A Public Key Identity-Based Revocation Scheme:

Olivier Blazy; Sayantan Mukherjee

doi:10.1007/978-3-031-58868-6_1

A Public Key Identity-Based Revocation Scheme:

Olivier Blazy, Sayantan Mukherjee

Indian Institute of Technology Jammu

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Multi-Recipient Encryption allows users to send secure messages to any chosen set of registered users. In ACISP’21, Blazy et al. proposed a multi-recipient encryption with attribute-hiding revocation where ciphertexts do not reveal any information about the users that have been revoked. However, their work only achieved secret key instantiations of multi-recipient encryption with attribute-hiding revocation. Our work gives the first public-key Identity-Based Revocation with fully attribute-hiding security and computational function privacy. For this purpose, we construct the first fully attribute-hiding Non-zero Inner-Product Encryption (NIPE) with computational function privacy. Toward this goal, we also study the relationship between Zero Inner-Product Encryption (ZIPE) and Non-Zero Inner-Product Encryption (NIPE). We propose a compiler to convert a fully attribute-hiding secure ZIPE into a fully attribute-hiding secure NIPE. We then construct the ZIPE with the necessary security properties. This construction along with the compiler produces the first NIPE with the said full attribute-hiding security. We also argue that this NIPE construction achieves computational function privacy due to a falsifiable assumption. A variation of Attrapadung and Libert’s transformation (PKC’11) on our NIPE thus achieves the first attribute-hiding identity-based revocation (IBR) scheme in the standard model. We further show that our IBR construction achieves function privacy under another novel assumption which we show to be falsifiable.

Original language	English
Title of host publication	Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings
Editors	Elisabeth Oswald
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	3-24
Number of pages	22
ISBN (Print)	9783031588679
DOIs	https://doi.org/10.1007/978-3-031-58868-6_1
Publication status	Published - 1 Jan 2024
Event	Cryptographer's Track at the RSA Conference, CT-RSA 2024 - San Francisco, United States Duration: 6 May 2024 → 9 May 2024

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14643 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	Cryptographer's Track at the RSA Conference, CT-RSA 2024
Country/Territory	United States
City	San Francisco
Period	6/05/24 → 9/05/24

Access to Document

10.1007/978-3-031-58868-6_1

Cite this

Blazy, O., & Mukherjee, S. (2024). A Public Key Identity-Based Revocation Scheme: In E. Oswald (Ed.), Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings (pp. 3-24). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14643 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-58868-6_1

Blazy, Olivier ; Mukherjee, Sayantan. / A Public Key Identity-Based Revocation Scheme:. Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings. editor / Elisabeth Oswald. Springer Science and Business Media Deutschland GmbH, 2024. pp. 3-24 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{71cdb12fb0c34e7c9c79674d3e237827,

title = "A Public Key Identity-Based Revocation Scheme:",

abstract = "Multi-Recipient Encryption allows users to send secure messages to any chosen set of registered users. In ACISP{\textquoteright}21, Blazy et al. proposed a multi-recipient encryption with attribute-hiding revocation where ciphertexts do not reveal any information about the users that have been revoked. However, their work only achieved secret key instantiations of multi-recipient encryption with attribute-hiding revocation. Our work gives the first public-key Identity-Based Revocation with fully attribute-hiding security and computational function privacy. For this purpose, we construct the first fully attribute-hiding Non-zero Inner-Product Encryption (NIPE) with computational function privacy. Toward this goal, we also study the relationship between Zero Inner-Product Encryption (ZIPE) and Non-Zero Inner-Product Encryption (NIPE). We propose a compiler to convert a fully attribute-hiding secure ZIPE into a fully attribute-hiding secure NIPE. We then construct the ZIPE with the necessary security properties. This construction along with the compiler produces the first NIPE with the said full attribute-hiding security. We also argue that this NIPE construction achieves computational function privacy due to a falsifiable assumption. A variation of Attrapadung and Libert{\textquoteright}s transformation (PKC{\textquoteright}11) on our NIPE thus achieves the first attribute-hiding identity-based revocation (IBR) scheme in the standard model. We further show that our IBR construction achieves function privacy under another novel assumption which we show to be falsifiable.",

author = "Olivier Blazy and Sayantan Mukherjee",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2024.; Cryptographer's Track at the RSA Conference, CT-RSA 2024 ; Conference date: 06-05-2024 Through 09-05-2024",

year = "2024",

month = jan,

day = "1",

doi = "10.1007/978-3-031-58868-6\_1",

language = "English",

isbn = "9783031588679",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "3--24",

editor = "Elisabeth Oswald",

booktitle = "Topics in Cryptology – CT-RSA 2024 - Cryptographers{\textquoteright} Track at the RSA Conference 2024, Proceedings",

}

Blazy, O & Mukherjee, S 2024, A Public Key Identity-Based Revocation Scheme: in E Oswald (ed.), Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14643 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 3-24, Cryptographer's Track at the RSA Conference, CT-RSA 2024, San Francisco, United States, 6/05/24. https://doi.org/10.1007/978-3-031-58868-6_1

A Public Key Identity-Based Revocation Scheme: / Blazy, Olivier; Mukherjee, Sayantan.
Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings. ed. / Elisabeth Oswald. Springer Science and Business Media Deutschland GmbH, 2024. p. 3-24 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14643 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A Public Key Identity-Based Revocation Scheme:

AU - Blazy, Olivier

AU - Mukherjee, Sayantan

PY - 2024/1/1

Y1 - 2024/1/1

N2 - Multi-Recipient Encryption allows users to send secure messages to any chosen set of registered users. In ACISP’21, Blazy et al. proposed a multi-recipient encryption with attribute-hiding revocation where ciphertexts do not reveal any information about the users that have been revoked. However, their work only achieved secret key instantiations of multi-recipient encryption with attribute-hiding revocation. Our work gives the first public-key Identity-Based Revocation with fully attribute-hiding security and computational function privacy. For this purpose, we construct the first fully attribute-hiding Non-zero Inner-Product Encryption (NIPE) with computational function privacy. Toward this goal, we also study the relationship between Zero Inner-Product Encryption (ZIPE) and Non-Zero Inner-Product Encryption (NIPE). We propose a compiler to convert a fully attribute-hiding secure ZIPE into a fully attribute-hiding secure NIPE. We then construct the ZIPE with the necessary security properties. This construction along with the compiler produces the first NIPE with the said full attribute-hiding security. We also argue that this NIPE construction achieves computational function privacy due to a falsifiable assumption. A variation of Attrapadung and Libert’s transformation (PKC’11) on our NIPE thus achieves the first attribute-hiding identity-based revocation (IBR) scheme in the standard model. We further show that our IBR construction achieves function privacy under another novel assumption which we show to be falsifiable.

AB - Multi-Recipient Encryption allows users to send secure messages to any chosen set of registered users. In ACISP’21, Blazy et al. proposed a multi-recipient encryption with attribute-hiding revocation where ciphertexts do not reveal any information about the users that have been revoked. However, their work only achieved secret key instantiations of multi-recipient encryption with attribute-hiding revocation. Our work gives the first public-key Identity-Based Revocation with fully attribute-hiding security and computational function privacy. For this purpose, we construct the first fully attribute-hiding Non-zero Inner-Product Encryption (NIPE) with computational function privacy. Toward this goal, we also study the relationship between Zero Inner-Product Encryption (ZIPE) and Non-Zero Inner-Product Encryption (NIPE). We propose a compiler to convert a fully attribute-hiding secure ZIPE into a fully attribute-hiding secure NIPE. We then construct the ZIPE with the necessary security properties. This construction along with the compiler produces the first NIPE with the said full attribute-hiding security. We also argue that this NIPE construction achieves computational function privacy due to a falsifiable assumption. A variation of Attrapadung and Libert’s transformation (PKC’11) on our NIPE thus achieves the first attribute-hiding identity-based revocation (IBR) scheme in the standard model. We further show that our IBR construction achieves function privacy under another novel assumption which we show to be falsifiable.

U2 - 10.1007/978-3-031-58868-6_1

DO - 10.1007/978-3-031-58868-6_1

M3 - Conference contribution

AN - SCOPUS:85193590140

SN - 9783031588679

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 3

EP - 24

BT - Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings

A2 - Oswald, Elisabeth

PB - Springer Science and Business Media Deutschland GmbH

T2 - Cryptographer's Track at the RSA Conference, CT-RSA 2024

Y2 - 6 May 2024 through 9 May 2024

ER -

Blazy O, Mukherjee S. A Public Key Identity-Based Revocation Scheme: In Oswald E, editor, Topics in Cryptology – CT-RSA 2024 - Cryptographers’ Track at the RSA Conference 2024, Proceedings. Springer Science and Business Media Deutschland GmbH. 2024. p. 3-24. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-58868-6_1

A Public Key Identity-Based Revocation Scheme:

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this