You are looking at a specific version 20140306:053744 of this paper. See the latest version.

Paper 2013/744

Function Private Functional Encryption and Property Preserving Encryption : New Definitions and Positive Results

Shashank Agrawal and Shweta Agrawal and Saikrishna Badrinarayanan and Abishek Kumarasubramanian and Manoj Prabhakaran and Amit Sahai

Abstract

This work furthers the exploration of meaningful definitions for security of Functional Encryption. We propose new simulation based definitions for function privacy in addition to data privacy and study their achievability. In addition, we improve efficiency/ underlying assumptions/ security achieved by existing inner product Functional Encryption and Property Preserving Encryption schemes, in both the private and public key setting. Our results can be summarized as follows: - We present a new simulation based definition, which we call Relax-AD-SIM, that lies between simulation based (SIM) and indistinguishability based (IND) definitions for data privacy, and implies the function privacy definition of BRS13a. Our definition relaxes the requirements on the simulator to bypass impossibility of SIM in the standard model. We show that the inner product FE scheme of KSW08 enjoys Relax-AD-SIM security for function hiding and the inner product FE scheme of LOSTW10 enjoys Relax-AD-SIM security for data hiding. - We study whether known impossibilities for achieving strong SIM based security imply actual real world attacks. For this, we present a new UC-style SIM based definition of security that captures both data and function hiding, both public key and symmetric key settings and represents the ``dream" security of FE. While known impossibilities rule out its achievability in the standard model, we show, surprisingly, that it can be achieved in the generic group model for Inner Product FE (KSW08). This provides evidence that FE implementations may enjoy extremely strong security against a large class of real world attacks, namely generic attacks. - We provide several improvements to known constructions of Inner Product FE. In the private key setting, the construction by Shen et al. was based on non-standard assumptions, used composite order groups, and only achieved selective security. We give the first construction of a symmetric key inner product FE which is built using prime order groups, and is fully secure under the standard DLIN assumption. Our scheme is more efficient in the size of key and ciphertext than SSW09, when the latter is converted to prime-order groups. We also port the public key inner product scheme of KSW08 to prime order groups. - We give the first construction of a property preserving encryption (PPE) scheme for inner-products. Our scheme is secure under the DLIN assumption and satisfies the strongest definition of security -- Left-or-Right security in the standard model. Note that the only previously known construction for PPE given by PR12 (which was claimed to be secure in the generic group model) was recently attacked by CD13, making our construction the first candidate for PPE.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
Functional EncryptionProperty Preserving EncryptionSimulation based definitionSymmetric key Predicate EncryptionFunction Privacy
Contact author(s)
shweta a @ gmail com
abishekk @ gmail com
sagrawl2 @ illinois edu
History
2015-09-07: last of 6 revisions
2013-11-17: received
See all versions
Short URL
https://ia.cr/2013/744
License
Creative Commons Attribution
CC BY
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.