OAEP is Secure Under Key-Dependent Messages

Key-Dependent Message (KDM) security was introduced by the researchers to address the case where key cycles occur among encryptions, e.g., a key is encrypted with itself. The authors extend this definition to include the cases of adaptive corruptions and arbitrary active attacks, called adKDM security incorporating several novel design choices and substantially differing from prior definitions for public-key security. They also show that the OAEP encryption scheme (using a partial-domain one-way function) satisfies the strong notion of adKDM security in the random oracle model.

Provided by: Saarixx Labs Topic: Security Date Added: Sep 2008 Format: PDF

Find By Topic