Efficient Multi-receiver Identity-Based Encryption and Its Application to Broadcast Encryption
نویسندگان
چکیده
In this paper, we construct an efficient “multi-receiver identity-based encryption scheme”. Our scheme only needs one (or none if precomputed and provided as a public parameter) pairing computation to encrypt a single message for n receivers, in contrast to the simple construction that re-encrypts a message n times using Boneh and Franklin’s identity-based encryption scheme, considered previously in the literature. We extend our scheme to give adaptive chosen ciphertext security. We support both schemes with security proofs under precisely defined formal security model. Finally, we discuss how our scheme can lead to a highly efficient public key broadcast encryption scheme based on the “subset-cover” framework. Disciplines Physical Sciences and Mathematics Publication Details Baek, J., Safavi-Naini, R. & Susilo, W. (2005). Efficient Multi-receiver identity-based encryption and its application to broadcast encryption. In S. Vaudenay (Eds.), International Workshop on Practice and Theory in Public Key Cryptography (pp. 380-397). Germany: Springer. This conference paper is available at Research Online: http://ro.uow.edu.au/infopapers/2799 Efficient Multi-Receiver Identity-Based Encryption and Its Application to Broadcast Encryption Joonsang Baek Reihaneh Safavi-Naini Willy Susilo Centre for Information Security Research School of Information Technology and Computer Science University of Wollongong Wollongong NSW 2522, Australia {baek, rei, wsusilo}@uow.edu.au
منابع مشابه
Design and formal verification of DZMBE+
In this paper, a new broadcast encryption scheme is presented based on threshold secret sharing and secure multiparty computation. This scheme is maintained to be dynamic in that a broadcaster can broadcast a message to any of the dynamic groups of users in the system and it is also fair in the sense that no cheater is able to gain an unfair advantage over other users. Another important feature...
متن کاملAugmented Broadcaster Identity-based Broadcast Encryption
Identity-based Broadcast Encryption (IBBE) has the inherent key escrow problem that Private Key Generator (PKG) can fully determine the user’s private key, which is an obstacle of the application of IBBE. The existing approaches to solving key escrow problem need the user to submit identity to multiple PKGs or interactions between PKG and the user in the private key extraction phase. For Point-...
متن کاملImproved Anonymous Multi-receiver Identity-Based Encryption
In 2010, Fan et al. proposed an efficient anonymous multi-receiver identity-based encryption scheme. This scheme allows a sender to send an encrypted message to a set of designated receivers while preserving receiver anonymity. The scheme is highly efficient for each receiver as it requires only two pairing operations. However, we found that the scheme failed to protect receiver anonymity and t...
متن کاملA New Type of ID-based Encryption System and Its Application to Pay-TV Systems
We proposed a new type of ID-based encryption scheme. Our scheme is different from other schemes on that we use tamper resistant smart card to store the private key and do the decryption job for the users. The user knows nothing about the private key. Our scheme is identical to ElGamal encryption scheme, but using RSA framework to avoid ID replacement attack. In a way, our scheme can be regarde...
متن کاملAnalysis on Hu et al.'s Identity-based Broadcast Encryption
Analysis is given on Hu et al.’s efficient identity-based broadcast encryption (IBBE) scheme published in Journal of Computers, Vol. 5, No. 3, March 2010. Two major flaws are described. One is that valid group members outside the receiver set can still decrypt the ciphertext, which contradicts the authors’ definition for IBBE. The other is that, given a valid private key, it is easy to generate...
متن کامل