TY - JOUR
T1 - HPRESS
T2 - a hardware-enhanced proxy re-encryption scheme using secure enclave
AU - Zhang, Fan
AU - Liang, Ziyuan
AU - Zuo, Cong
AU - Shao, Jun
AU - Ning, Jianting
AU - Sun, Jun
AU - Liu, Joseph K.
AU - Bao, Yibao
N1 - Funding Information:
Manuscript received March 24, 2020; revised July 6, 2020; accepted August 24, 2020. Date of publication September 8, 2020; date of current version May 20, 2021. This work was supported in part by the Alibaba-Zhejiang University Joint Institute of Frontier Technologies; in part by the Zhejiang Key Research and Development Plan under Grant 2019C03133; in part by the Major Scientific Research Project of Zhejiang Lab under Grant 2018FD0ZX01; in part by the Young Elite Scientists Sponsorship Program by CAST under Grant 17-JCJQ-QT-045; in part by the Fundamental Research Funds for the Central Universities under Grant 2020QNA5021; in part by the National Natural Science Foundation of China under Grant 61772236, Grant 61972094, and Grant 62072398; in part by the Leading Innovative and Entrepreneur Team Introduction Program of Zhejiang under Grant 2018R01005; and in part by the Research Institute of Cyberspace Governance in Zhejiang University. The work of Cong Zuo was supported by the CSIRO Data61 Scholarship. This article was recommended by Associate Editor R. Gupta. (Corresponding author: Jianting Ning.) Fan Zhang is with the School of Cyber Science and Technology, College of Computer Science and Technology, Zhejiang University, Hangzhou 310027, China, also with the State Key Laboratory of Cryptology, Beijing 100878, China, and also with the Alibaba-Zhejiang University Joint Institute of Frontier Technologies, Zhejiang University, Hangzhou 310027, China (e-mail: [email protected]).
Publisher Copyright:
© 1982-2012 IEEE.
PY - 2021/6
Y1 - 2021/6
N2 - Proxy re-encryption (PRE) allows a proxy to transform one ciphertext to another under different encryption keys while keeping the underlying plaintext secret. Because of the ciphertext transformability of PRE, there are many potential private communicating applications of this feature. However, existing PRE schemes are not as full-fledged as expected. The lack of necessary features makes them hard to apply in real-world scenarios. So far, there does not exist a unidirectional multihop PRE scheme with constant decryption efficiency and constant ciphertext size without extensions. Impractical performance and weak scalability also hinder PRE from most real-world applications. In this work, we present a new PRE scheme with secure hardware enclave named hPRESS (hardware-enhanced PRE scheme using secure enclave). To the best of our knowledge, hPRESS is the first unidirectional multihop PRE scheme which achieves both constant decryption efficiency and constant ciphertext size without extensions. A detailed security analysis demonstrates that our proposal is CCA secure based on the security of the underlying encryption schemes and the secure enclave. We also implement a prototype based on Intel SGX, one of the most popular secure enclave techniques in recent years, and evaluate its performance. The experimental results show that, compared with previous PRE schemes, our hPRESS is almost one order of magnitude faster in terms of the decryption and transformation.
AB - Proxy re-encryption (PRE) allows a proxy to transform one ciphertext to another under different encryption keys while keeping the underlying plaintext secret. Because of the ciphertext transformability of PRE, there are many potential private communicating applications of this feature. However, existing PRE schemes are not as full-fledged as expected. The lack of necessary features makes them hard to apply in real-world scenarios. So far, there does not exist a unidirectional multihop PRE scheme with constant decryption efficiency and constant ciphertext size without extensions. Impractical performance and weak scalability also hinder PRE from most real-world applications. In this work, we present a new PRE scheme with secure hardware enclave named hPRESS (hardware-enhanced PRE scheme using secure enclave). To the best of our knowledge, hPRESS is the first unidirectional multihop PRE scheme which achieves both constant decryption efficiency and constant ciphertext size without extensions. A detailed security analysis demonstrates that our proposal is CCA secure based on the security of the underlying encryption schemes and the secure enclave. We also implement a prototype based on Intel SGX, one of the most popular secure enclave techniques in recent years, and evaluate its performance. The experimental results show that, compared with previous PRE schemes, our hPRESS is almost one order of magnitude faster in terms of the decryption and transformation.
KW - Intel SGX
KW - proxy re-encryption (PRE)
KW - secure enclave
KW - trusted computing
UR - http://www.scopus.com/inward/record.url?scp=85090982205&partnerID=8YFLogxK
U2 - 10.1109/TCAD.2020.3022841
DO - 10.1109/TCAD.2020.3022841
M3 - Article
AN - SCOPUS:85090982205
SN - 0278-0070
VL - 40
SP - 1144
EP - 1157
JO - IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems
JF - IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems
IS - 6
ER -