Paper 2015/836

Ciphertext-Policy Attribute-Based Broadcast Encryption with Small Keys

Benjamin Wesolowski and Pascal Junod


Broadcasting is a very efficient way to securely transmit information to a large set of geographically scattered receivers, and in practice, it is often the case that these receivers can be grouped in sets sharing common characteristics (or attributes). We describe in this paper an efficient ciphertext-policy attribute-based broadcast encryption scheme (CP-ABBE) supporting negative attributes and able to handle access policies in conjunctive normal form (CNF). Essentially, our scheme is a combination of the Boneh-Gentry-Waters broadcast encryption and of the Lewko-Sahai-Waters revocation schemes; the former is used to express attribute-based access policies while the latter is dedicated to the revocation of individual receivers. Our scheme is the first one that involves a public key and private keys having a size that is independent of the number of receivers registered in the system. Its selective security is proven with respect to the Generalized Diffie-Hellman Exponent (GDHE) problem on bilinear groups.

Available format(s)
Public-key cryptography
Publication info
Preprint. MINOR revision.
broadcast encryptionattribute-based encryption
Contact author(s)
pascal junod @ heig-vd ch
2015-08-28: received
Short URL
Creative Commons Attribution


      author = {Benjamin Wesolowski and Pascal Junod},
      title = {Ciphertext-Policy Attribute-Based Broadcast Encryption with Small Keys},
      howpublished = {Cryptology ePrint Archive, Paper 2015/836},
      year = {2015},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.