More Efficient Adaptively Secure Lattice-Based IBE with Equality Test in the Standard Model

Asano, Kyoichi; Emura, Keita; Takayasu, Atsushi

doi:10.1007/978-3-031-22390-7_5

Cited by 4 publications

(2 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, we can employ a 3-level HIBE scheme that satisfies adaptive security only for the first level and selective security for the other levels. Asano-Emura-Takayasu (AET) [39] introduced such 3-level HIBE schemes where the first level is either the Yamada IBE scheme [38] or the Jager-Kurek- 1 This is a reason why the keyword guessing attack has been widely researched: an adversary A, that has a trapdoor, generates a PEKS ciphertext for a keyword 𝑘𝑤 chosen by A and runs the test algorithm with the trapdoor. If the test algorithm outputs 1, then A can detect that 𝑘𝑤 is associated to the trapdoor.…”

Section: Our Contributionmentioning

confidence: 99%

Outsider-Anonymous Broadcast Encryption with Keyword Search: Generic Construction, CCA Security, and with Sublinear Ciphertexts

EMURA,

KAJITA,

OHTAKE

2024

IEICE Trans. Fundamentals

View full text Add to dashboard Cite

As a multi-receiver variant of public key encryption with keyword search (PEKS), broadcast encryption with keyword search (BEKS) has been proposed (Attrapadung et al. at ASIACRYPT 2006/Chatterjee-Mukherjee at INDOCRYPT 2018. Unlike broadcast encryption, no receiver anonymity is considered because the test algorithm takes a set of receivers as input and thus a set of receivers needs to be contained in a ciphertext. In this paper, we propose a generic construction of BEKS from anonymous and weakly robust 3-level hierarchical identity-based encryption (HIBE). The proposed generic construction provides outsider anonymity, where an adversary is allowed to obtain secret keys of outsiders who do not belong to the challenge sets, and provides sublinear-size ciphertext in terms of the number of receivers. Moreover, the proposed construction considers security against chosen-ciphertext attack (CCA) where an adversary is allowed to access a test oracle in the searchable encryption context. The proposed generic construction can be seen as an extension to the Fazio-Perera generic construction of anonymous broadcast encryption (PKC 2012) from anonymous and weakly robust identity-based encryption (IBE) and the Boneh et al. generic construction of PEKS (EUROCRYPT 2004) from anonymous IBE. We run the Fazio-Perera construction employs on the first-level identity and run the Boneh et al. generic construction on the second-level identity, i.e., a keyword is regarded as a second-level identity. The third-level identity is used for providing CCA security by employing one-time signatures. We also introduce weak robustness in the HIBE setting, and demonstrate that the Abdalla et al. generic transformation (TCC 2010/JoC 2018) for providing weak robustness to IBE works for HIBE with an appropriate parameter setting. We also explicitly introduce attractive concrete instantiations of the proposed generic construction from pairings and lattices, respectively.

show abstract

Section: Our Contributionmentioning

confidence: 99%

Outsider-Anonymous Broadcast Encryption with Keyword Search: Generic Construction, CCA Security, and with Sublinear Ciphertexts

EMURA,

KAJITA,

OHTAKE

2024

IEICE Trans. Fundamentals

View full text Add to dashboard Cite

show abstract

“…1.2 Differences from the Proceedings Version [23] In the proceedings version [23], we only used Yamada's IBE scheme [17] to instantiate the IBEET scheme from the proposed construction. However, there is a more efficient IBE † † In this paper, we do not follow Lee et al's argument [2] in a security proof but follow Asano et al's one [22] which is an attribute-based extension of Lee et al's work with a refined proof.…”

Section: Our Contributionmentioning

confidence: 99%

More Efficient Adaptively Secure Lattice-Based IBE with Equality Test in the Standard Model

ASANO,

EMURA,

TAKAYASU

2024

IEICE Trans. Fundamentals

Self Cite

View full text Add to dashboard Cite

Identity-based encryption with equality test (IBEET) is a variant of identity-based encryption (IBE), in which any user with trapdoors can check whether two ciphertexts are encryption of the same plaintext. Although several lattice-based IBEET schemes have been proposed, they have drawbacks in either security or efficiency. Specifically, most IBEET schemes only satisfy selective security, while public keys of adaptively secure schemes in the standard model consist of matrices whose numbers are linear in the security parameter. In other words, known lattice-based IBEET schemes perform poorly compared to the state-of-the-art lattice-based IBE schemes (without equality test). In this paper, we propose a semi-generic construction of CCA-secure lattice-based IBEET from a certain class of lattice-based IBE schemes. As a result, we obtain the first lattice-based IBEET schemes with adaptive security and CCA security in the standard model without sacrificing efficiency. This is because, our semi-generic construction can use several state-of-the-art lattice-based IBE schemes as underlying schemes, e.g. Yamada's IBE scheme (CRYPTO'17).

show abstract

On the Feasibility of Identity-Based Encryption with Equality Test Against Insider Attacks

Emura

2024

Information Security and Privacy

View full text Add to dashboard Cite

More Efficient Adaptively Secure Lattice-Based IBE with Equality Test in the Standard Model

Cited by 4 publications

References 22 publications

Outsider-Anonymous Broadcast Encryption with Keyword Search: Generic Construction, CCA Security, and with Sublinear Ciphertexts

Outsider-Anonymous Broadcast Encryption with Keyword Search: Generic Construction, CCA Security, and with Sublinear Ciphertexts

More Efficient Adaptively Secure Lattice-Based IBE with Equality Test in the Standard Model

On the Feasibility of Identity-Based Encryption with Equality Test Against Insider Attacks

Contact Info

Product

Resources

About