Paper 2007/183
Provably Secure Ciphertext Policy ABE
Ling Cheung and Calvin Newport
Abstract
In ciphertext policy attribute-based encryption (CP-ABE), every secret key is associated with a set of attributes, and every ciphertext is associated with an access structure on attributes. Decryption is enabled if and only if the user's attribute set satisfies the ciphertext access structure. This provides fine-grained access control on shared data in many practical settings, including secure databases and secure multicast. In this paper, we study CP-ABE schemes in which access structures are AND gates on positive and negative attributes. Our basic scheme is proven to be chosen plaintext (CPA) secure under the decisional bilinear Diffie-Hellman (DBDH) assumption. We then apply the Canetti-Halevi-Katz technique to obtain a chosen ciphertext (CCA) secure extension using one-time signatures. The security proof is a reduction to the DBDH assumption and the strong existential unforgeability of the signature primitive. In addition, we introduce hierarchical attributes to optimize our basic scheme, reducing both ciphertext size and encryption/decryption time while maintaining CPA security. Finally, we propose an extension in which access policies are arbitrary threshold trees, and we conclude with a discussion of practical applications of CP-ABE.
Metadata
- Available format(s)
- Category
- Public-key cryptography
- Publication info
- Published elsewhere. Unknown where it was published
- Keywords
- attribute based encryptionciphertext access policy
- Contact author(s)
- lcheung @ theory csail mit edu
- History
- 2007-05-20: received
- Short URL
- https://ia.cr/2007/183
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2007/183, author = {Ling Cheung and Calvin Newport}, title = {Provably Secure Ciphertext Policy {ABE}}, howpublished = {Cryptology {ePrint} Archive, Paper 2007/183}, year = {2007}, url = {https://eprint.iacr.org/2007/183} }