International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Compact Selective Opening Security From LWE

Authors:
Dennis Hofheinz , ETH Zurich
Kristina Hostáková , ETH Zurich
Julia Kastner , ETH Zurich
Karen Klein , ETH Zurich
Akin Ünal , ETH Zurich
Download:
Search ePrint
Search Google
Presentation: Slides
Conference: PKC 2024
Abstract: Selective opening (SO) security is a security notion for public-key encryption schemes that captures security against adaptive corruptions of senders. SO security comes in chosen-plaintext (SO-CPA) and chosen-ciphertext (SO-CCA) variants, neither of which is implied by standard security notions like IND-CPA or IND-CCA security. In this paper, we present the first SO-CCA secure encryption scheme that combines the following two properties: (1) it has a constant ciphertext expansion (i.e., ciphertexts are only larger than plaintexts by a constant factor), and (2) its security can be proven from a standard assumption. Previously, the only known SO-CCA secure encryption scheme achieving (1) was built from an ad-hoc assumption in the RSA regime. Our construction builds upon LWE, and in particular on a new and surprisingly simple construction of compact lossy trapdoor functions (LTFs). Our LTF can be converted into an “all-but-many LTF” (or ABM-LTF), which is known to be sufficient to obtain SO-CCA security. Along the way, we fix a technical problem in that previous ABM-LTF-based construction of SO-CCA security.
BibTeX
@inproceedings{pkc-2024-33728,
  title={Compact Selective Opening Security From LWE},
  publisher={Springer-Verlag},
  author={Dennis Hofheinz and Kristina Hostáková and Julia Kastner and Karen Klein and Akin Ünal},
  year=2024
}