This paper proposes a chosen-ciphertext secure variant of the ElGamal public-key encryption scheme which generates very compact ciphertexts for messages of arbitrary length. The ciphertext overhead (i.e., the difference between ciphertext and plaintext) is one group element only. Such a property is particularly useful when encrypting short messages such as a PIN or a credit card number in bandwidth-critical environments. On top of the compact overhead, the computational cost for encryption and decryption are almost the same as plain ElGamal encryption. The security is proven based on the strong Diffie-Hellman assumption in the random oracle model.© International Association for Cryptologic Research 2009.
CITATION STYLE
Abe, M., Kiltz, E., & Okamoto, T. (2009). Compact CCA-secure encryption for messages of arbitrary length. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5443, pp. 377–392). Springer Verlag. https://doi.org/10.1007/978-3-642-00468-1_21
Mendeley helps you to discover research relevant for your work.