Mediated Traceable Anonymous Encryption

Abstract : The notion of key privacy for asymmetric encryption schemes was formally defined by Bellare, Boldyreva, Desai and Pointcheval in 2001: it states that an eavesdropper in possession of a ciphertext is not able to tell which specifi key, out of a set of known public keys, is the one under which the ciphertext was created. Since anonymity can be misused by dishonest users, some situations could require a tracing authority capable of revoking key privacy when illegal behavior is detected. Prior works on traceable anonymous encryption miss a critical point: an encryption scheme may produce a covert channel which malicious users can use to communicate illegally using ciphertexts that trace back to nobody or, even worse, to some honest user. In this paper, we examine subliminal channels in the context of traceable anonymous encryption and we introduce a new primitive termed mediated traceable anonymous encryption that provides confidentiality and anonymity while preventing malicious users to embed subliminal messages in ciphertexts. In our model, all ciphertexts pass through a mediator (or possibly several successive mediators) and our goal is to design protocols where the absence of covert channels is guaranteed as long as the mediator is honest, while semantic security and key privacy hold even if the mediator is dishonest. We give security definitions for this new primitive and constructions meeting the formalized requirements. Our generic construction is fairly eficient, with ciphertexts that have logarithmic size in the number of group members, while preventing collusions. The security analysis requires classical complexity assumptions in the standard model.
Type de document :
Communication dans un congrès
First International Conference on Cryptology and Information Security (LatinCrypt '10), Aug 2010, Puebla, Mexico. Springer, 6212, pp.40--60, 2010, LNCS
Liste complète des métadonnées

Littérature citée [2 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00539540
Contributeur : David Pointcheval <>
Soumis le : mercredi 24 novembre 2010 - 15:39:24
Dernière modification le : mardi 24 avril 2018 - 17:20:13
Document(s) archivé(s) le : vendredi 26 octobre 2012 - 16:46:28

Fichier

2010_latincrypt.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00539540, version 1

Collections

INRIA | UVSQ | PSL

Citation

Malika Izabachène, David Pointcheval, Damien Vergnaud. Mediated Traceable Anonymous Encryption. First International Conference on Cryptology and Information Security (LatinCrypt '10), Aug 2010, Puebla, Mexico. Springer, 6212, pp.40--60, 2010, LNCS. 〈inria-00539540〉

Partager

Métriques

Consultations de la notice

232

Téléchargements de fichiers

186