Paper 2021/976

Reinventing BEDs: Formal Treatment of Broadcast Encryption with Dealership and Practical Constructions

Sayantan Mukherjee and Avishek Majumder

Abstract

Broadcast Encryption allows a sender to send a message to more than one receiver. In a typical broadcast encryption, the broadcaster decides the privileged set as in who all can decrypt a particular ciphertext. Gritti et al. (IJIS'16) introduced a new primitive called Broadcast Encryption with Dealership (BED), where the dealer/wholesaler decides the privileged set. This rather recently introduced primitive allows a wholesaler to buy content from the broadcaster and sell it to users. Following their construction, to date, three more constructions of broadcast encryption with dealership have been proposed. Among them, the first showed the BED construction of Gritti et al. (IJIS'16) to be insecure. All the state-of-the-arts works were unable to fully identify the requirements of a BED scheme. We first identify and propose a new security requirement that has not been considered before. After formally defining a BED scheme, we show simple pairing-based attacks on all previous constructions rendering all of them useless. We then give the first secure BED construction in the composite-order pairing groups. This construction achieves constant-size ciphertext and secret keys but achieves selectively secure message hiding only. We then give our second construction from Li and Gong's (PKC'18) anonymous broadcast encryption. This construction achieves adaptively secure message hiding but has ciphertext size dependent on the size of the privileged set. Following that, we propose our third and final construction that achieves constant size ciphertext in the standard model and achieves adaptive message hiding security.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint. MINOR revision.
Keywords
Broadcast EncryptionDealerMembership EncryptionBilinear PairingBroadcast Encryption with Dealership
Contact author(s)
csayantan mukherjee @ gmail com
avishek majumder1991 @ gmail com
History
2021-07-22: received
Short URL
https://ia.cr/2021/976
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/976,
      author = {Sayantan Mukherjee and Avishek Majumder},
      title = {Reinventing BEDs: Formal Treatment of Broadcast Encryption with Dealership and Practical Constructions},
      howpublished = {Cryptology ePrint Archive, Paper 2021/976},
      year = {2021},
      note = {\url{https://eprint.iacr.org/2021/976}},
      url = {https://eprint.iacr.org/2021/976}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.