Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions

Lee, Kwangsu; Park, Jong Hwan

doi:10.1109/access.2019.2915373

Cited by 9 publications

(19 citation statements)

References 26 publications

(73 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this section, we briefly review the LP-IBR scheme which is built on a combination of a SRE scheme and the SD scheme [11]. We use the notations as presented in [9].…”

Section: Review Of the Lp-ibr Scheme [9]mentioning

confidence: 99%

“…Despite the intended design principle of the LP-IBR scheme, the key assignment method of the SD scheme is described incorrectly in [9]. Here we describe the original key assignment method of the SD scheme.…”

Section: A Subset Difference Scheme [11]mentioning

confidence: 99%

“…In [9], a specific instance of a SRE scheme is presented for constructing an IBR scheme using prime-order bilinear groups. For completeness we review it briefly here.…”

Section: B Single Revocation Encryption Scheme [9]mentioning

confidence: 99%

See 2 more Smart Citations

Comments on “Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions”

Chun¹,

Kim

Hwang

2021

IEEE Access

View full text Add to dashboard Cite

An identity-based revocation (IBR) scheme is a useful one-to-many cryptographic message transmission method in which a message can be encrypted using receivers' identities such as e-mail addresses as public keys and a trusted message sender who holds users' private keys is not required. Recently an efficient IBR scheme was presented by combining a so-called single revocation encryption scheme and the well-known symmetric broadcast encryption called a subset difference (SD) method in IEEE ACCESS

show abstract

“…In this section, we briefly review the LP-IBR scheme which is built on a combination of a SRE scheme and the SD scheme [11]. We use the notations as presented in [9].…”

Section: Review Of the Lp-ibr Scheme [9]mentioning

confidence: 99%

Section: A Subset Difference Scheme [11]mentioning

confidence: 99%

See 1 more Smart Citation

Comments on “Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions”

Chun¹,

Kim

Hwang

2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Identitybased broadcast encryption (IBBE) can provide more powerful revocation than existing PKBE because the maximum number of users in the system can be exponential [25]. Identity-based revocation (IBR) can be viewed as a cryptographic scheme that implements direct user revocation because all system users except the revoked users can decrypt a ciphertext where a revoked set R is specified in the ciphertext [26,27]. However, PKBE, IBBE, and IBR have the disadvantage that a user cannot be revoked after the creation of a ciphertext.…”

Section: Related Workmentioning

confidence: 99%

“…However, the IBR scheme for our generic construction only requires that the revoked set R of ciphertexts just consists of a single revoked identity ID . Thus, we can derive a simplified LSW-IBR scheme which supports a single revoked identity, and this simplified IBR scheme provides selective security in the DBDH assumption [ 27 ]. Finally, we choose the two-level BB-HIBE scheme of Boneh and Boyen [ 38 ] that provides selective security in the DBDH assumption.…”

Section: Instantiationsmentioning

confidence: 99%

A generic construction for revocable identity-based encryption with subset difference methods

Lee¹

2020

PLoS ONE

Self Cite

View full text Add to dashboard Cite

To deal with dynamically changing user's credentials in identity-based encryption (IBE), providing an efficient key revocation method is a very important issue. Recently, Ma and Lin proposed a generic method of designing a revocable IBE (RIBE) scheme that uses the complete subtree (CS) method by combining IBE and hierarchical IBE (HIBE) schemes. In this paper, we propose a new generic method for designing an RIBE scheme that uses the subset difference (SD) method instead of using the CS method. In order to use the SD method, we generically design an RIBE scheme by combining IBE, identity-based revocation (IBR), and two-level HIBE schemes. If the underlying IBE, IBR, and HIBE schemes are adaptively (or selectively) secure, then our RIBE scheme is also adaptively (or selectively) secure. In addition, we show that the layered SD (LSD) method can be applied to our RIBE scheme and a chosen-ciphertext secure RIBE scheme also can be designed generically.

show abstract

A Generic Approach to Build Revocable Hierarchical Identity-Based Encryption

Lee

Kim

2022

IEEE Access

Self Cite

View full text Add to dashboard Cite

Revocable hierarchical identity-based encryption (RHIBE) is an extension of HIBE that provides the efficient key revocation function by broadcasting an update key per each time period. Many RHIBE schemes have been proposed by combining an HIBE scheme and a tree-based revocation method, but a generic method for constructing an RHIBE scheme has not been proposed. In this paper, we show for the first time that it is possible to construct RHIBE schemes by generically combining underlying cryptographic primitives and tree-based revocation methods. We first generically construct an RHIBE-CS scheme by combining HIBE schemes and the complete subtree (CS) method, and prove the adaptive security by using the adaptive security of the HIBE schemes. Thus, we obtain RHIBE schemes under the quadratic residuosity assumption, CDH assumption, and factoring assumption. Next, we generically construct an RHIBE-SD scheme with shorter update keys by combining HIBE and hierarchical single revocation encryption (HSRE) schemes, and the subset difference (SD) method to reduce the size of update keys. Finally, we generically construct an RHIBE-CS scheme with shorter ciphertexts by combining HIBE schemes with constant-size ciphertext and the CS method. Through different kind of generic combinations, we obtain various RHIBE schemes that provide a trade-off between shorter ciphertexts and shorter update keys.

show abstract

Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions

Cited by 9 publications

References 26 publications

Comments on “Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions”

Comments on “Identity-Based Revocation From Subset Difference Methods Under Simple Assumptions”

A generic construction for revocable identity-based encryption with subset difference methods

A Generic Approach to Build Revocable Hierarchical Identity-Based Encryption

Contact Info

Product

Resources

About