Removing Escrow from Identity-Based Encryption

Authors:
Sherman S. Chow
Affiliations:
Department of Computer Science Courant Institute of Mathematical Sciences, New York University, USA NY 10012
Venue:
Irvine Proceedings of the 12th International Conference on Practice and Theory in Public Key Cryptography: PKC '09
Year:
2009

Citing 40
Cited 10

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
Identity-Based Encryption from the Weil Pairing

CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
Toward Hierarchical Identity-Based Encryption

EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology
Hierarchical ID-Based Cryptography

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Threshold Signatures, Multisignatures and Blind Signatures Based on the Gap-Diffie-Hellman-Group Signature Scheme

PKC '03 Proceedings of the 6th International Workshop on Theory and Practice in Public Key Cryptography: Public Key Cryptography
ID-based encryption for complex hierarchies with applications to forward security and broadcast encryption

Proceedings of the 11th ACM conference on Computer and communications security
Separable and Anonymous Identity-Based Key Issuing

ICPADS '05 Proceedings of the 11th International Conference on Parallel and Distributed Systems - Workshops - Volume 02
Searchable Encryption Revisited: Consistency Properties, Relation to Anonymous IBE, and Extensions

Journal of Cryptology
General Certificateless Encryption and Timed-Release Encryption

SCN '08 Proceedings of the 6th international conference on Security and Cryptography for Networks
New Anonymity Notions for Identity-Based Encryption

SCN '08 Proceedings of the 6th international conference on Security and Cryptography for Networks
Identity-based encryption with efficient revocation

Proceedings of the 15th ACM conference on Computer and communications security
Black-box accountable authority identity-based encryption

Proceedings of the 15th ACM conference on Computer and communications security
Generalized Identity Based and Broadcast Encryption Schemes

ASIACRYPT '08 Proceedings of the 14th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Anonymous Hierarchical Identity-Based Encryption with Constant Size Ciphertexts

Irvine Proceedings of the 12th International Conference on Practice and Theory in Public Key Cryptography: PKC '09
Towards Black-Box Accountable Authority IBE with Short Ciphertexts and Private Keys

Irvine Proceedings of the 12th International Conference on Practice and Theory in Public Key Cryptography: PKC '09
Efficient non-interactive zero-knowledge proofs for privacy applications

Efficient non-interactive zero-knowledge proofs for privacy applications
Conjunctive, subset, and range queries on encrypted data

TCC'07 Proceedings of the 4th conference on Theory of cryptography
Reducing trust in the PKG in identity based cryptosystems

CRYPTO'07 Proceedings of the 27th annual international cryptology conference on Advances in cryptology
Blind identity-based encryption and simulatable oblivious transfer

ASIACRYPT'07 Proceedings of the Advances in Crypotology 13th international conference on Theory and application of cryptology and information security
CCA2 secure IBE: standard model efficiency through authenticated symmetric encryption

CT-RSA'08 Proceedings of the 2008 The Cryptopgraphers' Track at the RSA conference on Topics in cryptology
Certificateless encryption schemes strongly secure in the standard model

PKC'08 Proceedings of the Practice and theory in public key cryptography, 11th international conference on Public key cryptography
P-signatures and noninteractive anonymous credentials

TCC'08 Proceedings of the 5th conference on Theory of cryptography
HIBE with short public parameters without random oracle

ASIACRYPT'06 Proceedings of the 12th international conference on Theory and Application of Cryptology and Information Security
Multi-receiver identity-based key encapsulation with shortened ciphertext

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Identity-based parallel key-insulated encryption without random oracles: security notions and construction

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Boneh-Franklin identity based encryption revisited

ICALP'05 Proceedings of the 32nd international conference on Automata, Languages and Programming
Efficient multi-receiver identity-based encryption and its application to broadcast encryption

PKC'05 Proceedings of the 8th international conference on Theory and Practice in Public Key Cryptography
Identity based encryption without redundancy

ACNS'05 Proceedings of the Third international conference on Applied Cryptography and Network Security
Efficient identity-based encryption without random oracles

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Hierarchical identity based encryption with constant size ciphertext

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Fuzzy identity-based encryption

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Chosen-ciphertext secure threshold identity-based key encapsulation without random oracles

SCN'06 Proceedings of the 5th international conference on Security and Cryptography for Networks
Anonymous hierarchical identity-based encryption (without random oracles)

CRYPTO'06 Proceedings of the 26th annual international conference on Advances in Cryptology
Generalization of the Selective-ID security model for HIBE protocols

PKC'06 Proceedings of the 9th international conference on Theory and Practice of Public-Key Cryptography
Practical identity-based encryption without random oracles

EUROCRYPT'06 Proceedings of the 24th annual international conference on The Theory and Applications of Cryptographic Techniques
New constructions of constant size ciphertext HIBE without random oracle

ICISC'06 Proceedings of the 9th international conference on Information Security and Cryptology
Efficient identity-based encryption with tight security reduction

CANS'06 Proceedings of the 5th international conference on Cryptology and Network Security
Security proof of sakai-kasahara's identity-based encryption scheme

IMA'05 Proceedings of the 10th international conference on Cryptography and Coding
Trading time for space: towards an efficient IBE scheme with short(er) public parameters in the standard model

ICISC'05 Proceedings of the 8th international conference on Information Security and Cryptology
Strongly-secure identity-based key agreement and anonymous extension

ISC'07 Proceedings of the 10th international conference on Information Security

How to construct identity-based signatures without the key escrow problem

EuroPKI'09 Proceedings of the 6th European conference on Public key infrastructures, services and applications
Identity-based online/offline key encapsulation and encryption

Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security
Exclusion-intersection encryption

International Journal of Security and Networks
Fully CCA2 secure identity-based broadcast encryption with black-box accountable authority

Journal of Systems and Software
Dynamic secure cloud storage with provenance

Cryptography and Security
Identity-based encryption resilient to continual auxiliary leakage

EUROCRYPT'12 Proceedings of the 31st Annual international conference on Theory and Applications of Cryptographic Techniques
Dependable and secure computing in medical information systems

Computer Communications
A new approach for private searches on public-key encrypted data

CMS'12 Proceedings of the 13th IFIP TC 6/TC 11 international conference on Communications and Multimedia Security
Efficient self-certified signatures with batch verification

Inscrypt'11 Proceedings of the 7th international conference on Information Security and Cryptology
Secure Data Retrieval for Decentralized Disruption-Tolerant Military Networks

IEEE/ACM Transactions on Networking (TON)

Quantified Score

Hi-index	0.01

Visualization

Abstract

Key escrow is inherent in identity-based encryption (IBE). A curious key generation center (KGC) can simply generate the user's private key to decrypt a ciphertext. However, can a KGC still decrypt if it does not know the intended recipient of the ciphertext? We answer by formalizing KGC anonymous ciphertext indistinguishability ($\mathcal{ACI-KGC}$). We find that all existing pairing-based IBE schemes without random oracles, whether receipt-anonymous or not, do not achieve KGC one-wayness, a weaker notion of $\mathcal{ACI-KGC}$. In view of this, we first show how to equip an IBE scheme by Gentry with $\mathcal{ACI-KGC}$. Second, we propose a new system architecture with an anonymous private key generation protocol such that the KGC can issue a private key to an authenticated user without knowing the list of users identities. This also better matches the practice that authentication should be done with the local registration authorities instead of the KGC. Our proposal can be viewed as mitigating the key escrow problem in a different dimension than distributed KGCs approach.