[1]
I. Damgård and J. Nielsen, “Improved Non-Committing Encryption Schemes based on a General Complexity Assumption”, BRICS, vol. 7, no. 6, Jan. 2000.