Nonmalleable Cryptography

Top Cited Papers

1 January 2000

journal article
Published by Society for Industrial & Applied Mathematics (SIAM) in SIAM Journal on Computing

Vol. 30 (2), 391-437
https://doi.org/10.1137/s0097539795291562

Abstract

The notion of nonmalleable cryptography, an extension of semantically secure cryptography, is defined. Informally, in the context of encryption the additional requirement is that given the ciphertext it is impossible to generate a different ciphertext so that the respective plaintexts are related. The same concept makes sense in the contexts of string commitment and zero-knowledge proofs of possession of knowledge. Nonmalleable schemes for each of these three problems are presented. The schemes do not assume a trusted center; a user need not know anything about the number or identity of other system users. Our cryptosystem is the first proven to be secure against a strong type of chosen ciphertext attack proposed by Rackoff and Simon, in which the attacker knows the ciphertext she wishes to break and can query the decryption oracle on any ciphertext other than the target.

Keywords

This publication has 18 references indexed in Scilit:

An Efficient Existentially Unforgeable Signature Scheme and Its Applications
Journal of Cryptology, 1998
On the Composition of Zero-Knowledge Proof Systems
SIAM Journal on Computing, 1996
Definitions and properties of zero-knowledge proof systems
Journal of Cryptology, 1994
How to sign given any trapdoor permutation
Journal of the ACM, 1992
Noninteractive Zero-Knowledge
SIAM Journal on Computing, 1991
A logic of authentication
ACM Transactions on Computer Systems, 1990
Zero-knowledge proofs of identity
Journal of Cryptology, 1988
RSA and Rabin Functions: Certain Parts are as Hard as the Whole
SIAM Journal on Computing, 1988
How to construct random functions
Journal of the ACM, 1986
A lower bound for the time to assure interactive consistency
Information Processing Letters, 1982

Cited by 533 articles