Security of Hsu–Wu’s authenticated encryption scheme with (t, n) shared verification

摘要

In Hsu–Wu’s authenticated encryption scheme with threshold shared verification, there is a strong assumption that all verifiers in the verifier group honestly execute the decryption process to recovery the message m. However, in practical application, it is hard to trust that all the members in the verifier group are honest. Two possible attacks are proposed. One is an intercepts attack and one is counterfeit commit value attack.