Cryptology ePrint Archive: Report 2015/1035
CARIBE: Cascaded IBE for Maximum Flexibility and User-side Control
Britta Hale and Christopher Carr and Danilo Gligoroski
Abstract: Mass surveillance and a lack of end-user encryption, coupled with a growing demand for key escrow under legal oversight and certificate authority security concerns, raise the question of the appropriateness of continued general dependency on PKI. Under this context, we examine Identity-Based Encryption (IBE) as an alternative to public-key encryption. Cascade encryption, or sequential multiple encryption, is the concept of layering encryption such that the ciphertext from one encryption step is the plaintext of the next. We describe CARIBE, a cascaded IBE scheme, for which we also provide a cascaded CCA security experiment, IND-ID-C.CCA, and prove its security in the computational model. CARIBE combines the ease-of-use of IBE with key escrow, limited to the case when the entire set of participating PKGs collaborate. Furthermore, we describe a particular CARIBE scheme, CARIBE-S, where the receiver is a self-PKG – one of the several PKGs included in the cascade. CARIBE-S inherits IND-ID-C.CCA from CARIBE, and avoids key escrow entirely. In essence, CARIBE-S offers the maximum flexibility of the IBE paradigm and gives the users complete control without the key escrow problem.
Category / Keywords: public-key cryptography /identity-based encryption, cascade ciphers, PKI, practice-oriented provable security, mass-surveillance
Original Publication (with major differences): MyCrypt 2016
Date: received 26 Oct 2015, last revised 16 Jan 2017
Contact author: ccarr at item ntnu no
Available format(s): PDF | BibTeX Citation
Note: Extensions and discussion additions.
Version: 20170116:140442 (All versions of this report)
Short URL: ia.cr/2015/1035
Discussion forum: Show discussion | Start new discussion
[ Cryptology ePrint archive ]