research-article

Encrypting Keys Securely

Authors:

Christian Cachin,

Jan CamenischAuthors Info & Claims

IEEE Security and Privacy, Volume 8, Issue 4

Pages 66 - 69

https://doi.org/10.1109/MSP.2010.124

Published: 01 July 2010 Publication History

Publisher Site

Abstract

Encryption keys are sometimes encrypted themselves; doing that properly requires special care. Although it might look like an oversight at first, the broadly accepted formal security definitions for cryptosystems don't allow encryption of key-dependent messages. Furthermore, key-management systems frequently use key encryption or wrapping, which might create dependencies among keys that lead to problems with simple access-control checks. Security professionals should be aware of this risk and take appropriate measures. Novel cryptosystems offer protection for key-dependent messages and should be considered for practical use. Through enhanced access control in key-management systems, you can prevent security-interface attacks.

Cited By

View all

Focardi RLuccio FSteel G(2011)An introduction to security API analysisFoundations of security analysis and design VI10.5555/2028200.2028203(35-65)Online publication date: 1-Jan-2011
https://dl.acm.org/doi/10.5555/2028200.2028203

Encrypting Keys Securely

Recommendations

Tightly CCA-secure identity-based encryption with ciphertext pseudorandomness

Affine message authentication code (MAC) and delegatable affine MAC turn out to be useful tools for constructing identity-based encryption (IBE) and hierarchical IBE (HIBE), as shown in Blazy, Kiltz and Pan's (BKP) creative work in CRYPTO (2014). An ...
Chosen ciphertext secure keyed-homomorphic public-key cryptosystems

In homomorphic encryption schemes, anyone can perform homomorphic operations, and therefore, it is difficult to manage when, where and by whom they are performed. In addition, the property that anyone can "freely" perform the operation inevitably means ...
Continuous leakage-resilient certificateless public key encryption with CCA security

Recently, much attention has been focused on designing provably secure cryptographic scheme in the presence of key leakage, and many constructions are proposed by cryptography researchers. However, most of them are researched in the bounded-leakage ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

IEEE Security and Privacy Volume 8, Issue 4

July 2010

84 pages

ISSN:1540-7993

Issue’s Table of Contents

Publisher

IEEE Educational Activities Department

United States

Publication History

Published: 01 July 2010

Author Tags

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 16 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Focardi RLuccio FSteel G(2011)An introduction to security API analysisFoundations of security analysis and design VI10.5555/2028200.2028203(35-65)Online publication date: 1-Jan-2011
https://dl.acm.org/doi/10.5555/2028200.2028203

Abstract

Cited By

Recommendations

Tightly CCA-secure identity-based encryption with ciphertext pseudorandomness

Chosen ciphertext secure keyed-homomorphic public-key cryptosystems

Continuous leakage-resilient certificateless public key encryption with CCA security

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Share

Share this Publication link

Share on social media

Affiliations