Skip to main content
placeholder image

Towards Enhanced Security for Certificateless Public-Key Authenticated Encryption with Keyword Search

Journal Article


Abstract


  • Certificateless Public-key Authenticated Encryption with Keyword Search (CLPAEKS) is derived from the Public-key Authenticated Encryption with Keyword Search (PAEKS) and simultaneously combines the features of the Public Key Cryptography (CLPKC). In a CLPAEKS scheme, the ciphertext is designed to meet the need for both confidentiality and authentication, i.e., on one hand, the ciphertext is the encryption of the keyword; on the other hand, adversaries are incapable of generating a valid ciphertext without the owner’s private key. He et al. formalized security models for CLPAEKS and proposed a CLPAEKS scheme. However, we find their models are incomplete to capture the security requirements for CLPAEKS and re-formalize the security requirements for CLPAEKS in terms of trapdoor privacy and ciphertext indistinguishability. Besides, we point out that their scheme is vulnerable to the Keyword Guessing Attack (KGA) by a malicious receiver, which is not considered in their security model. Then we modify He et al.’s scheme and prove that the new scheme meets the new security requirements.

Publication Date


  • 2019

Citation


  • Liu, X., Li, H., Yang, G., Susilo, W., Tonien, J. & Huang, Q. (2019). Towards Enhanced Security for Certificateless Public-Key Authenticated Encryption with Keyword Search. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 11821 LNCS 113-129.

Scopus Eid


  • 2-s2.0-85075737177

Number Of Pages


  • 16

Start Page


  • 113

End Page


  • 129

Volume


  • 11821 LNCS

Place Of Publication


  • Germany

Abstract


  • Certificateless Public-key Authenticated Encryption with Keyword Search (CLPAEKS) is derived from the Public-key Authenticated Encryption with Keyword Search (PAEKS) and simultaneously combines the features of the Public Key Cryptography (CLPKC). In a CLPAEKS scheme, the ciphertext is designed to meet the need for both confidentiality and authentication, i.e., on one hand, the ciphertext is the encryption of the keyword; on the other hand, adversaries are incapable of generating a valid ciphertext without the owner’s private key. He et al. formalized security models for CLPAEKS and proposed a CLPAEKS scheme. However, we find their models are incomplete to capture the security requirements for CLPAEKS and re-formalize the security requirements for CLPAEKS in terms of trapdoor privacy and ciphertext indistinguishability. Besides, we point out that their scheme is vulnerable to the Keyword Guessing Attack (KGA) by a malicious receiver, which is not considered in their security model. Then we modify He et al.’s scheme and prove that the new scheme meets the new security requirements.

Publication Date


  • 2019

Citation


  • Liu, X., Li, H., Yang, G., Susilo, W., Tonien, J. & Huang, Q. (2019). Towards Enhanced Security for Certificateless Public-Key Authenticated Encryption with Keyword Search. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 11821 LNCS 113-129.

Scopus Eid


  • 2-s2.0-85075737177

Number Of Pages


  • 16

Start Page


  • 113

End Page


  • 129

Volume


  • 11821 LNCS

Place Of Publication


  • Germany