Kerckhoffs' assumption states that an attacker must be assumed to have full knowledge of all the details of a cryptosystem except information about encryption/decryption keys upon which security of the cryptosystem rests entirely. In this paper we generalize the assumption to allow an attacker to have access to intermediate results during the computational process of cryptographic operations. We show that the generalized assumption models quite well such real world attacks as the "memory reconstruction attack" and the "memory core-dump attackwhich may be mounted by computer forensic software or computer viruses. We further analyze a number of public key encryption schemes under the generalized Kerckhoffs' assumption, and demonstrate that some of the schemes, although provably secure under some computational assumptions, may be broken if an attacker has access to intermediate results during a decryption operation. © Springer-Verlag Berlin Heidelberg 2003.
CITATION STYLE
Kim, S., Mambo, M., & Zheng, Y. (2003). Rethinking chosen-ciphertext security under Kerckhoffs’ assumption. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2612, 227–243. https://doi.org/10.1007/3-540-36563-x_16
Mendeley helps you to discover research relevant for your work.