Lattice-based Authenticated Key Exchange with Tight Security

Pan, Jiaxin and Wagner, Benedikt and Zeng, Runzhi
(2023) Lattice-based Authenticated Key Exchange with Tight Security.
In: CRYPTO 2023.
Conference: CRYPTO Advances in Cryptology

[img] Text
ake.pdf
Download (951kB)

Abstract

We construct the first tightly secure authenticated key exchange (AKE) protocol from lattices. Known tight constructions are all based on Diffie-Hellman-like assumptions. Thus, our protocol is the first construction with tight security from a post-quantum assumption. Our AKE protocol is constructed tightly from a new security notion for key encapsulation mechanisms (KEMs), called one-way security against checkable chosen-ciphertext attacks (OW- ChCCA). We show how an OW-ChCCA secure KEM can be tightly constructed based on the Learning With Errors assumption, leading to the desired AKE protocol. To show the usefulness of OW-ChCCA security beyond AKE, we use it to construct the first tightly bilateral selective-opening (BiSO) secure PKE. BiSO security is a stronger selective-opening notion proposed by Lai et al. (ASIACRYPT 2021).

Item Type: Conference or Workshop Item (A Paper) (Paper)
Divisions: Julian Loss (JL)
Conference: CRYPTO Advances in Cryptology
Depositing User: Benedikt Wagner
Date Deposited: 04 Aug 2023 12:04
Last Modified: 04 Aug 2023 12:04
Primary Research Area: NRA1: Trustworthy Information Processing
URI: https://publications.cispa.saarland/id/eprint/4003

Actions

Actions (login required)

View Item View Item
CISPA is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.