RSA-OAEP is secure under the RSA assumption

被引:79
|
作者
Fujisaki, E
Okamoto, T
Pointcheval, D
Stern, J
机构
[1] NTT Labs, Yokosuka, Kanagawa, Japan
[2] ENS, CNRS, Dept Informat, F-75230 Paris 05, France
来源
JOURNAL OF CRYPTOLOGY | 2004年 / 17卷 / 02期
关键词
public-key encryption; provable security; RSA; OAEP;
D O I
10.1007/s00145-002-0204-y
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Recently Victor Shoup noted that there is a gap in the widely believed security result of OAEP against adaptive chosen-ciphertext attacks. Moreover, he showed that, presumably, OAEP cannot be proven Secure from the one-wayness of the underlying trapdoor permutation. This paper establishes another result on the security of OAEP. It proves that OAEP offers semantic security against adaptive chosen-ciphertext attacks, in the random oracle model, under the partial-domain one-wayness of the underlying permutation. Therefore, this uses a formally stronger assumption. Nevertheless, since partial-domain one-wayness of the RSA function is equivalent to its (full-domain) one-wayness, it follows that the security of RSA-OAEP can actually be proven under the sole RSA assumption, although the reduction is not tight.
引用
收藏
页码:81 / 104
页数:24
相关论文
共 50 条
  • [31] An Efficient and Secure RSA Based Certificateless Signature Scheme for Wireless Sensor Networks
    Singh, Jitendra
    Kumar, Vimal
    Kumar, Rakesh
    ADVANCES IN SIGNAL PROCESSING AND INTELLIGENT RECOGNITION SYSTEMS (SIRS-2015), 2016, 425 : 685 - 697
  • [32] A secure server-aided RSA signature computation protocol for smart cards
    Horng, G
    JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, 2000, 16 (06) : 847 - 855
  • [33] Secure and robust digital image watermarking scheme using logistic and RSA encryption
    Liu, Yang
    Tang, Shanyu
    Liu, Ran
    Zhang, Liping
    Ma, Zhao
    EXPERT SYSTEMS WITH APPLICATIONS, 2018, 97 : 95 - 105
  • [34] Secure Delegation to a Single Malicious Server: Exponentiation in RSA-type Groups
    Di Crescenzo, Giovanni
    Khodjaeva, Matluba
    Kahrobaei, Delaram
    Shpilrain, Vladimir
    2019 IEEE CONFERENCE ON COMMUNICATIONS AND NETWORK SECURITY (CNS), 2019,
  • [35] A secure and efficient public auditing scheme using RSA algorithm for cloud storage
    Xu, Zhiyan
    Wu, Libing
    Khan, Muhammad Khurram
    Choo, Kim-Kwang Raymond
    He, Debiao
    JOURNAL OF SUPERCOMPUTING, 2017, 73 (12): : 5285 - 5309
  • [36] RSA and redactable blockchains
    Grigoriev, Dima
    Shpilrain, Vladimir
    INTERNATIONAL JOURNAL OF COMPUTER MATHEMATICS- COMPUTER SYSTEMS THEORY, 2021, 6 (01) : 1 - 6
  • [37] Improved cryptanalysis of RSA
    Dossou-Yovo, Virgile
    Nitaj, Abderrahmane
    Togbe, Alain
    JOURNAL OF DISCRETE MATHEMATICAL SCIENCES & CRYPTOGRAPHY, 2024, 27 (03): : 945 - 961
  • [38] RSA in Spine: A Review
    Humadi, Ali
    Dawood, Sulaf
    Halldin, Klas
    Freeman, Brian
    GLOBAL SPINE JOURNAL, 2017, 7 (08) : 811 - 820
  • [39] Practical case of number factorization Semiprimes under the RSA method
    Amador Donado, Siler
    Marceles Villalba, Katerine
    Lucia Burbano Gonzalez, Clara
    Carolina Burbano Gonzalez, Diana
    PROCEEDINGS OF THE 2016 35TH INTERNATIONAL CONFERENCE OF THE CHILEAN COMPUTER SCIENCE SOCIETY (SCCC), 2016,
  • [40] Secure transit of confidential documents over Internet using high speed RSA algorithm
    Avadhani, PS
    Chalamaiah, N
    Roja, PP
    International Conference on Computing, Communications and Control Technologies, Vol 4, Proceedings, 2004, : 74 - 78
12345