Paper 2020/1386

Decentralized Multi-Authority ABE for DNFs from LWE

Pratish Datta, Ilan Komargodski, and Brent Waters

Abstract

We construct the first decentralized multi-authority attribute-based encryption (MA-ABE) scheme for a non-trivial class of access policies whose security is based (in the random oracle model) solely on the Learning With Errors (LWE) assumption. The supported access policies are ones described by DNF formulas. All previous constructions of MA-ABE schemes supporting any non-trivial class of access policies were proven secure (in the random oracle model) assuming various assumptions on bilinear maps. In our system, any party can become an authority and there is no requirement for any global coordination other than the creation of an initial set of common reference parameters. A party can simply act as a standard ABE authority by creating a public key and issuing private keys to different users that reflect their attributes. A user can encrypt data in terms of any DNF formulas over attributes issued from any chosen set of authorities. Finally, our system does not require any central authority. In terms of efficiency, when instantiating the scheme with a global bound $s$ on the size of access policies, the sizes of public keys, secret keys, and ciphertexts, all grow with $s$. Technically, we develop new tools for building ciphertext-policy ABE (CP-ABE) schemes using LWE. Along the way, we construct the first provably secure CP-ABE scheme supporting access policies in $\mathsf{NC}^1$ that avoids the generic universal-circuit-based key-policy to ciphertext-policy transformation. In particular, our construction relies on linear secret sharing schemes with new properties and in some sense is more similar to CP-ABE schemes that rely on bilinear maps. While our CP-ABE construction is not more efficient than existing ones, it is conceptually intriguing and further we show how to extend it to get the MA-ABE scheme described above.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
A major revision of an IACR publication in EUROCRYPT 2021
Keywords
Attribute-based encryptionciphertext-policymulti-authoritylearning with errorslinear secret sharing scheme
Contact author(s)
pratish datta @ ntt-research com
ilank @ cs huji ac il
bwaters @ cs utexas edu
History
2021-05-04: last of 2 revisions
2020-11-10: received
See all versions
Short URL
https://ia.cr/2020/1386
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2020/1386,
      author = {Pratish Datta and Ilan Komargodski and Brent Waters},
      title = {Decentralized Multi-Authority {ABE} for {DNFs} from {LWE}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2020/1386},
      year = {2020},
      url = {https://eprint.iacr.org/2020/1386}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.