CryptoDB
Certificate-Based Encryption and the Certificate Revocation Problem
Authors: | |
---|---|
Download: | |
Abstract: | We introduce the notion of certificate-based encryption. In this model, a certificate -- or, more generally, a signature -- acts not only as a certificate but also as a decryption key. To decrypt a message, a keyholder needs both its secret key and an up-to-date certificate from its CA (or a signature from an authorizer). Certificate-based encryption combines the best aspects of identity-based encryption (implicit certification) and public key encryption (no escrow). We demonstrate how certificate-based encryption can be used to construct an efficient PKI requiring less infrastructure than previous proposals, including Micali's Novomodo, Naor-Nissim and Aiello-Lodha-Ostrovsky. |
BibTeX
@misc{eprint-2003-11897, title={Certificate-Based Encryption and the Certificate Revocation Problem}, booktitle={IACR Eprint archive}, keywords={public-key cryptography /}, url={http://eprint.iacr.org/2003/183}, note={Eurocrypt 2003 cgentry@docomolabs-usa.com 12297 received 2 Sep 2003}, author={Craig Gentry}, year=2003 }