status	Published - 2012
Externally published	Yes
Event	31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2012 - Cambridge, United Kingdom Duration: 15 Apr 2012 → 19 Apr 2012

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	7237 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2012
Country	United Kingdom
City	Cambridge
Period	15/04/12 → 19/04/12

Access to Document

10.1007/978-3-642-29011-4_38

Link to publication in Scopus

Cite this

Bellare, M., Dowsley, R., Waters, B., & Yilek, S. (2012). Standard security does not imply security against selective-opening. In D. Pointcheval, & T. Johansson (Eds.), Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings (Vol. 7237, pp. 645-662). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7237 LNCS). Springer. https://doi.org/10.1007/978-3-642-29011-4_38

Bellare, Mihir ; Dowsley, Rafael ; Waters, Brent ; Yilek, Scott. / Standard security does not imply security against selective-opening. Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings. editor / David Pointcheval ; Thomas Johansson. Vol. 7237 Cambridge UK : Springer, 2012. pp. 645-662 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{789e07b197a84d02aaf99eaebbb6398d,

title = "Standard security does not imply security against selective-opening",

abstract = "We show that no commitment scheme that is hiding and binding according to the standard definition is semantically-secure under selective opening attack (SOA), resolving a long-standing and fundamental open question about the power of SOAs. We also obtain the first examples of IND-CPA encryption schemes that are not secure under SOA, both for sender corruptions where encryption coins are revealed and receiver corruptions where decryption keys are revealed. These results assume only the existence of collision-resistant hash functions.",

author = "Mihir Bellare and Rafael Dowsley and Brent Waters and Scott Yilek",

year = "2012",

doi = "10.1007/978-3-642-29011-4_38",

language = "English",

isbn = "9783642290107",

volume = "7237",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "645--662",

editor = "David Pointcheval and Thomas Johansson",

booktitle = "Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings",

note = "31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2012 ; Conference date: 15-04-2012 Through 19-04-2012",

}

Bellare, M, Dowsley, R, Waters, B & Yilek, S 2012, Standard security does not imply security against selective-opening. in D Pointcheval & T Johansson (eds), Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings. vol. 7237, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7237 LNCS, Springer, Cambridge UK, pp. 645-662, 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2012, Cambridge, United Kingdom, 15/04/12. https://doi.org/10.1007/978-3-642-29011-4_38

Standard security does not imply security against selective-opening. / Bellare, Mihir; Dowsley, Rafael; Waters, Brent; Yilek, Scott.

Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings. ed. / David Pointcheval; Thomas Johansson. Vol. 7237 Cambridge UK : Springer, 2012. p. 645-662 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7237 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

TY - GEN

T1 - Standard security does not imply security against selective-opening

AU - Bellare, Mihir

AU - Dowsley, Rafael

AU - Waters, Brent

AU - Yilek, Scott

PY - 2012

Y1 - 2012

N2 - We show that no commitment scheme that is hiding and binding according to the standard definition is semantically-secure under selective opening attack (SOA), resolving a long-standing and fundamental open question about the power of SOAs. We also obtain the first examples of IND-CPA encryption schemes that are not secure under SOA, both for sender corruptions where encryption coins are revealed and receiver corruptions where decryption keys are revealed. These results assume only the existence of collision-resistant hash functions.

AB - We show that no commitment scheme that is hiding and binding according to the standard definition is semantically-secure under selective opening attack (SOA), resolving a long-standing and fundamental open question about the power of SOAs. We also obtain the first examples of IND-CPA encryption schemes that are not secure under SOA, both for sender corruptions where encryption coins are revealed and receiver corruptions where decryption keys are revealed. These results assume only the existence of collision-resistant hash functions.

UR - http://www.scopus.com/inward/record.url?scp=84859985296&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-29011-4_38

DO - 10.1007/978-3-642-29011-4_38

M3 - Conference Paper

SN - 9783642290107

VL - 7237

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 645

EP - 662

BT - Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings

A2 - Pointcheval, David

A2 - Johansson, Thomas

PB - Springer

CY - Cambridge UK

T2 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2012

Y2 - 15 April 2012 through 19 April 2012

ER -

Bellare M, Dowsley R, Waters B, Yilek S. Standard security does not imply security against selective-opening. In Pointcheval D, Johansson T, editors, Advances in Cryptology, EUROCRYPT 2012 - 31st Annual International Conference on the Theory and Applications of Cryptographic Techniques, Proceedings. Vol. 7237. Cambridge UK: Springer. 2012. p. 645-662. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-29011-4_38