Explicit Randomness is not Necessary when Modeling Probabilistic Encryption

Véronique Cortier 1 Heinrich Hördegen 1 Bogdan Warinschi 1
1 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : Although good encryption functions are probabilistic, most symbolic models do not capture this aspect explicitly. A typical solution, recently used to prove the soundness of such models with respect to computational ones, is to explicitly represent the dependency of ciphertexts on random coins as labels. In order to make these label-based models useful, it seems natural to try to extend the underlying decision procedures and the implementation of existing tools. In this paper we put forth a more practical alternative based on the following soundness theorem. We prove that for a large class of security properties (that includes rather standard formulations for secrecy and authenticity properties), security of protocols in the simpler model implies security in the label-based model. Combined with the soundness result of (\textbf{?}) our theorem enables the translation of security results in unlabeled symbolic models to computational security.
Document type :
Reports
Complete list of metadatas

Cited literature [2 references]  Display  Hide  Download

https://hal.inria.fr/inria-00078825
Contributor : Rapport de Recherche Inria <>
Submitted on : Thursday, June 8, 2006 - 3:23:26 PM
Last modification on : Friday, July 6, 2018 - 3:06:10 PM
Long-term archiving on : Monday, September 20, 2010 - 3:39:31 PM

Identifiers

Citation

Véronique Cortier, Heinrich Hördegen, Bogdan Warinschi. Explicit Randomness is not Necessary when Modeling Probabilistic Encryption. [Research Report] RR-5928, INRIA. 2006, pp.12. ⟨inria-00078825v2⟩

Share

Metrics

Record views

384

Files downloads

121