Achieving key privacy without losing CCA security in proxy re-encryption

Jun Shao; Peng Liu; Yuan Zhou

doi:10.1016/j.jss.2011.09.034

Achieving key privacy without losing CCA security in proxy re-encryption

Jun Shao, Peng Liu, Yuan Zhou

Research output: Contribution to journal › Article › peer-review

18 Scopus citations

Abstract

In proxy re-encryption (PRE), a semi-trusted proxy can transform a ciphertext under the delegator's public key into another ciphertext that the delegatee can decrypt by his/her own private key. However, the proxy cannot access the plaintext. Due to its transformation property, proxy re-encryption can be used in many applications, such as encrypted email forwarding. Some of these applications require that the underlying PRE scheme is CCA-secure and key-private. However, to the best of our knowledge, none of the existing PRE schemes satisfy this security requirement in the standard model. In this paper, based on the 5-Extended Decision Bilinear Diffie-Hellman assumption and Decision Diffie-Hellman assumption, we propose the first such PRE scheme, which solves an open problem left by Ateniese et al. (2009).

Original language	English (US)
Pages (from-to)	655-665
Number of pages	11
Journal	Journal of Systems and Software
Volume	85
Issue number	3
DOIs	https://doi.org/10.1016/j.jss.2011.09.034
State	Published - Mar 2012

All Science Journal Classification (ASJC) codes

Software
Information Systems
Hardware and Architecture

Access to Document

10.1016/j.jss.2011.09.034

Cite this

@article{da91d80a1c90428db381d66307a9958d,

title = "Achieving key privacy without losing CCA security in proxy re-encryption",

abstract = "In proxy re-encryption (PRE), a semi-trusted proxy can transform a ciphertext under the delegator's public key into another ciphertext that the delegatee can decrypt by his/her own private key. However, the proxy cannot access the plaintext. Due to its transformation property, proxy re-encryption can be used in many applications, such as encrypted email forwarding. Some of these applications require that the underlying PRE scheme is CCA-secure and key-private. However, to the best of our knowledge, none of the existing PRE schemes satisfy this security requirement in the standard model. In this paper, based on the 5-Extended Decision Bilinear Diffie-Hellman assumption and Decision Diffie-Hellman assumption, we propose the first such PRE scheme, which solves an open problem left by Ateniese et al. (2009).",

author = "Jun Shao and Peng Liu and Yuan Zhou",

note = "Funding Information: The authors thank the anonymous reviewers for their insightful comments and helpful suggestions. Jun Shao was supported by NSFC , no. 61003308 ; ZJGSUSF , no. 1130XJ2010045 ; and ECZJF , no. Y201017312 . Peng Liu was supported by AFOSR , FA9550-07-1-0527 (MURI); ARO , W911NF-09-1-0525 (MURI); NSF , CNS-0905131 and CNS-0916469 . Yuan Zhou was supported by NSFC, No. 60873217 . ",

year = "2012",

month = mar,

doi = "10.1016/j.jss.2011.09.034",

language = "English (US)",

volume = "85",

pages = "655--665",

journal = "Journal of Systems and Software",

issn = "0164-1212",

publisher = "Elsevier Inc.",

number = "3",

}

TY - JOUR

T1 - Achieving key privacy without losing CCA security in proxy re-encryption

AU - Shao, Jun

AU - Liu, Peng

AU - Zhou, Yuan

N1 - Funding Information: The authors thank the anonymous reviewers for their insightful comments and helpful suggestions. Jun Shao was supported by NSFC , no. 61003308 ; ZJGSUSF , no. 1130XJ2010045 ; and ECZJF , no. Y201017312 . Peng Liu was supported by AFOSR , FA9550-07-1-0527 (MURI); ARO , W911NF-09-1-0525 (MURI); NSF , CNS-0905131 and CNS-0916469 . Yuan Zhou was supported by NSFC, No. 60873217 .

PY - 2012/3

Y1 - 2012/3

N2 - In proxy re-encryption (PRE), a semi-trusted proxy can transform a ciphertext under the delegator's public key into another ciphertext that the delegatee can decrypt by his/her own private key. However, the proxy cannot access the plaintext. Due to its transformation property, proxy re-encryption can be used in many applications, such as encrypted email forwarding. Some of these applications require that the underlying PRE scheme is CCA-secure and key-private. However, to the best of our knowledge, none of the existing PRE schemes satisfy this security requirement in the standard model. In this paper, based on the 5-Extended Decision Bilinear Diffie-Hellman assumption and Decision Diffie-Hellman assumption, we propose the first such PRE scheme, which solves an open problem left by Ateniese et al. (2009).

AB - In proxy re-encryption (PRE), a semi-trusted proxy can transform a ciphertext under the delegator's public key into another ciphertext that the delegatee can decrypt by his/her own private key. However, the proxy cannot access the plaintext. Due to its transformation property, proxy re-encryption can be used in many applications, such as encrypted email forwarding. Some of these applications require that the underlying PRE scheme is CCA-secure and key-private. However, to the best of our knowledge, none of the existing PRE schemes satisfy this security requirement in the standard model. In this paper, based on the 5-Extended Decision Bilinear Diffie-Hellman assumption and Decision Diffie-Hellman assumption, we propose the first such PRE scheme, which solves an open problem left by Ateniese et al. (2009).

UR - http://www.scopus.com/inward/record.url?scp=84857361860&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84857361860&partnerID=8YFLogxK

U2 - 10.1016/j.jss.2011.09.034

DO - 10.1016/j.jss.2011.09.034

M3 - Article

AN - SCOPUS:84857361860

SN - 0164-1212

VL - 85

SP - 655

EP - 665

JO - Journal of Systems and Software

JF - Journal of Systems and Software

IS - 3

ER -

Achieving key privacy without losing CCA security in proxy re-encryption

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this