Score:1

Essential requirement for IND-CCA1 and IND-CCA2

vn flag

I am learning about the concept of two security notions called IND-, which include IND-CPA, IND-CCA1 and IND-CCA2. While I got some grasp understanding about the scenarios between the challenger & attacker for each of these models. I am still not able to comprehend what properties of a security model are required to "upgrade" from IND-CPA to IND-CCA1, thus IND-CCA2.

  • Starting with IND-CPA, I understood that each encryption request must "result in randomly different outputs".
  • What are the canonical descriptions for the next 2 transitions (IND-CPA -> IND-CCA1 and IND-CCA1 -> IND-CCA2)? I did some research and got some answers talking about "making the ciphertext tamperproof" (LINK1, LINK2) but still quite confused (e.g., they just mentioned CCA generally).

Thank you in advance.

kelalaka avatar
in flag
This is our Canonical Q/A; [Easy explanation of "IND-" security notions?](https://crypto.stackexchange.com/q/26689/18298) What is not clear there for you?
John Pham avatar
vn flag
@kelalaka It really helped me understand the context of these notions. But I am still not able to find the condition to reach those type of security. For instance, this [LINK](https://blog.cryptographyengineering.com/why-ind-cpa-implies-randomized-encryption/) mentioned about what the encryption needs to improve to achieve IND-CPA, which is to randomize. I am still looking for stuff like that for IND-CCA1 and IND-CCA2.
kelalaka avatar
in flag
Ind-CCAx requires a MAC to achive this. The CPA is malleable.
kelalaka avatar
in flag
Example 1 [How can CPA-secure LWE cryptosystem be broken by an active attacker?](https://crypto.stackexchange.com/a/96591/18298) 2) [Bit Flipping Attack on CBC Mode](https://crypto.stackexchange.com/a/66086/18298) 3) [Padding Oracles](https://crypto.stackexchange.com/q/76713/18298) and many others due to lack of integrity or not using integrity correctly. You may search for _CPA attack_ for more and see the necessity of the integrity.
John Pham avatar
vn flag
Thank you for your threads, I am checking them out
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.