An Efficient Convertible Authenticated Encryption Scheme and Its Variant
- 454 Downloads
The authenticated encryption scheme allows the specified receiver to simultaneously recover and verify a message. Recently, to protect the receiver’s benefit of a later dispute, Wu and Hsu proposed a convertible authenticated encryption scheme in which the receiver can convert the signature into an ordinary one that can be verified by anyone. However, Wu and Hsu’s scheme doesn’t consider that once the intruder knows the message then the intruder can also easily convert a signature into an ordinary digital signature. In this situation, the intruder may force the signer to be responsible for the terms of agreement of the documents and cause confusion. In this paper, we propose an efficient convertible authenticated encryption scheme which can provide better protection for both the signer and the specified receiver. On the other hand, we also propose an efficient and lower communication convertible authenticated encryption scheme with message linkages. It can be regarded as a variant of the convertible authenticated encryption scheme in that it is designed to link up the message blocks to avoid the message block being reordered, replicated, or partially deleted during the transmission.
Unable to display preview. Download preview PDF.
- 1.Araki, S., Uehara, S., Imamura, K.: Convertible Limited Verifier Signature Based on Horster’s Authenticated Encryption. In: 1998 Symposium on Cryptography and Information Security (1998) Google Scholar
- 2.Araki, S., Uehara, S., Imamura, K.: The Limited Verifier Signature and Its Application. IEICE Transactions on Fundamentals E82-A(1), 63–68 (1999)Google Scholar
- 7.Schnorr, C.P.: Efficient Identification and Signatures for Smart Cards. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 339–351. Springer, Heidelberg (1990)Google Scholar