Generalized key delegation for hierarchical identity-based encryption

Authors:
Michel Abdalla;Eike Kiltz;Gregory Neven
Affiliations:
Departement d'Informatique, École normale supérieure;Cryptology and Information Security Research Theme, CWI Amsterdam;Departement d'Informatique, École normale supérieure and Department of Electrical Engineering, Katholieke Universiteit Leuven
Venue:
ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security
Year:
2007

Citing 15
Cited 22

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
Random oracles are practical: a paradigm for designing efficient protocols

CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Broadcast encryption

CRYPTO '93 Proceedings of the 13th annual international cryptology conference on Advances in cryptology
Identity-Based Encryption from the Weil Pairing

SIAM Journal on Computing
Homomorphic Signature Schemes

CT-RSA '02 Proceedings of the The Cryptographer's Track at the RSA Conference on Topics in Cryptology
Toward Hierarchical Identity-Based Encryption

EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology
Hierarchical ID-Based Cryptography

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Attribute-based encryption for fine-grained access control of encrypted data

Proceedings of the 13th ACM conference on Computer and communications security
Multi-receiver identity-based key encapsulation with shortened ciphertext

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Identity-Based encryption gone wild

ICALP'06 Proceedings of the 33rd international conference on Automata, Languages and Programming - Volume Part II
Append-only signatures

ICALP'05 Proceedings of the 32nd international conference on Automata, Languages and Programming
Collusion resistant broadcast encryption with short ciphertexts and private keys

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
Efficient identity-based encryption without random oracles

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Hierarchical identity based encryption with constant size ciphertext

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Transitive signatures: new schemes and proofs

IEEE Transactions on Information Theory

Cryptanalysis and improvement of a multi-receiver identity-based key encapsulation at INDOCRYPT 06

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Attribute based proxy re-encryption with delegating capabilities

Proceedings of the 4th International Symposium on Information, Computer, and Communications Security
Adaptive Security in Broadcast Encryption Systems (with Short Ciphertexts)

EUROCRYPT '09 Proceedings of the 28th Annual International Conference on Advances in Cryptology: the Theory and Applications of Cryptographic Techniques
Simulation without the Artificial Abort: Simplified Proof and Improved Concrete Security for Waters' IBE Scheme

EUROCRYPT '09 Proceedings of the 28th Annual International Conference on Advances in Cryptology: the Theory and Applications of Cryptographic Techniques
Spatial Encryption under Simpler Assumption

ProvSec '09 Proceedings of the 3rd International Conference on Provable Security
Batch pairing delegation

IWSEC'07 Proceedings of the Security 2nd international conference on Advances in information and computer security
Identity-based broadcast encryption with constant size ciphertexts and private keys

ASIACRYPT'07 Proceedings of the Advances in Crypotology 13th international conference on Theory and application of cryptology and information security
Identity-based threshold key-insulated encryption without random oracles

CT-RSA'08 Proceedings of the 2008 The Cryptopgraphers' Track at the RSA conference on Topics in cryptology
Error-tolerant searchable encryption

ICC'09 Proceedings of the 2009 IEEE international conference on Communications
Broadcast encryption with multiple trust authorities

LATINCRYPT'10 Proceedings of the First international conference on Progress in cryptology: cryptology and information security in Latin America
New constructions for identity-based unidirectional proxy re-encryption

Journal of Computer Science and Technology
Expressive key-policy attribute-based encryption with constant-size ciphertexts

PKC'11 Proceedings of the 14th international conference on Practice and theory in public key cryptography conference on Public key cryptography
Decentralizing attribute-based encryption

EUROCRYPT'11 Proceedings of the 30th Annual international conference on Theory and applications of cryptographic techniques: advances in cryptology
New fully secure hierarchical identity-based encryption with constant size ciphertexts

ISPEC'11 Proceedings of the 7th international conference on Information security practice and experience
Attribute-based encryption schemes with constant-size ciphertexts

Theoretical Computer Science
Fully CCA2 secure identity-based broadcast encryption with black-box accountable authority

Journal of Systems and Software
Hierarchical conditional proxy re-encryption

Computer Standards & Interfaces
Functional encryption for inner product: achieving constant-size ciphertexts with adaptive security or support for negation

PKC'10 Proceedings of the 13th international conference on Practice and Theory in Public Key Cryptography
Ciphertext-policy delegatable hidden vector encryption and its application to searchable encryption in multi-user setting

IMACC'11 Proceedings of the 13th IMA international conference on Cryptography and Coding
Achieving short ciphertexts or short secret-keys for adaptively secure general inner-product encryption

CANS'11 Proceedings of the 10th international conference on Cryptology and Network Security
Privacy-preserving identity-based broadcast encryption

Information Fusion
Scalable group signatures with revocation

EUROCRYPT'12 Proceedings of the 31st Annual international conference on Theory and Applications of Cryptographic Techniques

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we introduce a new primitive called identity-based encryption with wildcard key derivation (WKD-IBE, or "wicked IBE") that enhances the concept of hierarchical identity-based encryption (HIBE) by allowing more general key delegation patterns. A secret key is derived for a vector of identity strings, where entries can be left blank using a wildcard. This key can then be used to derive keys for any pattern that replaces wildcards with concrete identity strings. For example, one may want to allow the university's head system administrator to derive secret keys (and hence the ability to decrypt) for all departmental sysadmin email addresses sysadmin@*.univ.edu, where * is a wildcard that can be replaced with any string. We provide appropriate security notions and provably secure instantiations with different tradeoffs in terms of ciphertext size and efficiency. We also present a generic construction of identity-based broadcast encryption (IBBE) from any WKD-IBE scheme. One of our instantiation yields an IBBE scheme with constant ciphertext size.