Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
PKC
2010
Springer
2010
Springer
Confidential Signatures and Deterministic Signcryption
Encrypt-and-sign, where one encrypts and signs a message in parallel, is usually not recommended for confidential message transmission. The reason is that the signature typically leaks information about the message. This motivates our investigation of confidential signature schemes, which hide all information about (high-entropy) input messages. In this work we provide a formal treatment of confidentiality for such schemes and a comprehensive discussion of the relationship of different notions we propose. We give constructions meeting our notions, both in the random oracle model and the standard model. As part of this we show that full domain hash signatures achieve a weaker level of confidentiality than Fiat-Shamir signatures. We then revisit the connection of confidential signatures to signcryption schemes. We give formal security models for deterministic signcryption schemes for high-entropy and low-entropy messages, and prove encrypt-and-sign to be secure for confidential signature...
Real-time TrafficConfidential Message Transmission | Confidential Signature Schemes | Cryptology | PKC 2010 | Signcryption Scheme |
Related Content
| Added | 14 Oct 2010 |
| Updated | 14 Oct 2010 |
| Type | Conference |
| Year | 2010 |
| Where | PKC |
| Authors | Alexander W. Dent, Marc Fischlin, Mark Manulis, Martijn Stam, Dominique Schröder |
Comments (0)
Researcher Info
|
