Cryptology ePrint Archive: Report 2012/370

Improved Broadcast Encryption Scheme with Constant-Size Ciphertext

Renaud Dubois and Aurore Guillevic and Marine Sengelin Le Breton

Abstract: The Boneh-Gentry-Waters (BGW) scheme is one of the most efficient broadcast encryption scheme regarding the overhead size. This performance relies on the use of a pairing. Hence this protocol can benefit from public key improvements. The ciphertext is of constant size, whatever the proportion of revoked users is. The main lasting constraint is the computation time at receiver end as it depends on the number of revoked users. In this paper we describe two modifications to improve the BGW bandwidth and time complexity. First we rewrite the protocol and its security proof with an asymmetric pairing over the Barreto-Naehrig (BN) curves instead of a symmetric one over supersingular curves. This modification leads to a practical gain of 60 % in speed and 84 % in bandwidth. The second tweaks allows to reduce the computation time from $O(n-r)$ to $\min(O(r),O(n-r))$ for the worst case (and better for the average case). We give performance measures of our implementation for a 128-bit security level of the modified protocol on a smartphone.

Category / Keywords: implementation / Broadcast encryption, asymmetric pairings, Barreto-Naehrig curves, Android

Publication Info: Full version of the paper presented at the Pairing 2012 Conference

Date: received 2 Jul 2012

Contact author: guillevi at di ens fr

Available format(s): PDF | BibTeX Citation

Version: 20120705:120849 (All versions of this report)

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]