Compact CCA-Secure Encryption for Messages of Arbitrary Length
In this paper, the authors propose a chosen-ciphertext secure variant of the ElGamal public-key encryption scheme which generates very compact ciphertexts for messages of arbitrary length. The ciphertext overhead (i.e., the difference between ciphertext and plaintext) is one group element only. Such a property is particularly useful when encrypting short messages such as a PIN or a credit card number in bandwidth-critical environments. On top of the compact overhead, the computational cost for encryption and decryption are almost the same as plain ElGamal encryption.
Provided by: International Association for Cryptologic Research Topic: Security Date Added: Dec 2008 Format: PDF