Revocable hierarchical identity-based broadcast encryption

Dawei Li; Jianwei Liu; Zongyang Zhang; Qianhong Wu; Weiran Liu

doi:10.26599/TST.2018.9010023

Revocable hierarchical identity-based broadcast encryption

Dawei Li
, Jianwei Liu
, Zongyang Zhang^*
, Qianhong Wu
, Weiran Liu

^*Corresponding author for this work

School of Cyber Science and Technology

Beihang University

Research output: Contribution to journal › Article › peer-review

12 Scopus citations

Abstract

Hierarchical Identity-Based Broadcast Encryption (HIBBE) organizes users into a tree-like structure, and it allows users to delegate their decryption ability to subordinates and enable encryption to any subset of users while only intended users can decrypt. However, current HIBBE schemes do not support efficient revocation of private keys. Here, a new primitive called Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE) is formalized that allows revocation of the HIBBE. Ciphertext indistinguishability is defined against the selectively Bounded Revocable Identity-Vector-Set and Chosen-Plaintext Attack (IND-sBRIVS-CPA). An IND-sBRIVS-CPA secure RHIBBE scheme is constructed with efficient revocation on prime-order bilinear groups. The unbounded version of the scheme is also shown to be secure but a little weaker than the former under the decisional n-Weak Bilinear Diffie-Hellman inversion assumption.

Original language	English
Pages (from-to)	539-549
Number of pages	11
Journal	Tsinghua Science and Technology
Volume	23
Issue number	5
DOIs	https://doi.org/10.26599/TST.2018.9010023
State	Published - Oct 2018

Keywords

Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE)
provable security
revocation

Access to Document

10.26599/TST.2018.9010023

Cite this

@article{265be1d539794171bacb114447ab9b6d,

title = "Revocable hierarchical identity-based broadcast encryption",

abstract = "Hierarchical Identity-Based Broadcast Encryption (HIBBE) organizes users into a tree-like structure, and it allows users to delegate their decryption ability to subordinates and enable encryption to any subset of users while only intended users can decrypt. However, current HIBBE schemes do not support efficient revocation of private keys. Here, a new primitive called Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE) is formalized that allows revocation of the HIBBE. Ciphertext indistinguishability is defined against the selectively Bounded Revocable Identity-Vector-Set and Chosen-Plaintext Attack (IND-sBRIVS-CPA). An IND-sBRIVS-CPA secure RHIBBE scheme is constructed with efficient revocation on prime-order bilinear groups. The unbounded version of the scheme is also shown to be secure but a little weaker than the former under the decisional n-Weak Bilinear Diffie-Hellman inversion assumption.",

keywords = "Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE), provable security, revocation",

author = "Dawei Li and Jianwei Liu and Zongyang Zhang and Qianhong Wu and Weiran Liu",

note = "Publisher Copyright: {\textcopyright} 2018 Tsinghua University Press.",

year = "2018",

month = oct,

doi = "10.26599/TST.2018.9010023",

language = "英语",

volume = "23",

pages = "539--549",

journal = "Tsinghua Science and Technology",

issn = "1007-0214",

publisher = "Tsinghua University Press",

number = "5",

}

TY - JOUR

T1 - Revocable hierarchical identity-based broadcast encryption

AU - Li, Dawei

AU - Liu, Jianwei

AU - Zhang, Zongyang

AU - Wu, Qianhong

AU - Liu, Weiran

PY - 2018/10

Y1 - 2018/10

N2 - Hierarchical Identity-Based Broadcast Encryption (HIBBE) organizes users into a tree-like structure, and it allows users to delegate their decryption ability to subordinates and enable encryption to any subset of users while only intended users can decrypt. However, current HIBBE schemes do not support efficient revocation of private keys. Here, a new primitive called Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE) is formalized that allows revocation of the HIBBE. Ciphertext indistinguishability is defined against the selectively Bounded Revocable Identity-Vector-Set and Chosen-Plaintext Attack (IND-sBRIVS-CPA). An IND-sBRIVS-CPA secure RHIBBE scheme is constructed with efficient revocation on prime-order bilinear groups. The unbounded version of the scheme is also shown to be secure but a little weaker than the former under the decisional n-Weak Bilinear Diffie-Hellman inversion assumption.

AB - Hierarchical Identity-Based Broadcast Encryption (HIBBE) organizes users into a tree-like structure, and it allows users to delegate their decryption ability to subordinates and enable encryption to any subset of users while only intended users can decrypt. However, current HIBBE schemes do not support efficient revocation of private keys. Here, a new primitive called Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE) is formalized that allows revocation of the HIBBE. Ciphertext indistinguishability is defined against the selectively Bounded Revocable Identity-Vector-Set and Chosen-Plaintext Attack (IND-sBRIVS-CPA). An IND-sBRIVS-CPA secure RHIBBE scheme is constructed with efficient revocation on prime-order bilinear groups. The unbounded version of the scheme is also shown to be secure but a little weaker than the former under the decisional n-Weak Bilinear Diffie-Hellman inversion assumption.

KW - Revocable Hierarchical Identity-Based Broadcast Encryption (RHIBBE)

KW - provable security

KW - revocation

UR - https://www.scopus.com/pages/publications/85053668849

U2 - 10.26599/TST.2018.9010023

DO - 10.26599/TST.2018.9010023

M3 - 文章

AN - SCOPUS:85053668849

SN - 1007-0214

VL - 23

SP - 539

EP - 549

JO - Tsinghua Science and Technology

JF - Tsinghua Science and Technology

IS - 5

ER -

Revocable hierarchical identity-based broadcast encryption

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this