Cryptology ePrint Archive: Report 2012/515

Semantically-Secure Functional Encryption: Possibility Results, Impossibility Results and the Quest for a General Definition

Mihir Bellare and Adam O'Neill

Abstract: This paper explains that SS1-secure functional encryption (FE) as defined by Boneh, Sahai and Waters implicitly incorporates security under key-revealing selective opening attacks (SOA-K). This connection helps intuitively explain their impossibility results and also allows us to prove stronger ones. To fill this gap and move us closer to the (laudable) goal of a general and achievable notion of FE security, we seek and provide two ``sans SOA-K'' definitions of FE security that we call SS2 and SS3. We prove various possibility results about these definitions. We view our work as a first step towards the challenging goal of a general, meaningful and achievable notion of FE security.

Category / Keywords: Functional encryption, semantic-security, identity-based encryption

Date: received 3 Sep 2012, last revised 3 Sep 2012

Contact author: amoneill at bu edu

Available format(s): PDF | BibTeX Citation

Version: 20120905:163935 (All versions of this report)

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]