I know ECDSA and ECDH are used a lot but what about the ECIES? Is it used or specified as an option in any protocol?
Asked
Active
Viewed 1,418 times
3 Answers
9
Yes, ECIES is used in practice. That's the simplest way (thus arguably the best) to establish a key or/and encipher using Elliptic Curve Cryptography in contexts including unidirectional data transfer, or data-at-rest like backup with encryption under public key.
As an illustration, it is often listed in the Other algorithms section of FIPS-140-validated cryptographic devices; I count like 28 occurrences.
ECIES is in the de-facto standard SEC 1, IEEE Std 1363a-2004, and ANSI X9.63-2011. It is used e.g. in Intelligent Transport Systems as specified by ETSI TS 103 097. The similar ECIES-KEM is in ISO/IEC 18033-2:2006 following a well-documented proposal by Victor Shoup.
fgrieu
- 149,326
- 13
- 324
- 622
6
Another example is Google's Android Pay:
Android Pay uses Elliptic Curve Integrated Encryption Scheme (ECIES) to secure the payment method token returned in the full Wallet response
cygnusv
- 5,072
- 1
- 23
- 48
5
It's not exactly as in the standards that fgrieu cited, but libsodium's sealed box abstraction is essentially the same idea.
Squeamish Ossifrage
- 49,816
- 3
- 122
- 230