Identity-based encryption with (almost) tight security in the multi-instance, multi-ciphertext setting

Dennis Hofheinz, Jessica Koch, Christoph Striecks

Research output: Contribution to journalArticlepeer-review

Abstract

We construct an identity-based encryption (IBE) scheme that is tightly secure in a very strong sense. Specifically, we consider a setting with many instances of the scheme and many encryptions per instance. In this setting, we reduce the security of our scheme to a variant of a simple assumption used for a similar purpose by Chen and Wee (CRYPTO 2013, Springer, 2013). The security loss of our reduction is O(k)(where k is the security parameter). Our scheme is the first IBE scheme to achieve this strong flavor of tightness under a simple assumption. Technically, our scheme is a variation of the IBE scheme by Chen and Wee. However, in order to “lift” their results to the multi-instance, multi-ciphertext case, we need to develop new ideas. In particular, while we build on (and extend) their high-level proof strategy, we deviate significantly in the low-level proof steps.
Original languageEnglish
Article number12
Pages (from-to)799-822
Number of pages33
JournalJournal of Cryptology
Volume37
Issue number2
DOIs
Publication statusPublished - 29 Feb 2024

Research Field

  • Cyber Security

Keywords

  • Dual-system groups
  • Identity-based encryption
  • Multi-challenge security
  • Public-key cryptography
  • Tightness

Fingerprint

Dive into the research topics of 'Identity-based encryption with (almost) tight security in the multi-instance, multi-ciphertext setting'. Together they form a unique fingerprint.

Cite this