Paper 2019/798

A Generic Construction for Revocable Identity-Based Encryption with Subset Difference Methods

Kwangsu Lee


To deal with dynamically changing user's credentials in identity-based encryption (IBE), providing an efficient key revocation method is a very important issue. Recently, Ma and Lin proposed a generic method of designing a revocable IBE (RIBE) scheme that uses the complete subtree (CS) method by combining IBE and hierarchical IBE (HIBE) schemes. In this paper, we propose a new generic method for designing an RIBE scheme that uses the subset difference (SD) method instead of using the CS method. In order to use the SD method, we generically design an RIBE scheme by combining two-level HIBE and single revocation encryption (SRE) schemes. If the underlying HIBE and SRE schemes are adaptively (or selectively) secure, then our RIBE scheme is also adaptively (or selectively) secure. In addition, we show that the layered SD (LSD) method can be applied to our RIBE scheme and a chosen-ciphertext secure RIBE scheme also can be designed generically.

Note: The scheme of our previous paper is insecure since there is an attack, so we updated our scheme to fix the problem in this revised paper.

Available format(s)
Public-key cryptography
Publication info
Preprint. MINOR revision.
Revocable identity-based encryptionSubset difference methodGeneric construction
Contact author(s)
kwangsu @ sejong ac kr
2021-02-11: last of 2 revisions
2019-07-14: received
See all versions
Short URL
Creative Commons Attribution


      author = {Kwangsu Lee},
      title = {A Generic Construction for Revocable Identity-Based Encryption with Subset Difference Methods},
      howpublished = {Cryptology ePrint Archive, Paper 2019/798},
      year = {2019},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.