Paillier’s Cryptosystem Modulo p2q and Its Applications to Trapdoor Commitment Schemes

  • Katja Schmidt-Samoa
  • Tsuyoshi Takagi
Conference paper

DOI: 10.1007/11554868_21

Part of the Lecture Notes in Computer Science book series (LNCS, volume 3715)
Cite this paper as:
Schmidt-Samoa K., Takagi T. (2005) Paillier’s Cryptosystem Modulo p2q and Its Applications to Trapdoor Commitment Schemes. In: Dawson E., Vaudenay S. (eds) Progress in Cryptology – Mycrypt 2005. Mycrypt 2005. Lecture Notes in Computer Science, vol 3715. Springer, Berlin, Heidelberg

Abstract

In 1998/99, T. Okamoto and S. Uchiyama on the one hand and P. Paillier on the other hand introduced homomorphic encryption schemes semantically secure against passive adversaries (IND-CPA). Both schemes follow in the footsteps of Goldwasser-Micali, Benaloh-Fischer and Naccache-Stern cryptosystems, and yield their improvements above the latter by changing the group structure. Paillier’s scheme works in the group \({\mathbb Z}^{\times}_{n^{2}}\) where n is an RSA modulus, whilst Okamoto-Uchiyama is located in the group \({\mathbb Z}^{\times}_{n}\) for n of p2q type. The new schemes attracted much attention because of their rich mathematical structure. It is notable that Okamoto-Uchiyama is one-way under the p2q factoring assumption, whilst there is no reduction known from the one-wayness of Paillier’s scheme to a standard computational assumption.

In this paper we point out that the combination of both techniques yields a new scheme that inherits all the nice properties of Paillier’s scheme and that is one-way under the p2q factoring assumption. The one-wayness is based on a new trapdoor one-way function which might be of independent interest. In addition, we show how to construct trapdoor commitment schemes with practical applications based on our new scheme and on the trapdoor function. Among other things, we propose a trapdoor commitment scheme that perfectly meets the requirements to construct Shamir-Tauman on-line/off-line signatures.

Keywords

homomorphic encryption trapdoor commitments trapdoor hash families on-line/off-line signatures chameleon signatures 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Katja Schmidt-Samoa
    • 1
  • Tsuyoshi Takagi
    • 2
  1. 1.Fachbereich InformatikTechnische Universität DarmstadtDarmstadtGermany
  2. 2.Hakodate, School of Systems Information ScienceFuture UniversityHokkaidoJapan

Personalised recommendations