Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Authenticated Encryption #4

Open
andres-erbsen opened this issue May 3, 2018 · 1 comment
Open

Authenticated Encryption #4

andres-erbsen opened this issue May 3, 2018 · 1 comment

Comments

@andres-erbsen
Copy link

andres-erbsen commented May 3, 2018
edited

The existing example uses secret-key authentication and secret-key encryption in the usual verify-then-decrypt manner. Perhaps there would be proof niceness to be gained by defining proof rules for this common combination. In particular, I think an interesting model to try would be to say that the decryption output is not tainted with the secret key but is tainted with all encrypted messages in its subtree.

I guess this also matters for completeness: not all authenticated encryption schemes are black-box constructions from write-only encryption and authenticators.
@andres-erbsen
Copy link
Author

for decryption, the "did decryption succeed" output is encrypt_safe. We think this is enough to support authenticated encryption to the same extent as we support mac+cpa.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@andres-erbsen