Revision as of 20:55, 8 September 2004 edit Michael Hardy (talk \| contribs) Administrators 210,577 edits No edit summary ← Previous edit		Revision as of 20:57, 8 September 2004 edit undo Michael Hardy (talk \| contribs) Administrators 210,577 edits No edit summary Next edit →
Line 10: Only limited work has been done in terms of formally analysing ID based cryptosystems, some of which have been recently broken. Because any user's private key can be generated through the use of the third party's secret, this system has inherent [[key escrow]]. A number of variant systems have been proposed which remove the escrow including [[Certificate-based encryption]], [[~~Secure~~secure ~~Key~~key ~~Issuing~~issuing ~~Cryptography~~cryptography]] and [[certificateless cryptography]]. One of this system's major advantages is that if there are only a finite number of users, after all users have been issued with keys the third party's secret can be destroyed. This can take place because this system assumes that, once issued, keys are always valid (as this basic system lacks an method of [[key revocation]]). The majority of derivatives of this system which have key revocation lose this advantage.

Identity-based encryption: Difference between revisions