Provably Secure Public-Key Steganography Based on Admissible Encoding
Xin Zhang, Kejiang Chen, Na Zhao, Weiming Zhang, Nenghai Yu
TL;DR
This work addresses the challenge of provably secure public-key steganography on elliptic curves without the curve-parameter restrictions or half-point usage of prior EC methods. It introduces admissible encoding, constructed via the tensor square of well-distributed elliptic-curve encodings (Icart, SW, SWU), to produce a surjective mapping from a finite-field domain to $E(\mathbb{F}_p)$ with a sampleable inverse, enabling pseudorandom public-key ciphertexts under IND$-$CPA in the random-oracle model. The framework yields universal applicability across curve types, full utilization of curve points (including pairing-friendly ones), and concrete instances on $\text{P-384}$, $\text{secp256k1}$, and $\text{P-256}$, supported by both statistical tests and steganalysis experiments. Together, these results broaden the practical scope of provably secure covert communication and pave the way for integrating such primitives into higher-level protocols like group key exchange and deterministic cryptographic schemes.
Abstract
The technique of hiding secret messages within seemingly harmless covertext to evade examination by censors with rigorous security proofs is known as provably secure steganography (PSS). PSS evolves from symmetric key steganography to public-key steganography, functioning without the requirement of a pre-shared key and enabling the extension to multi-party covert communication and identity verification mechanisms. Recently, a public-key steganography method based on elliptic curves was proposed, which uses point compression to eliminate the algebraic structure of curve points. However, this method has strict requirements on the curve parameters and is only available on half of the points. To overcome these limitations, this paper proposes a more general elliptic curve public key steganography method based on admissible encoding. By applying the tensor square function to the known well-distributed encoding, we construct admissible encoding, which can create the pseudo-random public-key encryption function. The theoretical analysis and experimental results show that the proposed provable secure public-key steganography method can be deployed on all types of curves and utilize all points on the curve.
