Cryptology ePrint Archive: Report 2014/752

Key Indistinguishability vs. Strong Key Indistinguishability for Hierarchical Key Assignment Schemes

Arcangelo Castiglione and Alfredo De Santis and Barbara Masucci

Abstract: A hierarchical key assignment scheme is a method to assign some private information and encryption keys to a set of classes in a partially ordered hierarchy, in such a way that the private information of a higher class can be used to derive the keys of all classes lower down in the hierarchy.

In this paper we analyze the security of hierarchical key assignment schemes according to different notions: security with respect to key indistinguishability and against key recovery, as well as the two recently proposed notions of security with respect to strong key indistinguishability and against strong key recovery. We first explore the relations between all security notions and, in particular, we prove that security with respect to strong key indistinguishability is not stronger than the one with respect to key indistinguishability. Afterwards, we propose a general construction yielding a hierarchical key assignment scheme offering security against strong key recovery, given any hierarchical key assignment scheme which guarantees security against key recovery.

Category / Keywords: cryptographic protocols / Access control, key assignment, provable security, key indistinguishability, strong key indistinguishability, key recovery, strong key recovery.

Date: received 27 Sep 2014

Contact author: bmasucci at unisa it

Available format(s): PDF | BibTeX Citation

Version: 20140929:083058 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]