International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Paper: Certificate-Based Encryption and the Certificate Revocation Problem

Authors:
Craig Gentry
Download:
URL: http://eprint.iacr.org/2003/183
Search ePrint
Search Google
Abstract: We introduce the notion of certificate-based encryption. In this model, a certificate -- or, more generally, a signature -- acts not only as a certificate but also as a decryption key. To decrypt a message, a keyholder needs both its secret key and an up-to-date certificate from its CA (or a signature from an authorizer). Certificate-based encryption combines the best aspects of identity-based encryption (implicit certification) and public key encryption (no escrow). We demonstrate how certificate-based encryption can be used to construct an efficient PKI requiring less infrastructure than previous proposals, including Micali's Novomodo, Naor-Nissim and Aiello-Lodha-Ostrovsky.
BibTeX
@misc{eprint-2003-11897,
  title={Certificate-Based Encryption and the Certificate Revocation Problem},
  booktitle={IACR Eprint archive},
  keywords={public-key cryptography /},
  url={http://eprint.iacr.org/2003/183},
  note={Eurocrypt 2003 cgentry@docomolabs-usa.com 12297 received 2 Sep 2003},
  author={Craig Gentry},
  year=2003
}