Unique-Path Identity Based Encryption With Applications to Strongly Secure Messaging

Paul Rösler (Vortragende:r), Daniel Slamanig, Christoph Striecks

Publikation: Beitrag in Buch oder TagungsbandVortrag mit Beitrag in TagungsbandBegutachtung

Abstract

Hierarchical Identity Based Encryption (HIBE) is a well studied, versatile tool used in many cryptographic protocols. Yet, since the performance of all known HIBE constructions is broadly considered prohibitive, some real-world applications avoid relying on HIBE at the expense of security. A prominent example for this is secure messaging: Strongly secure messaging protocols are provably equivalent to Key-Updatable Key Encapsulation Mechanisms (KU-KEMs; Balli et al., Asiacrypt 2020); so far, all KU-KEM constructions rely on adaptive unbounded-depth HIBE (Poettering and Rösler, Jaeger and Stepanovs, both CRYPTO 2018). By weakening security requirements for better efficiency, many messaging protocols dispense with using HIBE.

In this work, we aim to gain better efficiency without sacrificing security. For this, we observe that applications like messaging only need a restricted variant of HIBE for strong security. This variant, that we call Unique-Path Identity Based Encryption (UPIBE), restricts HIBE by requiring that each secret key can delegate at most one subordinate secret key. However, in contrast to fixed secret key delegation in Forward-Secure Public Key Encryption, the delegation in UPIBE, as in HIBE, is uniquely determined by variable identity strings from an exponentially large space. We investigate this mild but surprisingly effective restriction and show that it offers substantial complexity and performance advantages.

More concretely, we generically build bounded-depth UPIBE from only bounded-collusion IBE in the standard model; and we generically build adaptive unbounded-depth UPIBE from only selective bounded-depth HIBE in the random oracle model. These results significantly extend the range of underlying assumptions and efficient instantiations. We conclude with a rigorous performance evaluation of our UPIBE design. Beyond solving challenging open problems by reducing complexity and improving efficiency of KU-KEM and strongly secure messaging protocols, we offer a new definitional perspective on the bounded-collusion setting.
OriginalspracheEnglisch
TitelAdvances in Cryptology - EUROCRYPT 2023 - 42nd Annual International Conference on the Theory and Applications of Cryptographic Techniques
Redakteure/-innenElisa Bertino, Wen Gao, Bernhard Steffen, Moti Yung
Herausgeber (Verlag)Springer
Seiten3-34
Seitenumfang32
Band14008
AuflageLNCS
ISBN (Print)9783031305887
DOIs
PublikationsstatusVeröffentlicht - 16 Apr. 2023
VeranstaltungEUROCRYPT 2023 - Lyon, France, Lyon, Frankreich
Dauer: 23 Apr. 202327 Apr. 2023

Publikationsreihe

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band14008 LNCS

Konferenz

KonferenzEUROCRYPT 2023
Land/GebietFrankreich
StadtLyon
Zeitraum23/04/2327/04/23

Research Field

  • Cyber Security

Fingerprint

Untersuchen Sie die Forschungsthemen von „Unique-Path Identity Based Encryption With Applications to Strongly Secure Messaging“. Zusammen bilden sie einen einzigartigen Fingerprint.

Diese Publikation zitieren