Paper 2015/1202

CCA Security for Self-Updatable Encryption: Protecting Cloud Data When Clients Read/Write Ciphertexts

Kwangsu Lee, Dong Hoon Lee, Jong Hwan Park, and Moti Yung


Self-updatable encryption (SUE) is a new kind of public-key encryption, motivated by cloud computing, which enables anyone (i.e. cloud server with no access to private keys) to update a past ciphertext to a future ciphertext by using a public key. The main applications of SUE is revocable-storage attribute-based encryption (RS-ABE) that provides an efficient and secure access control to encrypted data stored in cloud storage. In this setting, there is a new threat such that a revoked user still can access past ciphertexts given to him by a storage server. RS-ABE solves this problem by combining user revocation and ciphertext updating functionalities. The mechanism was designed with semantic security (CPA). Here, we propose the first SUE and RS-ABE schemes, secure against a relevant form of CCA, which allows ciphertexts submitted by attackers to decryption servers. Due to the fact that some ciphertexts are easily derived from others, we employ a different notion of CCA which avoids easy challenge related messages (we note that this type of idea was employed in other contexts before). Specifically, we define "time extended challenge" (TEC) CCA security for SUE which excludes ciphertexts that are easily derived from the challenge (over time periods) from being queried on (namely, once a challenge is decided by an adversary, no easy modification of this challenge to future and past time periods is allowed to be queried upon). We then propose an efficient SUE scheme with such CCA security, and we also define similar CCA security for RS-ABE and present an RS-ABE scheme with this CCA security.

Available format(s)
Public-key cryptography
Publication info
Published elsewhere. MINOR revision.Computer Journal
Public-key encryptionSelf-updatable encryptionChosen-ciphertext securityCloud storage.
Contact author(s)
kwangsu @ sejong ac kr
2019-04-24: revised
2015-12-18: received
See all versions
Short URL
Creative Commons Attribution


      author = {Kwangsu Lee and Dong Hoon Lee and Jong Hwan Park and Moti Yung},
      title = {CCA Security for Self-Updatable Encryption: Protecting Cloud Data When Clients Read/Write Ciphertexts},
      howpublished = {Cryptology ePrint Archive, Paper 2015/1202},
      year = {2015},
      doi = {10.1093/comjnl/bxy122},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.