digplanet beta 1: Athena
Share digplanet:

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

In cryptography, public-key cryptosystems are convenient in that they do not require the sender and receiver to share a common secret in order to communicate securely (among other useful properties). However, they often rely on complicated mathematical computations and are thus generally much more inefficient than comparable symmetric-key cryptosystems. In many applications, the high cost of encrypting long messages in a public-key cryptosystem can be prohibitive. A hybrid cryptosystem is one which combines the convenience of a public-key cryptosystem with the efficiency of a symmetric-key cryptosystem.

A hybrid cryptosystem can be constructed using any two separate cryptosystems:

  • a key encapsulation scheme, which is a public-key cryptosystem, and
  • a data encapsulation scheme, which is a symmetric-key cryptosystem.

The hybrid cryptosystem is itself a public-key system, whose public and private keys are the same as in the key encapsulation scheme.

Note that for very long messages the bulk of the work in encryption/decryption is done by the more efficient symmetric-key scheme, while the inefficient public-key scheme is used only to encrypt/decrypt a short key value.

Perhaps the most commonly used hybrid cryptosystems are the OpenPGP (RFC 4880) file format and the PKCS #7 (RFC 2315) file format, both used by many different systems.

Example[edit]

To encrypt a message addressed to Alice in a hybrid cryptosystem, Bob does the following:

  1. Obtains Alice's public key.
  2. Generates a fresh symmetric key for the data encapsulation scheme.
  3. Encrypts the message under the data encapsulation scheme, using the symmetric key just generated.
  4. Encrypt the symmetric key under the key encapsulation scheme, using Alice's public key.
  5. Send both of these encryptions to Alice.

To decrypt this hybrid ciphertext, Alice does the following:

  1. uses her private key to decrypt the symmetric key contained in the key encapsulation segment.
  2. uses this symmetric key to decrypt the message contained in the data encapsulation segment.

Security[edit]

If both the key encapsulation and data encapsulation schemes are secure against adaptive chosen ciphertext attacks, then the hybrid scheme inherits that property as well.[1] However, it is possible to construct a hybrid scheme secure against adaptive chosen ciphertext attack even if the key encapsulation has a slightly weakened security definition (though the security of the data encapsulation must be slightly stronger).[2]

References[edit]

  1. ^ Cramer, Ronald; Shoup, Victor (2004). "Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack". SIAM Journal on Computing 33 (1): 167–226. doi:10.1137/S0097539702403773. 
  2. ^ Dennis, Hofheinz; Kiltz, Eike (2007). "Secure Hybrid Encryption from Weakened Key Encapsulation". Advances in Cryptology -- CRYPTO 2007. Springer. pp. 553–571. 

Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Hybrid_cryptosystem — Please support Wikipedia.
This page uses Creative Commons Licensed content from Wikipedia. A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
76 videos foundNext > 

Analisis Hybrid Crypto System pada HTTPS

Chapter 4, part 11, Information Security: Principles and Practice

Information Security: Principles and Practice, 2nd edition, by Mark Stamp Chapter 4: Public Key Crypto Section 4.8, PKI trust models, hybrid cryptosystem.

Rabin Cryptosystem

Apresentação sobre o Criptosistema Rabin para avaliação da disciplina de Criptografia Aplicada. Tiago Arnold.

IEEE 2014 JAVA KEY-AGGREGATE CRYPTOSYSTEM FOR SCALABLE DATA SHARING IN CLOUD STORAGE

PG Embedded Systems www.pgembeddedsystems.com #197 B, Surandai Road Pavoorchatram,Tenkasi Tirunelveli Tamil Nadu India 627 808 Tel:04633-251200 Mob:+91-98658...

Extreme Threshold Cryptosystems

Crypto 2011 Rump session presentation for Benoit Libert and Moti Yung, talk given by Moti Yung.

A Hybrid Cloud Approach for Secure Authorized Deduplication

2014 IEEE Transaction on Cloud Computing For More Details :: Contact K.Manjunath -09535866270 http://www.tmksinfotech.com and http://www.bemtechprojects.com ...

Platform for Hybrid Cloud with SQL Server 2014, 01, Backup to Cloud

www.epcgroup.net | sharepoint@epcgroup.net | Phone: (888) 381-9725 * SharePoint Server 2013, SharePoint Server 2010, and SharePoint 2007: Review, Architectur...

HYBRID ATTRIBUTE AND RE ENCRYPTION BASED KEY MANAGEMENT FOR SECURE AND SCALABLE MOBILE APPLICATIONS

TO GET THIS PROJECT THROUGH ONLINE OR TRAINING SESSION CONTACT: LansA Informatics Pvt Ltd No 165, 5th Street, Crosscut road, Gandhipuram, Coimbatore - 641 01...

A HYBRID CLOUD APPROACH FOR SECURE AUTHORIZED DEDUPLICATION

TO GET THIS PROJECT THROUGH ONLINE OR TRAINING SESSION CONTACT: LansA Informatics Pvt Ltd No 165, 5th Street, Crosscut road, Gandhipuram, Coimbatore - 641 01...

HYBRID ATTRIBUTE AND RE ENCRYPTION BASED KEY MANAGEMENT FOR SECURE AND SCALABLE MOBILE APPLICATIONS

TO GET THIS PROJECT THROUGH ONLINE OR TRAINING SESSION CONTACT: LansA Informatics Pvt Ltd No 165, 5th Street, Crosscut road, Gandhipuram, Coimbatore - 641 01...

76 videos foundNext > 

We're sorry, but there's no news about "Hybrid cryptosystem" right now.

Loading

Oops, we seem to be having trouble contacting Twitter

Talk About Hybrid cryptosystem

You can talk about Hybrid cryptosystem with people all over the world in our discussions.

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!