Principal Investigator Shafrira Goldwasser
Project Website http://toc.csail.mit.edu/?q=node/144
The classical security definition of semantic secure public-key encryption requires that an efficient attacker with access to the public encryption-key must not be able to find two messages such that it can distinguish a random encryption of one from a random encryption of the other. This notion of security, however (as well as other commonly accepted ones), does not capture certain situations that may occur in the "real world" such as encrypting and sending functions of the secret decryption-key. In recent years, extensive research effort has been invested in providing encryption schemes which are provably secure even in the above settings. Such schemes are said to achieve key-dependent message (KDM) security.