Analysis on CFL Provable Security

Abstract

Abstract: Proven security theory of public key cryptography algorithm clears the defination of the security of cryptography; Establish a basic definition, general cryptography research method based on the reduction to prove; Through strict proof，it combines the safety of the system and the known computational problem or cryptography. Proven security theory research pushs forward the standardization of the password system, a lot of standardization organization puts cryptosystem security certification as one of the password systems essential security properties, it requires new submission criteria of cryptography algorithm to be able to pass the security certificate, currently USES cryptography standards comply with this safety standards. It is proved that CFL is Provable Security with its private key being unrecoverable, and with EUFCMA under some conditions.

Key words: provable security, public key encryption, atomic primitives, random oracle model, CFL (Chen, Fan, and Lü)

摘要： 摘要公钥密码算法的可证明安全性理论，明确了密码体制的安全定义；建立起一种基本定义、基于归约证明的通用密码学研究方法；通过严格的证明把体制的安全性与已知的计算性难题或密码学关联起来.可证明安全性理论的研究推进了密码体制的标准化进程，很多标准化组织将密码体制的安全证明作为密码体制必备的安全属性，要求新提交的密码学标准中的算法能通过安全性证明，目前采用的密码学标准都遵从这种安全规范.在此基础上，证明了CFL是密钥不可恢复可证明安全的，同时证明了当CFL基于SM2，Hash函数满足随机语言机时，其为EUFCMA安全的.

关键词: 可证明安全性, 公钥加密, 极微本原, 随机预言机, CFL (Chen, Fan, and Lü)

秦红兵. CFL可证明安全性分析 [J]. 信息安全研究, 2016, 2(7): 589-599.

References

［1］Goldwasser S, Micali S. Probabilistic encryption［J］. Journal and System Sciences, 1984, 28(2): 270299［2］冯登国. 可证明安全性理论与方法研究［J］. 软件学报, 2005, 16(10): 17431756［3］杨波. 密码学中的可证明安全性［OL］. 陕西师范大学计算机学院讲义. (20141111)［20160421］. http:wenku.baidu.comview654c4b5b58fb770bf78a5587.html?from=search&isbtn=1［4］陈华平, 范修斌, 吕述望. CFL: 中国［P］. 20160217［5］张华, 温巧燕, 金正平. 可证明安全算法与协议［M］. 北京: 科学出版社, 2012［6］Naor M, Yung M. Public key cryptosystems provably secure against chosen ciphertext attack［C］ Proc of the 22nd Symp on Theory of Computing (STOC). New York: ACM, 1990: 427437［7］Diffie W, Hellman M E. New directions in cryptography［J］. IEEE Trans on Information Theory, 1976, 22(6): 644654［8］Dolev D, Dwork C, Naor M. Nonmalleable cryptography［J］. SIAM Journal of Computing, 2000, 30(2): 391437 ［9］任伟. 可证明安全公钥密码学探究［J］. 信息网络安全, 2011 (11): 14［10］Bellare M, Rogaway P. Random oracles are practical: A paradigm for designing efficient protocols［C］ Proc of the 1st ACM Conf on Computer and Communication Security. New York: ACM, 1993: 6273［11］Fiat A, Shamir A. How to prove yourself: Practical solutions to identification and signature problems［G］ LNCS 263: Proc of Advances in CryptologyCrypto86. Berlin: Springer, 1986: 186194［12］Rackoff C, Simon D. Noninteractive zeroknowledge proof of knowledge and chosen ciphertext attack［G］ LNCS 576: Proc of Advances in CryptologyCRYPTO 1991. Berlin: Springer, 1991: 433444［13］Cramer R, Shoup V. A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack［G］ LNCS 1462: Proc of Advances in CryptologyCrypto98. Berlin: Spring, 1998: 1325［14］Shamir A. Identitybased cryptosystems and signature schemes［G］ LNSC 196. Berlin: Springer, 1984: 4753［15］Canetti R, Goldreich O, Halevi S. The random oracle methodology revisited［C］ Proc of the 30th Annual Symp on the Theory of Computing (STOC98). New York: ACM,1998: 209218［16］Bellare M, Rogaway P. The exact security of digital signatures—How to sign with RSA and Rabin［G］ LNCS 1070: Proc of Advances in CryptologyEurocrypt96. Berlin: Srpinger, 1996: 399416［17］Hu B, Wang D, Zhang Z, et al. Certificateless signature: A new security model and animproved generic construction［J］. Design Codes and Cryptography, 2007, 42(2): 109126［18］Schnorr C. Security of blind discrete log signatures against interactive attacks［G］ LNCS 2229: Proc of ICICS2001. Berlin: Springer, 2001: 112［19］Fujisaki E, Okamato T. Secure integration of asymmetric and symmetric encryption scheme［G］ LNCS 1666: Proc of Advances in CryptologyCrypto99. Berlin: Springer, 1999: 537544

[1]	. An Efficient Certicateless Hybrid Signcryption Scheme for Electronic Authentication [J]. Journal of Information Security Research, 2019, 5(10): 879-886.
[2]	. On the Development of the Practical Security of Public Key Cryptosystems [J]. Journal of Information Security Research, 2019, 5(1): 29-38.