(Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard

Anaïs Barthoulot; Olivier Blazy; Sébastien Canard

doi:10.1007/978-3-031-20974-1_7

(Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard

Anaïs Barthoulot
, Olivier Blazy
, Sébastien Canard

Orange Innovation
XLIM Institut de Recherche

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

Résumé

Several broadcast encryption (BE) constructions have been proposed since Fiat and Naor introduced the concept, some achieving short parameters size while others achieve better security. Since 1994, a lot of alternatives to BE have moreover been additionally proposed, such as the broadcast and trace (BT) primitive which is a combination of broadcast encryption and traitor tracing. Among the other variants of BE, the notion of augmented BE (AugBE), introduced by Boneh and Waters in 2006, corresponds to a BE scheme with the particularity that the encryption algorithm takes an index as an additional parameter. If an AugBE scheme is both message and index hiding, it has been proved that it can generically be used to construct a secure BT scheme. Hence, any new result related to the former gives an improvement to the latter. In this paper, we first show that both BE and AugBE can be obtained by using an identity-based encryption scheme with wildcard (WIBE). We also introduce the new notion of anonymous AugBE, where the used users set is hidden, and prove that it implies index hiding. We then provide two different WIBE constructions. The first one has constant size ciphertext and used to construct a new constant size ciphertext BE scheme with adaptive CPA security, in the standard model (under the SXDH assumption). The second WIBE provides pattern-hiding, a new definition we introduced, and serves as a basis for the first anonymous AugBE scheme (and subsequently a BT scheme since our scheme is also index hiding by nature) in the literature, with adaptive security in the standard model (under the XDLin assumption).

langue originale	Anglais
titre	Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings
rédacteurs en chef	Alastair R. Beresford, Arpita Patra, Emanuele Bellini
Editeur	Springer Science and Business Media Deutschland GmbH
Pages	143-164
Nombre de pages	22
ISBN (imprimé)	9783031209734
Les DOIs	https://doi.org/10.1007/978-3-031-20974-1_7
état	Publié - 1 janv. 2022
Evénement	21st International Conference on Cryptology and Network Security, CANS 2022 - Abu Dhabi, Émirats arabes unis Durée: 13 nov. 2022 → 16 nov. 2022

Série de publications

Nom	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13641 LNCS
ISSN (imprimé)	0302-9743
ISSN (Electronique)	1611-3349

Une conférence

Une conférence	21st International Conference on Cryptology and Network Security, CANS 2022
Pays/Territoire	Émirats arabes unis
La ville	Abu Dhabi
période	13/11/22 → 16/11/22

Accès au document

10.1007/978-3-031-20974-1_7

Autres fichiers et liens

Lien vers la publication dans Scopus

Contient cette citation

Barthoulot, A., Blazy, O., & Canard, S. (2022). (Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard. Dans A. R. Beresford, A. Patra, & E. Bellini (eds.), Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings (p. 143-164). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol 13641 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-20974-1_7

Barthoulot, Anaïs ; Blazy, Olivier ; Canard, Sébastien. / (Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard. Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings. Editeur / Alastair R. Beresford ; Arpita Patra ; Emanuele Bellini. Springer Science and Business Media Deutschland GmbH, 2022. p. 143-164 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{21d5191d703345edb9eaf7b505c851f8,

title = "(Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard",

abstract = "Several broadcast encryption (BE) constructions have been proposed since Fiat and Naor introduced the concept, some achieving short parameters size while others achieve better security. Since 1994, a lot of alternatives to BE have moreover been additionally proposed, such as the broadcast and trace (BT) primitive which is a combination of broadcast encryption and traitor tracing. Among the other variants of BE, the notion of augmented BE (AugBE), introduced by Boneh and Waters in 2006, corresponds to a BE scheme with the particularity that the encryption algorithm takes an index as an additional parameter. If an AugBE scheme is both message and index hiding, it has been proved that it can generically be used to construct a secure BT scheme. Hence, any new result related to the former gives an improvement to the latter. In this paper, we first show that both BE and AugBE can be obtained by using an identity-based encryption scheme with wildcard (WIBE). We also introduce the new notion of anonymous AugBE, where the used users set is hidden, and prove that it implies index hiding. We then provide two different WIBE constructions. The first one has constant size ciphertext and used to construct a new constant size ciphertext BE scheme with adaptive CPA security, in the standard model (under the SXDH assumption). The second WIBE provides pattern-hiding, a new definition we introduced, and serves as a basis for the first anonymous AugBE scheme (and subsequently a BT scheme since our scheme is also index hiding by nature) in the literature, with adaptive security in the standard model (under the XDLin assumption).",

keywords = "Augmented broadcast encryption, Broadcast and trace, Broadcast encryption, Identity based encryption with wildcard",

author = "Ana{\"i}s Barthoulot and Olivier Blazy and S{\'e}bastien Canard",

note = "Publisher Copyright: {\textcopyright} 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 21st International Conference on Cryptology and Network Security, CANS 2022 ; Conference date: 13-11-2022 Through 16-11-2022",

year = "2022",

month = jan,

day = "1",

doi = "10.1007/978-3-031-20974-1\_7",

language = "English",

isbn = "9783031209734",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "143--164",

editor = "Beresford, \{Alastair R.\} and Arpita Patra and Emanuele Bellini",

booktitle = "Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings",

}

Barthoulot, A, Blazy, O & Canard, S 2022, (Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard. Dans AR Beresford, A Patra & E Bellini (eds), Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), VOL. 13641 LNCS, Springer Science and Business Media Deutschland GmbH, p. 143-164, 21st International Conference on Cryptology and Network Security, CANS 2022, Abu Dhabi, Émirats arabes unis, 13/11/22. https://doi.org/10.1007/978-3-031-20974-1_7

(Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard. / Barthoulot, Anaïs; Blazy, Olivier; Canard, Sébastien.
Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings. Ed. / Alastair R. Beresford; Arpita Patra; Emanuele Bellini. Springer Science and Business Media Deutschland GmbH, 2022. p. 143-164 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol 13641 LNCS).

Résultats de recherche: Le chapitre dans un livre, un rapport, une anthologie ou une collection › Contribution à une conférence › Revue par des pairs

TY - GEN

T1 - (Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard

AU - Barthoulot, Anaïs

AU - Blazy, Olivier

AU - Canard, Sébastien

PY - 2022/1/1

Y1 - 2022/1/1

N2 - Several broadcast encryption (BE) constructions have been proposed since Fiat and Naor introduced the concept, some achieving short parameters size while others achieve better security. Since 1994, a lot of alternatives to BE have moreover been additionally proposed, such as the broadcast and trace (BT) primitive which is a combination of broadcast encryption and traitor tracing. Among the other variants of BE, the notion of augmented BE (AugBE), introduced by Boneh and Waters in 2006, corresponds to a BE scheme with the particularity that the encryption algorithm takes an index as an additional parameter. If an AugBE scheme is both message and index hiding, it has been proved that it can generically be used to construct a secure BT scheme. Hence, any new result related to the former gives an improvement to the latter. In this paper, we first show that both BE and AugBE can be obtained by using an identity-based encryption scheme with wildcard (WIBE). We also introduce the new notion of anonymous AugBE, where the used users set is hidden, and prove that it implies index hiding. We then provide two different WIBE constructions. The first one has constant size ciphertext and used to construct a new constant size ciphertext BE scheme with adaptive CPA security, in the standard model (under the SXDH assumption). The second WIBE provides pattern-hiding, a new definition we introduced, and serves as a basis for the first anonymous AugBE scheme (and subsequently a BT scheme since our scheme is also index hiding by nature) in the literature, with adaptive security in the standard model (under the XDLin assumption).

AB - Several broadcast encryption (BE) constructions have been proposed since Fiat and Naor introduced the concept, some achieving short parameters size while others achieve better security. Since 1994, a lot of alternatives to BE have moreover been additionally proposed, such as the broadcast and trace (BT) primitive which is a combination of broadcast encryption and traitor tracing. Among the other variants of BE, the notion of augmented BE (AugBE), introduced by Boneh and Waters in 2006, corresponds to a BE scheme with the particularity that the encryption algorithm takes an index as an additional parameter. If an AugBE scheme is both message and index hiding, it has been proved that it can generically be used to construct a secure BT scheme. Hence, any new result related to the former gives an improvement to the latter. In this paper, we first show that both BE and AugBE can be obtained by using an identity-based encryption scheme with wildcard (WIBE). We also introduce the new notion of anonymous AugBE, where the used users set is hidden, and prove that it implies index hiding. We then provide two different WIBE constructions. The first one has constant size ciphertext and used to construct a new constant size ciphertext BE scheme with adaptive CPA security, in the standard model (under the SXDH assumption). The second WIBE provides pattern-hiding, a new definition we introduced, and serves as a basis for the first anonymous AugBE scheme (and subsequently a BT scheme since our scheme is also index hiding by nature) in the literature, with adaptive security in the standard model (under the XDLin assumption).

KW - Augmented broadcast encryption

KW - Broadcast and trace

KW - Broadcast encryption

KW - Identity based encryption with wildcard

UR - https://www.scopus.com/pages/publications/85142734167

U2 - 10.1007/978-3-031-20974-1_7

DO - 10.1007/978-3-031-20974-1_7

M3 - Conference contribution

AN - SCOPUS:85142734167

SN - 9783031209734

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 143

EP - 164

BT - Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings

A2 - Beresford, Alastair R.

A2 - Patra, Arpita

A2 - Bellini, Emanuele

PB - Springer Science and Business Media Deutschland GmbH

T2 - 21st International Conference on Cryptology and Network Security, CANS 2022

Y2 - 13 November 2022 through 16 November 2022

ER -

Barthoulot A, Blazy O, Canard S. (Augmented) Broadcast Encryption from Identity Based Encryption with Wildcard. Dans Beresford AR, Patra A, Bellini E, rédacteurs en chef, Cryptology and Network Security - 21st International Conference, CANS 2022, Proceedings. Springer Science and Business Media Deutschland GmbH. 2022. p. 143-164. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-20974-1_7