accountable authority identity-based encryption with public traceability

ISCAS OpenIR

	accountable authority identity-based encryption with public traceability
	Lai Junzuo; Deng Robert H.; Zhao Yunlei; Weng Jian
	2013
会议名称	Cryptographers' Track at the RSA Conference 2013, CT-RSA 2013
会议录名称	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
页码	326-342
会议日期	February 25, 2013 - March 1, 2013
会议地点	San Francisco, CA, United states
收录类别	EI
ISSN	0302-9743
ISBN	9783642360947
部门归属	(1) School of Information Systems Singapore Management University Singapore Singapore; (2) Software School Fudan University China; (3) State Key Laboratory of Information Security Institute of Information Engineering Chinese Academy of Sciences China; (4) Department of Computer Science Emergency Technology Research Center of Risk Evaluation and Prewarning on Public Network Security Jinan University China; (5) Shanghai Key Laboratory of Integrate Administration Technologies for Information Security China
摘要	At Crypto'07, Goyal introduced the notion of accountable authority identity-based encryption (A-IBE) in order to mitigate the inherent key escrow problem in identity-based encryption, and proposed two concrete constructions. In an A-IBE system, if the private key generator (PKG) distributes a decryption key or produces an unauthorized decryption box for a user maliciously, it runs the risk of being caught and sued in the court of law with the help of a tracing algorithm. Subsequent efforts focused on constructions of A-IBE schemes with enhanced security. In these A-IBE constructions, the tracing algorithm needs to take a user's decryption key as input. If the user lost his key or is deliberately uncooperative in court, then we cannot implicate the PKG or the user. An interesting open problem left by Goyal et al. at CCS'08 is to consider the possibility of tracing a decryption box using only a public tracing key, or with the assistance of a tracing authority. In this paper, we address this problem positively. We first extend the original model of A-IBE to accommodate public traceability, and then propose an A-IBE scheme in the new model. To the best of our knowledge, the proposed scheme is the first A-IBE with public traceability. © 2013 Springer-Verlag.; At Crypto'07, Goyal introduced the notion of accountable authority identity-based encryption (A-IBE) in order to mitigate the inherent key escrow problem in identity-based encryption, and proposed two concrete constructions. In an A-IBE system, if the private key generator (PKG) distributes a decryption key or produces an unauthorized decryption box for a user maliciously, it runs the risk of being caught and sued in the court of law with the help of a tracing algorithm. Subsequent efforts focused on constructions of A-IBE schemes with enhanced security. In these A-IBE constructions, the tracing algorithm needs to take a user's decryption key as input. If the user lost his key or is deliberately uncooperative in court, then we cannot implicate the PKG or the user. An interesting open problem left by Goyal et al. at CCS'08 is to consider the possibility of tracing a decryption box using only a public tracing key, or with the assistance of a tracing authority. In this paper, we address this problem positively. We first extend the original model of A-IBE to accommodate public traceability, and then propose an A-IBE scheme in the new model. To the best of our knowledge, the proposed scheme is the first A-IBE with public traceability. © 2013 Springer-Verlag.
关键词	Algorithms Concrete Construction
语种	英语
内容类型	会议论文
URI标识	http://ir.iscas.ac.cn/handle/311060/15907
专题	中国科学院软件研究所
推荐引用方式 GB/T 7714	Lai Junzuo,Deng Robert H.,Zhao Yunlei,et al. accountable authority identity-based encryption with public traceability[C],2013:326-342.