Relaxing Enhanced Chosen-Ciphertext Security

Honglong DAI  Jinying CHANG  Zhenduo HOU  Maozhi XU  

IEICE TRANSACTIONS on Fundamentals of Electronics, Communications and Computer Sciences   Vol.E101-A   No.12   pp.2454-2463
Publication Date: 2018/12/01
Online ISSN: 1745-1337
DOI: 10.1587/transfun.E101.A.2454
Type of Manuscript: PAPER
Category: Information Theory
enhanced chosen ciphertext attack security (ECCA),  relaxing chosen ciphertext attack security (RCCA),  chosen ciphertext attack security (CCA),  public key encryption (PKE),  

Full Text: PDF(1MB)
>>Buy this Article

The enhanced chosen-ciphertext security (ECCA) is motivated by the concept of randomness recovering encryption, which was presented by Dana Dachman-Soled et al. in PKC 2014 [9]. ECCA security is the enhanced version of CCA security. CCA security often appears to be somewhat too strong, so ECCA security is also too strong: there exist encryption schemes that are not ECCA secure but still have some practical application. Canetti et al. proposed a relaxed variant of CCA security called Replayable CCA (RCCA) security in CRYPTO 2003 [3]. In this paper, we propose a relaxed variant of ECCA security called Replayable security (RECCA). RECCA security is the enhanced version of RCCA security. Since RCCA security suffices for the most existing application of CCA security, RECCA security also suffices for them, too. Moreover, RECCA security provides a useful general version of security against active attacks.