OAEP is Secure Under Key-Dependent Messages

Provided by: Saarixx Labs
Topic: Security
Format: PDF
Key-Dependent Message (KDM) security was introduced by the researchers to address the case where key cycles occur among encryptions, e.g., a key is encrypted with itself. The authors extend this definition to include the cases of adaptive corruptions and arbitrary active attacks, called adKDM security incorporating several novel design choices and substantially differing from prior definitions for public-key security. They also show that the OAEP encryption scheme (using a partial-domain one-way function) satisfies the strong notion of adKDM security in the random oracle model.

Find By Topic