We propose a concept for a worldwide information security infrastructure that protects law-abiding citizens, but not criminals, even if the latter use it fraudulently (i.e. when not complying with the agreed rules). It can be seen as a middle course between the inflexible but fraud-resistant KMI-proposal  and the flexible but non-fraud-resistant concept used in TIS-CKE . Our concept consists of adding binding data to the latter concept, which will not prevent fraud by criminals but makes it at least detectable by third parties without the need of any secret information. In , we depict a worldwide framework in which this concept could present a security tool that is flexible enough to be incorporated in any national cryptography policy, on both the domestic and foreign use of cryptography. Here, we present a construction for binding data for ElGamal type public key encryption schemes. As a side result we show that a particular simplification in a multiuser version of ElGamal does not affect its security.
|Title of host publication||Advances in Cryptology - EUROCRYPT'97 (Proceedings International Conference on the Theory and Application of Cryptographic Techniques, Konstanz, Germany, May 11-15, 1997)|
|Place of Publication||Berlin|
|Publication status||Published - 1997|
|Name||Lecture Notes in Computer Science|