On CCA-Secure Somewhat Homomorphic Encryption

  • Jake Loftus
  • Alexander May
  • Nigel P. Smart
  • Frederik Vercauteren
Conference paper

DOI: 10.1007/978-3-642-28496-0_4

Part of the Lecture Notes in Computer Science book series (LNCS, volume 7118)
Cite this paper as:
Loftus J., May A., Smart N.P., Vercauteren F. (2012) On CCA-Secure Somewhat Homomorphic Encryption. In: Miri A., Vaudenay S. (eds) Selected Areas in Cryptography. SAC 2011. Lecture Notes in Computer Science, vol 7118. Springer, Berlin, Heidelberg

Abstract

It is well known that any encryption scheme which supports any form of homomorphic operation cannot be secure against adaptive chosen ciphertext attacks. The question then arises as to what is the most stringent security definition which is achievable by homomorphic encryption schemes. Prior work has shown that various schemes which support a single homomorphic encryption scheme can be shown to be IND-CCA1, i.e. secure against lunchtime attacks. In this paper we extend this analysis to the recent fully homomorphic encryption scheme proposed by Gentry, as refined by Gentry, Halevi, Smart and Vercauteren. We show that the basic Gentry scheme is not IND-CCA1; indeed a trivial lunchtime attack allows one to recover the secret key. We then show that a minor modification to the variant of the somewhat homomorphic encryption scheme of Smart and Vercauteren will allow one to achieve IND-CCA1, indeed PA-1, in the standard model assuming a lattice based knowledge assumption. We also examine the security of the scheme against another security notion, namely security in the presence of ciphertext validity checking oracles; and show why CCA-like notions are important in applications in which multiple parties submit encrypted data to the “cloud” for secure processing.

Download to read the full conference paper text

Copyright information

© Springer-Verlag Berlin Heidelberg 2012

Authors and Affiliations

  • Jake Loftus
    • 1
  • Alexander May
    • 2
  • Nigel P. Smart
    • 1
  • Frederik Vercauteren
    • 3
  1. 1.Dept. Computer ScienceUniversity of BristolBristolUnited Kingdom
  2. 2.Horst Görtz Institute for IT-Security, Faculty of MathematicsRuhr-University BochumGermany
  3. 3.COSIC - Electrical EngineeringKatholieke Universiteit LeuvenHeverleeBelgium

Personalised recommendations