Formal certification of ElGamal encryption. A gentle introduction to CertiCrypt
- Gilles Barthe ,
- Benjamin Grégoire ,
- Sylvain Heraud ,
- Santiago Zanella-Béguelin
5th International Workshop on Formal Aspects in Security and Trust, FAST 2008 |
Published by Springer
CertiCrypt is a framework that assists the construction of machine-checked cryptographic proofs that can be automatically verified by third parties. To date, CertiCrypt has been used to prove formally the exact security of widely studied cryptographic systems, such as the OAEP padding scheme and the Full Domain Hash digital signature scheme. The purpose of this article is to provide a gentle introduction to CertiCrypt. For concreteness, we focus on a simple but illustrative example, namely the semantic security of the Hashed ElGamal encryption scheme in both, the standard and the random oracle model.