@inbook{b948fa04874041d7a32a4f5a70f10bf6,
title = "Rethinking chosen-ciphertext security under Kerckhoffs' assumption",
abstract = "Kerckhoffs' assumption states that an attacker must be assumed to have full knowledge of all the details of a cryptosystem except information about encryption/decryption keys upon which security of the cryptosystem rests entirely. In this paper we generalize the assumption to allow an attacker to have access to intermediate results during the computational process of cryptographic operations. We show that the generalized assumption models quite well such real world attacks as the {"}memory reconstruction attack{"} and the {"}memory core-dump attackwhich may be mounted by computer forensic software or computer viruses. We further analyze a number of public key encryption schemes under the generalized Kerckhoffs' assumption, and demonstrate that some of the schemes, although provably secure under some computational assumptions, may be broken if an attacker has access to intermediate results during a decryption operation.",
keywords = "Chosen-ciphertext security, Kerckhoffs' assumption, Provable security",
author = "Seungjoo Kim and Masahiro Mambo and Yuliang Zheng",
year = "2003",
doi = "10.1007/3-540-36563-x_16",
language = "English",
isbn = "3540008470",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "227--243",
editor = "Marc Joye",
booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
}