International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Lattice-Based Revocable (Hierarchical) IBE with Decryption Key Exposure Resistance

Authors:
Shuichi Katsumata
Takahiro Matsuda
Atsushi Takayasu
Download:
DOI: 10.1007/978-3-030-17259-6_15
Search ePrint
Search Google
Conference: PKC 2019
Abstract: Revocable identity-based encryption (RIBE) is an extension of IBE that supports a key revocation mechanism, which is an indispensable feature for practical cryptographic schemes. Due to this extra feature, RIBE is often required to satisfy a strong security notion unique to the revocation setting called decryption key exposure resistance (DKER). Additionally, hierarchal IBE (HIBE) is another orthogonal extension of IBE that supports key delegation functionalities allowing for scalable deployments of cryptographic schemes. So far, R(H)IBE constructions with DKER are only known from bilinear maps, where all constructions rely heavily on the so-called key re-randomization property to achieve the DKER and/or hierarchal feature. Since lattice-based schemes seem to be inherently ill-fit with the key re-randomization property, no construction of lattice-based R(H)IBE schemes with DKER are known.In this paper, we propose the first lattice-based RHIBE scheme with DKER without relying on the key re-randomization property, departing from all the previously known methods. We start our work by providing a generic construction of RIBE schemes with DKER, which uses as building blocks any two-level standard HIBE scheme and (weak) RIBE scheme without DKER. Based on previous lattice-based RIBE constructions without DKER, our result implies the first lattice-based RIBE scheme with DKER. Then, building on top of our generic construction, we construct the first lattice-based RHIBE scheme with DKER, by further exploiting the algebraic structure of lattices. To this end, we prepare a new tool called the level conversion keys, which enables us to achieve the hierarchal feature without relying on the key re-randomization property.
BibTeX
@inproceedings{pkc-2019-29309,
  title={Lattice-Based Revocable (Hierarchical) IBE with Decryption Key Exposure Resistance},
  booktitle={Public-Key Cryptography – PKC 2019},
  series={Lecture Notes in Computer Science},
  publisher={Springer},
  volume={11443},
  pages={441-471},
  doi={10.1007/978-3-030-17259-6_15},
  author={Shuichi Katsumata and Takahiro Matsuda and Atsushi Takayasu},
  year=2019
}