Attribute specified identity-based encryption

Hao Xiong; Tsz Hon Yuen; Cong Zhang; Yi Jun He; Siu Ming Yiu

doi:10.1007/978-3-642-38033-4_5

Attribute specified identity-based encryption

Hao Xiong
, Tsz Hon Yuen
, Cong Zhang
, Yi Jun He
, Siu Ming Yiu

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

2 Citations (Scopus)

Abstract

Fine-grained access control of encrypted data without trusted third party is a challenging task. Using the simple attribute-based encryption has the problem of key escrow, since there exists a trusted authority who is able to generate the secret keys of all users. Delegating this ability to multiple authorities can only minimize the risk, but not eliminating the possibility that all authorities may collude. We develop a new cryptosystem called Attribute Specified Identity-Based Encryption (AS-IBE) to solve this problem. We employ the idea of certificateless encryption and extend it to the attribute-based setting. Each user chooses his own public and secret key pairs to use, in addition to his attribute-based secret key. Therefore, the authority cannot decrypt without the knowledge the user's own secret key. Yet, the resulting AS-IBE system has some fundamental differences with the original attribute-based encryption. In this paper, we give the security model for the new AS-IBE cryptosystems, and propose two variants for the construction, namely the key policy AS-IBE and ciphertext policy AS-IBE.

Original language	English
Title of host publication	Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings
Pages	60-74
Number of pages	15
DOIs	https://doi.org/10.1007/978-3-642-38033-4_5
Publication status	Published - 2013
Externally published	Yes
Event	Information Security Practice and Experience Conference 2013 - Lanzhou, China Duration: 12 May 2013 → 14 May 2013 Conference number: 9th https://link.springer.com/book/10.1007/978-3-642-38033-4 (Proceedings)

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	7863
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	Information Security Practice and Experience Conference 2013
Abbreviated title	ISPEC 2013
Country/Territory	China
City	Lanzhou
Period	12/05/13 → 14/05/13
Internet address	https://link.springer.com/book/10.1007/978-3-642-38033-4 (Proceedings)

Keywords

attributes
certificateless public key encryption
identity-based encryption
key escrow

Access to Document

10.1007/978-3-642-38033-4_5

Cite this

@inproceedings{e0c1c8c291354ce4ac573b369036f45e,

title = "Attribute specified identity-based encryption",

abstract = "Fine-grained access control of encrypted data without trusted third party is a challenging task. Using the simple attribute-based encryption has the problem of key escrow, since there exists a trusted authority who is able to generate the secret keys of all users. Delegating this ability to multiple authorities can only minimize the risk, but not eliminating the possibility that all authorities may collude. We develop a new cryptosystem called Attribute Specified Identity-Based Encryption (AS-IBE) to solve this problem. We employ the idea of certificateless encryption and extend it to the attribute-based setting. Each user chooses his own public and secret key pairs to use, in addition to his attribute-based secret key. Therefore, the authority cannot decrypt without the knowledge the user's own secret key. Yet, the resulting AS-IBE system has some fundamental differences with the original attribute-based encryption. In this paper, we give the security model for the new AS-IBE cryptosystems, and propose two variants for the construction, namely the key policy AS-IBE and ciphertext policy AS-IBE.",

keywords = "attributes, certificateless public key encryption, identity-based encryption, key escrow",

author = "Hao Xiong and Yuen, \{Tsz Hon\} and Cong Zhang and He, \{Yi Jun\} and Yiu, \{Siu Ming\}",

year = "2013",

doi = "10.1007/978-3-642-38033-4\_5",

language = "English",

isbn = "9783642380327",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "60--74",

booktitle = "Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings",

note = "Information Security Practice and Experience Conference 2013, ISPEC 2013 ; Conference date: 12-05-2013 Through 14-05-2013",

url = "https://link.springer.com/book/10.1007/978-3-642-38033-4",

}

Xiong, H, Yuen, TH, Zhang, C, He, YJ & Yiu, SM 2013, Attribute specified identity-based encryption. in Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings. Lecture Notes in Computer Science, vol. 7863, pp. 60-74, Information Security Practice and Experience Conference 2013, Lanzhou, China, 12/05/13. https://doi.org/10.1007/978-3-642-38033-4_5

Attribute specified identity-based encryption. / Xiong, Hao; Yuen, Tsz Hon; Zhang, Cong et al.
Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings. 2013. p. 60-74 (Lecture Notes in Computer Science; Vol. 7863).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

TY - GEN

T1 - Attribute specified identity-based encryption

AU - Xiong, Hao

AU - Yuen, Tsz Hon

AU - Zhang, Cong

AU - He, Yi Jun

AU - Yiu, Siu Ming

N1 - Conference code: 9th

PY - 2013

Y1 - 2013

N2 - Fine-grained access control of encrypted data without trusted third party is a challenging task. Using the simple attribute-based encryption has the problem of key escrow, since there exists a trusted authority who is able to generate the secret keys of all users. Delegating this ability to multiple authorities can only minimize the risk, but not eliminating the possibility that all authorities may collude. We develop a new cryptosystem called Attribute Specified Identity-Based Encryption (AS-IBE) to solve this problem. We employ the idea of certificateless encryption and extend it to the attribute-based setting. Each user chooses his own public and secret key pairs to use, in addition to his attribute-based secret key. Therefore, the authority cannot decrypt without the knowledge the user's own secret key. Yet, the resulting AS-IBE system has some fundamental differences with the original attribute-based encryption. In this paper, we give the security model for the new AS-IBE cryptosystems, and propose two variants for the construction, namely the key policy AS-IBE and ciphertext policy AS-IBE.

AB - Fine-grained access control of encrypted data without trusted third party is a challenging task. Using the simple attribute-based encryption has the problem of key escrow, since there exists a trusted authority who is able to generate the secret keys of all users. Delegating this ability to multiple authorities can only minimize the risk, but not eliminating the possibility that all authorities may collude. We develop a new cryptosystem called Attribute Specified Identity-Based Encryption (AS-IBE) to solve this problem. We employ the idea of certificateless encryption and extend it to the attribute-based setting. Each user chooses his own public and secret key pairs to use, in addition to his attribute-based secret key. Therefore, the authority cannot decrypt without the knowledge the user's own secret key. Yet, the resulting AS-IBE system has some fundamental differences with the original attribute-based encryption. In this paper, we give the security model for the new AS-IBE cryptosystems, and propose two variants for the construction, namely the key policy AS-IBE and ciphertext policy AS-IBE.

KW - attributes

KW - certificateless public key encryption

KW - identity-based encryption

KW - key escrow

UR - https://www.scopus.com/pages/publications/84883377340

U2 - 10.1007/978-3-642-38033-4_5

DO - 10.1007/978-3-642-38033-4_5

M3 - Conference Paper

AN - SCOPUS:84883377340

SN - 9783642380327

T3 - Lecture Notes in Computer Science

SP - 60

EP - 74

BT - Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings

T2 - Information Security Practice and Experience Conference 2013

Y2 - 12 May 2013 through 14 May 2013

ER -

Attribute specified identity-based encryption

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Cite this