Conditional proxy re-encryption secure against chosen-ciphertext attack

Weng, Jian; Deng, Robert H.; Ding, Xuhua; Chu, Cheng-Kang; Lai, Junzuo

doi:10.1145/1533057.1533100

Cited by 140 publications

(117 citation statements)

References 11 publications

Supporting

Mentioning

117

Contrasting

Order By: Relevance

“…For example, john is only allowed Lisa's encrypted emails containing a predetermine keyword. In order to overcome the limitation of existing PRE, in [15] the system introduces the notion of conditional proxy re-encryption (or C-PRE), whereby only ciphertext satisfying one condition set by Alice can be transformed by the proxy and then decrypted by john. The author formulates its security model and also proposes an efficient C-PRE scheme, whose chosen-ciphertext security is proven under the 3-quotient bilinear Diffe-Hellman assumption.…”

Section: Conditional Prementioning

confidence: 99%

See 1 more Smart Citation

Proxy Re-encryption Schemes for Secure Cloud Data and Applications: A Survey

Roy¹,

Mathai²

2017

IJCA

View full text Add to dashboard Cite

This paper presents a survey on Proxy re-encryption techniques with respect to secure cloud data and its application. To keep sensitive user data confidential against untrusted servers, cryptographic methods are used to provide security and access control in clouds. As the data is shared over the network, it is needed to be encrypted. There are many encryption schemes that provide security and access control over the network.Proxy re-encryption enables the semi-trusted proxy server to re-encrypt the ciphertext encrypted under Alice's public key to another ciphertext encrypted under Bob's public key. The re-encryption is done without the server being able to decrypt the ciphertext.Cloud services and applications should follow the standard security measures including data confidentiality, integrity,privacy, robustness and access control.In this paper the proxy re-encryption(PRE) schemes, Conditional PRE,Identity based PRE and Broadcast PRE,Type based PRE, Key private PRE,Attribute based PRE,Threshold PRE and its role in securing the cloud data are explained.

show abstract

Section: Conditional Prementioning

confidence: 99%

“…Conditional Proxy Broadcast Re-Encryption (CPBRE), which was proposed by Chu et al [15], can further reduce the cost incurred by TR-PRE. Specifically, CPBRE allows a delegator to delegate the decryption rights of a broadcast encryption to a set of delegatees, and to specify a condition to control the re-encryption power of the proxy.…”

Section: Literature Surveymentioning

confidence: 99%

Proxy Re-encryption Schemes for Secure Cloud Data and Applications: A Survey

Roy¹,

Mathai²

2017

IJCA

View full text Add to dashboard Cite

show abstract

“…Since then, some useful PRE schemes have been proposed accordingly 15,16,17,18,19 . Weng, et al 20 proposed a new PRE scheme called conditional PRE (C-PRE). In this scheme, only the ciphertexts which satisfy the condition given by the original decryptor can be transferred to the ciphertexts for a designated decryptor, instead of all ciphertexts.…”

Section: Related Workmentioning

confidence: 99%

Identity-based data storage in cloud computing

Han

Susilo

2013

Future Generation Computer Systems

View full text Add to dashboard Cite

Identity-based proxy re-encryption schemes have been proposed to shift the burden of managing numerous files from the owner to a proxy server. Nevertheless, the existing solutions suffer from several drawbacks. First, the access permission is determined by the central authority, which makes the scheme impractical. Second, they are insecure against collusion attacks. Finally, only queries from the same domain (intra-domain) are considered. We note that one of the main applications of identity-based proxy re-encryption schemes is in the cloud computing scenario. Nevertheless, in this scenario, users in different domains can share files with each other. Therefore, the existing solutions do not actually solve the motivating scenario, when the scheme is applicable for cloud computing. Hence, it remains an interesting and challenging research problem to design an identity-based data storage scheme which is secure against collusion attacks and supports intra-domain and inter-domain queries. In this paper, we propose an identity-based data storage scheme where both queries from the intra-domain and inter-domain are considered and collusion attacks can be resisted. Furthermore, the access permission can be determined by the owner independently. © 2012 Elsevier B.V. All rights reserved. AbstractIdentity-based proxy re-encryption schemes have been proposed to shift the burden of managing numerous files from the owner to a proxy server. Nevertheless, the existing solutions suffer from several drawbacks. First, the access permission is determined by the central authority, which makes the scheme impractical. Second, they are insecure against the collusion attacks. Finally, only queries from the same domain (intra-domain) are considered. We note that one of the main applications of identity-based proxy re-encryption schemes is in the cloud computing scenario. Nevertheless, in this scenario, users in different domains can share files with each other. Therefore, the existing solutions do not actually solve the motivating scenario, when the scheme is applicable for cloud computing. Hence, it remains an interesting and challenging research problem to design an identity-based data storage scheme which is secure against the collusion attacks and supports intradomain and inter-domain queries. In this paper, we propose an identitybased data storage scheme where both queries from the intra-domain and inter-domain are considered and collusion attacks can be resisted. Furthermore, the access permission can be determined by the owner independently.

show abstract

“…Rather than allowing the proxy to convert all of Alice's ciphertext, Alice may only want the proxy to convert the ciphertexts that satisfies a certain condition. To overcome this problem, Weng, Deng and Ding [3] introduced the notion of conditional proxy re-encryption, whereby only ciphertext satisfying one certain condition set by Alice can be transformed by the proxy. Similarly to Weng's work [3], Libert and Vergnaud [4] proposed a PRE scheme that provides warrant-based and keyword-based delegations in PKC08.…”

Section: Introductionmentioning

confidence: 99%

“…To overcome this problem, Weng, Deng and Ding [3] introduced the notion of conditional proxy re-encryption, whereby only ciphertext satisfying one certain condition set by Alice can be transformed by the proxy. Similarly to Weng's work [3], Libert and Vergnaud [4] proposed a PRE scheme that provides warrant-based and keyword-based delegations in PKC08. Later, Tang proposed a notion called typed-based proxy re-encryption [5].…”

Section: Introductionmentioning

confidence: 99%