Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption

Masayuki Fukumitsu; Shingo Hasegawa; Shuji Isobe; Eisuke Koizumi; Hiroki Shizuya

doi:10.1007/978-3-642-39059-3_6

Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption

Masayuki Fukumitsu, Shingo Hasegawa, Shuji Isobe, Eisuke Koizumi, Hiroki Shizuya

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

Abstract

The notion of pseudo-freeness of a group was introduced by Hohenberger, and formalized by Rivest in order to unify cryptographic assumptions. Catalano, Fiore and Warinschi proposed the adaptive pseudo-free group as a generalization of pseudo-free group. They showed that the RSA group ℤ_N ^X is pseudo-free even if the adversary against pseudo-freeness is allowed to operate adaptively, provided that the adaptive behavior of the adversary is restricted by some specific parametric distribution. They also proposed the notion of strong adaptive pseudo-freeness in which the adaptive behavior of the adversary is not restricted. However, it remains open whether ℤ_N^X is also strongly-adaptive pseudo-free under the strong RSA (SRSA) assumption. In this paper, we give a negative circumstantial evidence for the question. We show that the SRSA assumption does not imply the strong adaptive pseudo-freeness of ℤ_N^X, as far as the algebraic reduction is concerned. The algebraic reduction means that the algorithm of the black-box reduction performs only group operations for elements in ℤ_N^X. Our result indicates that the strong adaptive pseudo-freeness for the RSA group ℤ_N^X cannot be shown under the SRSA assumption, by employing only current proof techniques which are used in ordinary security proofs.

Original language	English
Title of host publication	Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings
Pages	72-87
Number of pages	16
DOIs	https://doi.org/10.1007/978-3-642-39059-3_6
Publication status	Published - 2013 Sep 26
Event	18th Australasian Conference on Information Security and Privacy, ACISP 2013 - Brisbane, QLD, Australia Duration: 2013 Jul 1 → 2013 Jul 3

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	7959 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	18th Australasian Conference on Information Security and Privacy, ACISP 2013
Country	Australia
City	Brisbane, QLD
Period	13/7/1 → 13/7/3

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-642-39059-3_6

Fingerprint Dive into the research topics of 'Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption'. Together they form a unique fingerprint.

Cite this

Fukumitsu, M., Hasegawa, S., Isobe, S., Koizumi, E., & Shizuya, H. (2013). Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption. In Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings (pp. 72-87). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7959 LNCS). https://doi.org/10.1007/978-3-642-39059-3_6

Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption. / Fukumitsu, Masayuki; Hasegawa, Shingo ; Isobe, Shuji ; Koizumi, Eisuke ; Shizuya, Hiroki.

Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. 2013. p. 72-87 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7959 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Fukumitsu, M, Hasegawa, S , Isobe, S , Koizumi, E & Shizuya, H 2013, Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption. in Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7959 LNCS, pp. 72-87, 18th Australasian Conference on Information Security and Privacy, ACISP 2013, Brisbane, QLD, Australia, 13/7/1. https://doi.org/10.1007/978-3-642-39059-3_6

Fukumitsu M, Hasegawa S , Isobe S , Koizumi E , Shizuya H. Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption. In Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. 2013. p. 72-87. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-39059-3_6

Fukumitsu, Masayuki ; Hasegawa, Shingo ; Isobe, Shuji ; Koizumi, Eisuke ; Shizuya, Hiroki. / Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption. Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. 2013. pp. 72-87 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{72c8ed96d37d4a5497d90a85d2027572,

title = "Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption",

abstract = "The notion of pseudo-freeness of a group was introduced by Hohenberger, and formalized by Rivest in order to unify cryptographic assumptions. Catalano, Fiore and Warinschi proposed the adaptive pseudo-free group as a generalization of pseudo-free group. They showed that the RSA group ℤN X is pseudo-free even if the adversary against pseudo-freeness is allowed to operate adaptively, provided that the adaptive behavior of the adversary is restricted by some specific parametric distribution. They also proposed the notion of strong adaptive pseudo-freeness in which the adaptive behavior of the adversary is not restricted. However, it remains open whether ℤNX is also strongly-adaptive pseudo-free under the strong RSA (SRSA) assumption. In this paper, we give a negative circumstantial evidence for the question. We show that the SRSA assumption does not imply the strong adaptive pseudo-freeness of ℤNX, as far as the algebraic reduction is concerned. The algebraic reduction means that the algorithm of the black-box reduction performs only group operations for elements in ℤNX. Our result indicates that the strong adaptive pseudo-freeness for the RSA group ℤNX cannot be shown under the SRSA assumption, by employing only current proof techniques which are used in ordinary security proofs.",

author = "Masayuki Fukumitsu and Shingo Hasegawa and Shuji Isobe and Eisuke Koizumi and Hiroki Shizuya",

year = "2013",

month = sep,

day = "26",

doi = "10.1007/978-3-642-39059-3_6",

language = "English",

isbn = "9783642390586",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "72--87",

booktitle = "Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings",

note = "18th Australasian Conference on Information Security and Privacy, ACISP 2013 ; Conference date: 01-07-2013 Through 03-07-2013",

}

TY - GEN

T1 - Toward separating the strong adaptive pseudo-freeness from the strong RSA assumption

AU - Fukumitsu, Masayuki

AU - Hasegawa, Shingo

AU - Isobe, Shuji

AU - Koizumi, Eisuke

AU - Shizuya, Hiroki

PY - 2013/9/26

Y1 - 2013/9/26

N2 - The notion of pseudo-freeness of a group was introduced by Hohenberger, and formalized by Rivest in order to unify cryptographic assumptions. Catalano, Fiore and Warinschi proposed the adaptive pseudo-free group as a generalization of pseudo-free group. They showed that the RSA group ℤN X is pseudo-free even if the adversary against pseudo-freeness is allowed to operate adaptively, provided that the adaptive behavior of the adversary is restricted by some specific parametric distribution. They also proposed the notion of strong adaptive pseudo-freeness in which the adaptive behavior of the adversary is not restricted. However, it remains open whether ℤNX is also strongly-adaptive pseudo-free under the strong RSA (SRSA) assumption. In this paper, we give a negative circumstantial evidence for the question. We show that the SRSA assumption does not imply the strong adaptive pseudo-freeness of ℤNX, as far as the algebraic reduction is concerned. The algebraic reduction means that the algorithm of the black-box reduction performs only group operations for elements in ℤNX. Our result indicates that the strong adaptive pseudo-freeness for the RSA group ℤNX cannot be shown under the SRSA assumption, by employing only current proof techniques which are used in ordinary security proofs.

AB - The notion of pseudo-freeness of a group was introduced by Hohenberger, and formalized by Rivest in order to unify cryptographic assumptions. Catalano, Fiore and Warinschi proposed the adaptive pseudo-free group as a generalization of pseudo-free group. They showed that the RSA group ℤN X is pseudo-free even if the adversary against pseudo-freeness is allowed to operate adaptively, provided that the adaptive behavior of the adversary is restricted by some specific parametric distribution. They also proposed the notion of strong adaptive pseudo-freeness in which the adaptive behavior of the adversary is not restricted. However, it remains open whether ℤNX is also strongly-adaptive pseudo-free under the strong RSA (SRSA) assumption. In this paper, we give a negative circumstantial evidence for the question. We show that the SRSA assumption does not imply the strong adaptive pseudo-freeness of ℤNX, as far as the algebraic reduction is concerned. The algebraic reduction means that the algorithm of the black-box reduction performs only group operations for elements in ℤNX. Our result indicates that the strong adaptive pseudo-freeness for the RSA group ℤNX cannot be shown under the SRSA assumption, by employing only current proof techniques which are used in ordinary security proofs.

UR - http://www.scopus.com/inward/record.url?scp=84884470843&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84884470843&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-39059-3_6

DO - 10.1007/978-3-642-39059-3_6

M3 - Conference contribution

AN - SCOPUS:84884470843

SN - 9783642390586

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 72

EP - 87

BT - Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings

T2 - 18th Australasian Conference on Information Security and Privacy, ACISP 2013

Y2 - 1 July 2013 through 3 July 2013

ER -