Continuous Non-malleable Codes

Faust, Sebastian; Mukherjee, Pratyay; Nielsen, Jesper Buus; Venturi, Daniele

doi:10.1007/978-3-642-54242-8_20

Cited by 95 publications

(119 citation statements)

References 24 publications

Supporting

Mentioning

118

Contrasting

Order By: Relevance

“…To our knowledge, we can use the explicit constructions (of the non-malleable codes) in the work [23,11,44,24,26,1,3]. First we overview different classes of tampering/leakage function allowed for these results: the constructions of [23] work for bit-wise tampering functions, and split-state functions in the random oracle model.…”

Section: Instantiationsmentioning

confidence: 99%

Locally Decodable and Updatable Non-malleable Codes and Their Applications

Dachman-Soled

Liu

Shi

et al. 2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Non-malleable codes, introduced as a relaxation of error-correcting codes by Dziembowski, Pietrzak and Wichs (ICS '10), provide the security guarantee that the message contained in a tampered codeword is either the same as the original message or is set to an unrelated value. Various applications of non-malleable codes have been discovered, and one of the most significant applications among these is the connection with tamper-resilient cryptography. There is a large body of work considering security against various classes of tampering functions, as well as non-malleable codes with enhanced features such as leakage resilience.In this work, we propose combining the concepts of non-malleability, leakage resilience, and locality in a coding scheme. The contribution of this work is three-fold:1. As a conceptual contribution, we define a new notion of locally decodable and updatable non-malleable code that combines the above properties.2. We present two simple and efficient constructions achieving our new notion with different levels of security.3. We present an important application of our new tool -securing RAM computation against memory tampering and leakage attacks. This is analogous to the usage of traditional non-malleable codes to secure implementations in the circuit model against memory tampering and leakage attacks.

show abstract

Section: Instantiationsmentioning

confidence: 99%

Locally Decodable and Updatable Non-malleable Codes and Their Applications

Dachman-Soled

Liu

Shi

et al. 2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…In particular, it does not include functions of the form f (c) := Enc(h(Dec(c))), since Dec(f (Enc(m))) = h(m) is clearly related to m. One of the largest and practically relevant tampering families for which we can construct NMCs is the so-called split-state tampering family where the codeword is split into two parts c 1 c 2 , and the adversary is only allowed to tamper with c 1 , c 2 independently to get f 1 (c 1 ) f 2 (c 2 ). A lot of the aforementioned results [LL12,DKO13,ADL14,CG14b,FMNV14] have studied NMCs against split-state tampering. [ADL14] gave the first (and the only one so far) information-theoretically secure construction in the split-state model from n-bit messages to n 7 log 7 n-bit codewords (i.e., code rate n 6 log 7 n).…”

Section: Introductionmentioning

confidence: 99%

Affine-evasive sets modulo a prime

Aggarwal

2015

Information Processing Letters

View full text Add to dashboard Cite

In this work, we describe a simple and efficient construction of a large subset S of F p , where p is a prime, such that the set A(S) for any non-identity affine map A over F p has small intersection with S .Such sets, called affine-evasive sets, were defined and constructed in [ADL14] as the central step in the construction of non-malleable codes against affine tampering over F p , for a prime p . This was then used to obtain efficient non-malleable codes against split-state tampering.Our result resolves one of the two main open questions in [ADL14]. It improves the rate of non-malleable codes against affine tampering over F p from log log p to a constant, and consequently the rate for non-malleable codes against split-state tampering for n -bit messages is improved from n 6 log 7 n to n 6 .

show abstract

“…Unfortunately, we show that no standard non-malleable code (as originally defined by Dziembowski et al [17] and Faust et al [18]) can achieve this notion (see Section B). Fortunately, we observe that the NMC concept can be extended to allow the decoder to make use of (an initially generated) secret state, which simply becomes part of the secret key in the combined scheme.…”

Section: Introductionmentioning

confidence: 78%

Non-Malleable Encryption: Simpler, Shorter, Stronger

Coretti

Dodis

Tackmann

et al. 2015

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

In a seminal paper, Dolev et al. [15] introduced the notion of non-malleable encryption (NM-CPA). This notion is very intriguing since it suffices for many applications of chosen-ciphertext secure encryption (IND-CCA), and, yet, can be generically built from semantically secure (IND-CPA) encryption, as was shown in the seminal works by Pass et al. [29] and by Choi et al. [9], the latter of which provided a black-box construction. In this paper we investigate three questions related to NM-CPA security:1. Can the rate of the construction by Choi et al. of NM-CPA from IND-CPA be improved? 2. Is it possible to achieve multi-bit NM-CPA security more efficiently from a single-bit NM-CPA scheme than from IND-CPA? 3. Is there a notion stronger than NM-CPA that has natural applications and can be achieved from IND-CPA security?We answer all three questions in the positive. First, we improve the rate in the construction of Choi et al. by a factor O(λ), where λ is the security parameter. Still, encrypting a message of size O(λ) would require ciphertext and keys of size O(λ 2 ) times that of the IND-CPA scheme, even in our improved scheme. Therefore, we show a more efficient domain extension technique for building a λ-bit NM-CPA scheme from a single-bit NM-CPA scheme with keys and ciphertext of size O(λ) times that of the NM-CPA one-bit scheme. To achieve our goal, we define and construct a novel type of continuous non-malleable code (NMC), called secret-state NMC, as we show that standard continuous NMCs are not enough for the natural "encode-then-encrypt-bit-by-bit" approach to work.Finally, we introduce a new security notion for public-key encryption (PKE) that we dub nonmalleability under (chosen-ciphertext) self-destruct attacks (NM-SDA). After showing that NM-SDA is a strict strengthening of NM-CPA and allows for more applications, we nevertheless show that both of our results-(faster) construction from IND-CPA and domain extension from one-bit scheme-also hold for our stronger NM-SDA security. In particular, the notions of IND-CPA, NM-CPA, and NM-SDA security are all equivalent, lying (plausibly, strictly?) below IND-CCA security.

show abstract

Continuous Non-malleable Codes

Cited by 95 publications

References 24 publications

Locally Decodable and Updatable Non-malleable Codes and Their Applications

Locally Decodable and Updatable Non-malleable Codes and Their Applications

Affine-evasive sets modulo a prime

Non-Malleable Encryption: Simpler, Shorter, Stronger

Contact Info

Product

Resources

About