Non-malleable Encryption: Equivalence between Two Notions, and an Indistinguishability-Based Characterization