We present the notion of an mKEM, which is a Key Encapsulation Mechanism (KEM) which takes multiple public keys as input. This has applications where one wishes to encrypt a single large document to a set of multiple recipients, as when one sends an encrypted email to more than one person. We present a security definition and show that the naive approach to implementing an mKEM is secure under this definition. We then go on to present a more efficient construction of an mKEM, which is secure in the random oracle model.
|Translated title of the contribution||Efficient key encapsulation to multiple parties|
|Title of host publication||Security and Cryptography for Networks - SCN 2006|
|Publisher||Springer Berlin Heidelberg|
|Pages||208 - 219|
|Number of pages||11|
|Publication status||Published - Jan 2005|