New Techniques for Dual System Encryption and Fully Secure HIBE with Short Ciphertexts

Lewko, Allison; Waters, Brent

doi:10.1007/978-3-642-11799-2_27

Cited by 402 publications

(506 citation statements)

References 21 publications

Supporting

Mentioning

505

Contrasting

Unclassified

Order By: Relevance

“…For example, the systems presented in [27,25,29,28,26] provide diverse and advanced functionalities like identity-based encryption (IBE), hierarchical identity-based encryption (HIBE), and attribute-based encryption with strong security guarantees (e.g. full security, leakage-resilience) proven from static assumptions.…”

Section: Introductionmentioning

confidence: 99%

“…A reduction to DLIN is only provided for the most basic variant of the subgroup decision assumption, and does not extend (for example) to the general subgroup decision assumption from [3]. Second, the step of translating the proof fails for many schemes, including all of the recent composite order schemes employing the dual system encryption proof methodology [27,25,29,28,26]. These schemes use only canceling and not projecting, and so this is unrelated to the limitations discussed in [30].…”

Section: Introductionmentioning

confidence: 99%

“…As Freeman points out, "the recent identity-based encryption scheme of Lewko and Waters [27] uses explicitly in its security proof the fact that the group G has two subgroups of relatively prime order". The major obstacle here is not translating the description of the scheme or its assumptions -instead the problem lies in translating a trick in the security proof.…”

Section: Introductionmentioning

confidence: 99%

“…This includes schemes like [27], which could not be handled by Freeman's methods. Our tools are based in the dual pairing vector space framework initiated by Okamoto and Takashima [31,32].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Tools for Simulating Features of Composite Order Bilinear Groups in the Prime Order Setting

Lewko

2012

Lecture Notes in Computer Science

Self Cite

186

206

View full text Add to dashboard Cite

In this paper, we explore a general methodology for converting composite order pairingbased cryptosystems into the prime order setting. We employ the dual pairing vector space approach initiated by Okamoto and Takashima and formulate versatile tools in this framework that can be used to translate composite order schemes for which the prior techniques of Freeman were insufficient. Our techniques are typically applicable for composite order schemes relying on the canceling property and proven secure from variants of the subgroup decision assumption, and will result in prime order schemes that are proven secure from the decisional linear assumption. As an instructive example, we obtain a translation of the Lewko-Waters composite order IBE scheme. This provides a close analog of the BonehBoyen IBE scheme that is proven fully secure from the decisional linear assumption. We also provide a translation of the Lewko-Waters unbounded HIBE scheme.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Tools for Simulating Features of Composite Order Bilinear Groups in the Prime Order Setting

Lewko

2012

Lecture Notes in Computer Science

Self Cite

186

206

View full text Add to dashboard Cite

show abstract

“…The DBDH assumption is extremely appealing in its simplicity: the assumption is simple to state, the ensuing schemes as well as the proof of security are typically extremely simple too; these schemes have also been standardized [8]. Furthermore, we continue to draw on the techniques developed in these early works: the development of lattice-based (hierarchical) identitybased encryption ((H)IBE) schemes in [11,1,2] parallel corresponding DBDH-based schemes in [10,4,20] and the simplest instantiations of the dual system encryption framework in [16,17] proceed by "embedding" prior DBDH-based schemes into composite-order groups. The fundamental role that the DBDH assumption plays in functional encryption motivates us to understand the limitations on the functionalities that we can realize from the DBDH assumption: namely,…”

Section: Introductionmentioning

confidence: 99%

Doubly spatial encryption from DBDH

Chen

Wee²

2014

Theoretical Computer Science

View full text Add to dashboard Cite

Abstract. Functional encryption is an emerging paradigm for public-key encryption which enables fine-grained control of access to encrypted data. Doubly-spatial encryption (DSE) captures all functionalities that we know how to realize via pairings-based assumptions, including (H)IBE, IPE, NIPE, CP-ABE and KP-ABE. In this paper, we propose a construction of DSE from the decisional bilinear Diffie-Hellman (DBDH) assumption. This also yields the first non-zero inner product encryption (NIPE) scheme based on DBDH. Quite surprisingly, we know how to realize NIPE and DSE from stronger assumptions in bilinear groups but not from the basic DBDH assumption. Along the way, we present a novel algebraic characterization of no instances for the DSE functionality, which we use crucially in the proof of security.

show abstract

Foundation of Attribute‐Based Encryption

2023

Attribute‐based Encryption (ABE)

View full text Add to dashboard Cite

New Techniques for Dual System Encryption and Fully Secure HIBE with Short Ciphertexts

Cited by 402 publications

References 21 publications

Tools for Simulating Features of Composite Order Bilinear Groups in the Prime Order Setting

Tools for Simulating Features of Composite Order Bilinear Groups in the Prime Order Setting

Doubly spatial encryption from DBDH

Foundation of Attribute‐Based Encryption

Contact Info

Product

Resources

About