Cryptography Reference
In-Depth Information
Security against chosen ciphertext attack is related to the notion of
non-malleability
of the encryption scheme (cf. (50)). Loosely speaking,
in a non-malleable encryption scheme it is infeasible for an adversary,
given a ciphertext , to produce a valid ciphertext for a related plain-
text (e.g., given a ciphertext of a plaintext 1
x
, for an unknown
x
,it
is infeasible to produce a ciphertext to the plaintext 0
x
). For further
discussion see (50; 19; 89).