Cryptology ePrint Archive: Report 2004/322
Separable and Anonymous Identity-Based Key Issuing
Ai-fen Sui and Sherman S.M. Chow and Lucas C.K. Hui and S.M. Yiu and K.P. Chow and W.W. Tsang and C.F. Chong and K.H. Pun and H.W. Chan
Abstract: In identity-based (ID-based) cryptosystems, a local registration authority (LRA) is responsible for authentication of users while the key generation center (KGC) is responsible for computing and sending the private keys to users and therefore, a secure channel is required. For privacy-oriented applications, it is important to keep in secret whether the private key corresponding to a certain identity has been requested. All of the existing ID-based key issuing schemes have not addressed this anonymity issue. Besides, the separation of duties for authentication and private key computation has not been discussed as well. In this paper, based on a signature scheme similar to a short blind signature, we propose a novel separable and anonymous ID-based key issuing scheme without secure channel. Our protocol supports the separation of duties between LRA and KGC. The private key computed by the KGC can be sent to the user in an encrypted form such that only the legitimate key requester authenticated by LRA can decrypt it, and any eavesdropper cannot know the identity corre-sponding to the secret key.
Category / Keywords: public-key cryptography / Identity-based cryptography, bilinear pairings, GDH groups, key issuing, anonymity, privacy, secure channel, separation of duties
Publication Info: In 1st International Workshop on Security in Networks and Distributed Systems (SNDS 2005), in conjunction with 11th International Conference on Parallel and Distributed Systems (ICPADS 2005), July 20-22, 2005, Fukuoka, Japan. Proceedings. IEEE Computer Society.
Date: received 23 Nov 2004, last revised 18 Jul 2005
Contact author: smchow at cs hku hk
Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation
Note: This is the full version.
Version: 20050718:120328 (All versions of this report)
Short URL: ia.cr/2004/322
Discussion forum: Show discussion | Start new discussion
[ Cryptology ePrint archive ]