Towards certificate-based group encryption

Yili Ren, Xiling Luo, Qianhong Wu, Joseph K. Liu, Peng Zhang

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

    Abstract

    Group Encryption (GE) is a recently proposed cryptographic primitive protecting the privacy of the receivers in a communication system. A majority of group encryption schemes are implicitly based on public key infrastructure (PKI) setting in which the management of certificates are complicated. Identity based encryption (IBE) seems to be a good alternative for PKI in GE, but the private key escrow and the user revocation problem are inherent in IBE system. Certificate-based encryption (CBE) overcomes drawbacks of PKI and IBE. In this paper, we propose a new cryptographic primitive, referred to as certificate-based group encryption (CBGE). In this notion, a certificate authority issues the certificate as a part of decryption key corresponding to a user’s public key and other information; and the user can register himself as a group member to a group manager. Then anyone can verifiably send confidential messages to a group member whose identity information is hidden within a group of certified users. If required, the group manager (GM) can trace the receiver. Following this model, we propose a scheme towards CBGE, where the roles of the verifier and the GM are taken by a single entity. We formally prove the scheme is secure in the random oracle model. Unlike the users existing in GE schemes, users in our scheme need not to check the certificates. CBGE provides an implicit certification mechanism and allows a periodical update of certificate status.

    Original languageEnglish
    Title of host publicationProvable Security
    Subtitle of host publication10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings
    EditorsLiqun Chen, Jinguang Han
    Place of PublicationCham, Switzerland
    PublisherSpringer
    Pages296-305
    Number of pages10
    ISBN (Electronic)9783319474229
    ISBN (Print)9783319474212
    DOIs
    Publication statusPublished - 2016
    Event10th International Conference on Provable Security - Nanjing, China
    Duration: 10 Nov 201611 Nov 2016

    Publication series

    NameLecture Notes in Computer Science
    PublisherSpringer
    Volume10005
    ISSN (Print)0302-9743
    ISSN (Electronic)1611-3349

    Conference

    Conference10th International Conference on Provable Security
    CountryChina
    CityNanjing
    Period10/11/1611/11/16

    Keywords

    • Certificate-based
    • Group encryption
    • Knowledge proof

    Cite this

    Ren, Y., Luo, X., Wu, Q., Liu, J. K., & Zhang, P. (2016). Towards certificate-based group encryption. In L. Chen, & J. Han (Eds.), Provable Security: 10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings (pp. 296-305). (Lecture Notes in Computer Science ; Vol. 10005 ). Cham, Switzerland: Springer. https://doi.org/10.1007/978-3-319-47422-9_17
    Ren, Yili ; Luo, Xiling ; Wu, Qianhong ; Liu, Joseph K. ; Zhang, Peng. / Towards certificate-based group encryption. Provable Security: 10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings. editor / Liqun Chen ; Jinguang Han. Cham, Switzerland : Springer, 2016. pp. 296-305 (Lecture Notes in Computer Science ).
    @inproceedings{ea3f88928cbd4762b1b540db11460bce,
    title = "Towards certificate-based group encryption",
    abstract = "Group Encryption (GE) is a recently proposed cryptographic primitive protecting the privacy of the receivers in a communication system. A majority of group encryption schemes are implicitly based on public key infrastructure (PKI) setting in which the management of certificates are complicated. Identity based encryption (IBE) seems to be a good alternative for PKI in GE, but the private key escrow and the user revocation problem are inherent in IBE system. Certificate-based encryption (CBE) overcomes drawbacks of PKI and IBE. In this paper, we propose a new cryptographic primitive, referred to as certificate-based group encryption (CBGE). In this notion, a certificate authority issues the certificate as a part of decryption key corresponding to a user’s public key and other information; and the user can register himself as a group member to a group manager. Then anyone can verifiably send confidential messages to a group member whose identity information is hidden within a group of certified users. If required, the group manager (GM) can trace the receiver. Following this model, we propose a scheme towards CBGE, where the roles of the verifier and the GM are taken by a single entity. We formally prove the scheme is secure in the random oracle model. Unlike the users existing in GE schemes, users in our scheme need not to check the certificates. CBGE provides an implicit certification mechanism and allows a periodical update of certificate status.",
    keywords = "Certificate-based, Group encryption, Knowledge proof",
    author = "Yili Ren and Xiling Luo and Qianhong Wu and Liu, {Joseph K.} and Peng Zhang",
    year = "2016",
    doi = "10.1007/978-3-319-47422-9_17",
    language = "English",
    isbn = "9783319474212",
    series = "Lecture Notes in Computer Science",
    publisher = "Springer",
    pages = "296--305",
    editor = "Chen, {Liqun } and Han, {Jinguang }",
    booktitle = "Provable Security",

    }

    Ren, Y, Luo, X, Wu, Q, Liu, JK & Zhang, P 2016, Towards certificate-based group encryption. in L Chen & J Han (eds), Provable Security: 10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings. Lecture Notes in Computer Science , vol. 10005 , Springer, Cham, Switzerland, pp. 296-305, 10th International Conference on Provable Security, Nanjing, China, 10/11/16. https://doi.org/10.1007/978-3-319-47422-9_17

    Towards certificate-based group encryption. / Ren, Yili; Luo, Xiling; Wu, Qianhong; Liu, Joseph K.; Zhang, Peng.

    Provable Security: 10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings. ed. / Liqun Chen; Jinguang Han. Cham, Switzerland : Springer, 2016. p. 296-305 (Lecture Notes in Computer Science ; Vol. 10005 ).

    Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

    TY - GEN

    T1 - Towards certificate-based group encryption

    AU - Ren, Yili

    AU - Luo, Xiling

    AU - Wu, Qianhong

    AU - Liu, Joseph K.

    AU - Zhang, Peng

    PY - 2016

    Y1 - 2016

    N2 - Group Encryption (GE) is a recently proposed cryptographic primitive protecting the privacy of the receivers in a communication system. A majority of group encryption schemes are implicitly based on public key infrastructure (PKI) setting in which the management of certificates are complicated. Identity based encryption (IBE) seems to be a good alternative for PKI in GE, but the private key escrow and the user revocation problem are inherent in IBE system. Certificate-based encryption (CBE) overcomes drawbacks of PKI and IBE. In this paper, we propose a new cryptographic primitive, referred to as certificate-based group encryption (CBGE). In this notion, a certificate authority issues the certificate as a part of decryption key corresponding to a user’s public key and other information; and the user can register himself as a group member to a group manager. Then anyone can verifiably send confidential messages to a group member whose identity information is hidden within a group of certified users. If required, the group manager (GM) can trace the receiver. Following this model, we propose a scheme towards CBGE, where the roles of the verifier and the GM are taken by a single entity. We formally prove the scheme is secure in the random oracle model. Unlike the users existing in GE schemes, users in our scheme need not to check the certificates. CBGE provides an implicit certification mechanism and allows a periodical update of certificate status.

    AB - Group Encryption (GE) is a recently proposed cryptographic primitive protecting the privacy of the receivers in a communication system. A majority of group encryption schemes are implicitly based on public key infrastructure (PKI) setting in which the management of certificates are complicated. Identity based encryption (IBE) seems to be a good alternative for PKI in GE, but the private key escrow and the user revocation problem are inherent in IBE system. Certificate-based encryption (CBE) overcomes drawbacks of PKI and IBE. In this paper, we propose a new cryptographic primitive, referred to as certificate-based group encryption (CBGE). In this notion, a certificate authority issues the certificate as a part of decryption key corresponding to a user’s public key and other information; and the user can register himself as a group member to a group manager. Then anyone can verifiably send confidential messages to a group member whose identity information is hidden within a group of certified users. If required, the group manager (GM) can trace the receiver. Following this model, we propose a scheme towards CBGE, where the roles of the verifier and the GM are taken by a single entity. We formally prove the scheme is secure in the random oracle model. Unlike the users existing in GE schemes, users in our scheme need not to check the certificates. CBGE provides an implicit certification mechanism and allows a periodical update of certificate status.

    KW - Certificate-based

    KW - Group encryption

    KW - Knowledge proof

    UR - http://www.scopus.com/inward/record.url?scp=84996524114&partnerID=8YFLogxK

    U2 - 10.1007/978-3-319-47422-9_17

    DO - 10.1007/978-3-319-47422-9_17

    M3 - Conference Paper

    SN - 9783319474212

    T3 - Lecture Notes in Computer Science

    SP - 296

    EP - 305

    BT - Provable Security

    A2 - Chen, Liqun

    A2 - Han, Jinguang

    PB - Springer

    CY - Cham, Switzerland

    ER -

    Ren Y, Luo X, Wu Q, Liu JK, Zhang P. Towards certificate-based group encryption. In Chen L, Han J, editors, Provable Security: 10th International Conference, ProvSec 2016, Nanjing, China, November 10–11, 2016, Proceedings. Cham, Switzerland: Springer. 2016. p. 296-305. (Lecture Notes in Computer Science ). https://doi.org/10.1007/978-3-319-47422-9_17