Presentation is loading. Please wait.

Presentation is loading. Please wait.

Updates on Signcryption Yuliang Zheng UNC Charlotte IEEE P1363 Meeting, UCSB 8/22/2002.

Published byTaylor Graves Modified over 10 years ago

Similar presentations

Presentation on theme: "Updates on Signcryption Yuliang Zheng UNC Charlotte IEEE P1363 Meeting, UCSB 8/22/2002."— Presentation transcript:

1 Updates on Signcryption Yuliang Zheng UNC Charlotte www.sis.uncc.edu/~yzheng yzheng@uncc.edu IEEE P1363 Meeting, UCSB 8/22/2002

2 Signcryption Provides the functions of –digital signature unforgeability & non-repudiation –public key encryption confidentiality Has a significantly smaller comp. & comm. cost Cost (signcryption)<<Cost (signature) + Cost (encryption)

3 Signcryption -- public & secret parameters Public to all –p : a large prime –q : a large prime factor of p-1 –g : 0<g<p & with order q mod p –G: 1-way hash –H: 1-way hash –(E,D) : private-key encryption & decryption algorithms

4 Signcryption -- 1st example m(c,r,s)m

5 Signcryption – 2nd example m(c,r,s)m

6 Signcryption – 3rd example m(c,r,s)m

7 Major instantiations of signcryption based on DL on an Elliptic Curve –Zheng, CRYPTO97 –Zheng & Imai IPL 1998 based on other sub-groups (e.g. XTR) –Lenstra & Verheul, CRYPTO2000 –Gong & Harn, IEEE-IT 2000 –Zheng, CRYPTO97 based on DL on finite field –Zheng, CRYPTO97 based on factoring / residuosity –Steinfeld & Zheng, ISW2000 –Zheng, PKC2001 More efficient

8 Signcryption v.s. Signature-then- Encryption (a) Signcryption based on DL m sig EXP=1+1.17 (c) Signature-then-Encryption based on DL m sig gxgx EXP=3+2.17 (b) Signature-then-Encryption based on RSA m sig EXP=2+2

9 DL Signcryption v.s. sign-then-encrypt |p|=|n| # of multiplications

10 DL Signcryption v.s. sign-then-encrypt comm. overhead (# of bits) |p|=|n|

11 Security Proofs Analysis given in the Crypto97 paper was informal In 2001, –Rigorous proofs (reductions) established –Results presented at PKC02 in Paris, Feb. 2002 –Proof techniques applicable to signcryption schemes based on DL and EC

12 Standard assumptions Proofs for the confidentiality and unforgeability of signcryption – Confidentiality --- Providing a reduction from breaking the security of signcryption with respect to adaptive chosen ciphertext attacks in the flexible public key model to breaking the GAP Diffie-Hellman assumption, in the random oracle model –Unforgeability --- Providing a reduction from breaking the unforgeability of signcryption against adaptive chosen message attacks to the Discrete Logarithm problem, in the random oracle model

13 Updated documents Full version of the proof paper and updated descriptions of concrete signcryption schemes will be submitted to the IEEE P1363 website

14 Other developments Security proofs for combined signature and encryption including signcryption Parallel signcryption ID-based signcryption Threshold signcryption

15 Suggestions IEEE P1363 consider to standardize signcryption and other hybrid/combined schemes IEEE P1363-3 ?

Download ppt "Updates on Signcryption Yuliang Zheng UNC Charlotte IEEE P1363 Meeting, UCSB 8/22/2002."

Similar presentations

April 19-22, 2005SecureIT-2005 How to Start a PKI A Practical Guide Dr. Javier Torner Information Security Officer Professor of Physics.

April 19-22, 2005SecureIT-2005 How to Start a PKI A Practical Guide Dr. Javier Torner Information Security Officer Professor of Physics.
Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.

PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
PAR for P1363.3 Title: Standard for Pairing based Cryptographic Techniques June 4, 2005 PAR for IEEE P1363.3.

PAR for P Title: Standard for Pairing based Cryptographic Techniques June 4, 2005 PAR for IEEE P
Public Key Cryptosystem

Public Key Cryptosystem
UNC Charlotte Purchasing Card Program Annette Heller.

UNC Charlotte Purchasing Card Program Annette Heller.
Rennes, 24/10/2014 Cristina Onete CIDRE/ INRIA Privacy in signatures. Hiding in rings, hiding in groups.

Rennes, 24/10/2014 Cristina Onete CIDRE/ INRIA Privacy in signatures. Hiding in rings, hiding in groups.
MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.

MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.
BY JYH-HAW YEH COMPUTER SCIENCE DEPT. BOISE STATE UNIVERSITY Proxy Credential Forgery Attack to Two Proxy Signcryption Schemes.

BY JYH-HAW YEH COMPUTER SCIENCE DEPT. BOISE STATE UNIVERSITY Proxy Credential Forgery Attack to Two Proxy Signcryption Schemes.
XML Encryption Prabath Siriwardena Director, Security Architecture.

XML Encryption Prabath Siriwardena Director, Security Architecture.
Name:_______________ 10.28.13 UNIT 2 TEST (Review / Reteach) DIRECTIONS: Simplify each term. Circle final answers. 8 5+9 8 14 5x 3+7 5x 10 4 3x5 4 15 3.

Name:_______________ UNIT 2 TEST (Review / Reteach) DIRECTIONS: Simplify each term. Circle final answers x 3+7 5x x
Hybrid Signcryption with Insider Security Alexander W. Dent.

Hybrid Signcryption with Insider Security Alexander W. Dent.
Software based Acceleration Methods for XML Signature (Or: is there such a method) Youjin Song DongGuk University, Korea Yuliang Zheng University of North.

Software based Acceleration Methods for XML Signature (Or: is there such a method) Youjin Song DongGuk University, Korea Yuliang Zheng University of North.
Secure Group Communications Using Key Graphs Chung Kei Wong, Member, IEEE, Mohamed Gouda Simon S. Lam, Fellow, IEEE Evgenia Gorelik Yuksel Ucar.

Secure Group Communications Using Key Graphs Chung Kei Wong, Member, IEEE, Mohamed Gouda Simon S. Lam, Fellow, IEEE Evgenia Gorelik Yuksel Ucar.
Introduction to Signcryption November 22, 2004. 22/11/2004 Signcryption Public Key (PK) Cryptography Discovering Public Key (PK) cryptography has made.

Introduction to Signcryption November 22, /11/2004 Signcryption Public Key (PK) Cryptography Discovering Public Key (PK) cryptography has made.
Hybrid Signcryption with Outsider Security

Hybrid Signcryption with Outsider Security
The Idea of Public Key Cryptography Cunsheng Ding HKUST, Hong Kong.

The Idea of Public Key Cryptography Cunsheng Ding HKUST, Hong Kong.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Building Better Signcryption Schemes with Tag-KEMs Tor E. Bjørstad and Alexander W. Dent University of Bergen, Norway Royal Holloway, University of London,

Building Better Signcryption Schemes with Tag-KEMs Tor E. Bjørstad and Alexander W. Dent University of Bergen, Norway Royal Holloway, University of London,

Similar presentations

Ads by Google