Unidirectional Chosen-Ciphertext Secure Proxy Re-Encryption

Benoit Libert 1 Damien Vergnaud 2
1 Groupe Crypto
ICTEAM - Institute of Information and Communication Technologies, Electronics and Applied Mathematics
2 CASCADE - Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities
DI-ENS - Département d'informatique de l'École normale supérieure, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR 8548
Abstract : In 1998, Blaze, Bleumer and Strauss introduced a cryptographic primitive called proxy re-encryption in which a proxy can transform-without seeing the plaintext-a ciphertext encrypted under one key into an encryption of the same plaintext under another key. The concept has recently drawn renewed interest. Notably, Canetti and Hohenberger showed how to properly define (and realize) chosen-ciphertext security for the primitive. Their system is bidirectional as the translation key allows converting ciphertexts in both directions. This paper presents the first unidirectional proxy re-encryption schemes with chosen-ciphertext security in the standard model (i.e., without the random oracle idealization). The first system provably fits a unidirectional extension of the Canetti-Hohenberger security model. As a second contribution, the paper considers a more realistic adversarial model where attackers may choose dishonest users' keys on their own. It is shown how to modify the first scheme to achieve security in the latter scenario. At a moderate expense, the resulting system provides additional useful properties such as non-interactive temporary delegations. Both constructions are efficient and rely on mild complexity assumptions in bilinear groups. Like the Canetti-Hohenberger scheme, they meet a relaxed flavor of chosen-ciphertext security introduced by Canetti, Krawczyk and Nielsen.
Type de document :
Article dans une revue
IEEE Transactions on Information Theory, Institute of Electrical and Electronics Engineers, 2011, 57 (3), pp.1786 - 1802. 〈10.1109/TIT.2011.2104470〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01110041
Contributeur : Brigitte Briot <>
Soumis le : mardi 27 janvier 2015 - 13:46:17
Dernière modification le : vendredi 25 mai 2018 - 12:02:05

Lien texte intégral

Identifiants

Collections

Citation

Benoit Libert, Damien Vergnaud. Unidirectional Chosen-Ciphertext Secure Proxy Re-Encryption. IEEE Transactions on Information Theory, Institute of Electrical and Electronics Engineers, 2011, 57 (3), pp.1786 - 1802. 〈10.1109/TIT.2011.2104470〉. 〈hal-01110041〉

Partager

Métriques

Consultations de la notice

174