Paper 2012/052

Identity-based Encryption with Efficient Revocation

Alexandra Boldyreva, Vipul Goyal, and Virendra Kumar

Abstract

Identity-based encryption (IBE) is an exciting alternative to public-key encryption, as IBE eliminates the need for a Public Key Infrastructure (PKI). Any setting, PKI- or identity-based, must provide a means to revoke users from the system. Efficient revocation is a well-studied problem in the traditional PKI setting. However in the setting of IBE, there has been little work on studying the revocation mechanisms. The most practical solution requires the senders to also use time periods when encrypting, and all the receivers (regardless of whether their keys have been compromised or not) to update their private keys regularly by contacting the trusted authority. We note that this solution does not scale well -- as the number of users increases, the work on key updates becomes a bottleneck. We propose an IBE scheme that significantly improves key-update efficiency on the side of the trusted party (from linear to logarithmic in the number of users), while staying efficient for the users. Our scheme builds on the ideas of the Fuzzy IBE primitive and binary tree data structure, and is provably secure.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Proceedings of the 14th ACM Conference on Computer and Communications Security, CCS 2008, ACM Press, 2008.
Keywords
Identity-based encryptionrevocationprovable security.
Contact author(s)
virendra @ gatech edu
History
2012-02-06: received
Short URL
https://ia.cr/2012/052
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2012/052,
      author = {Alexandra Boldyreva and Vipul Goyal and Virendra Kumar},
      title = {Identity-based Encryption with Efficient Revocation},
      howpublished = {Cryptology ePrint Archive, Paper 2012/052},
      year = {2012},
      note = {\url{https://eprint.iacr.org/2012/052}},
      url = {https://eprint.iacr.org/2012/052}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.