Paper 2025/364

Traitor Tracing in Multi-sender Setting (TMCFE: Traceable Multi-client Functional Encryption)

Xuan Thanh Do, Institute of Cryptography Science and Technology, Vietnam
Dang Truong Mac, Vietnam National University, Hanoi, Vietnam
Ky Nguyen, DIENS, École normale supérieure, CNRS, Inria, PSL University, Paris, France
Duong Hieu Phan, LTCI, Telecom Paris, Institut Polytechnique de Paris, France
Quoc-Huy Vu, De Vinci Higher Education, De Vinci Research Center, Paris, France
Abstract

Traitor tracing is a traditional cryptographic primitive designed for scenarios with multiple legitimate receivers. When the plaintext - that is, the output of decryption - is leaked and more than one legitimate receiver exists, it becomes imperative to identify the source of the leakage, a need that has motivated the development of traitor tracing techniques. Recent advances in standard encryption have enabled decryption outcomes to be defined in a fine-grained manner through the introduction of Functional Encryption (FE). Constructing FE schemes is intriguing, and achieving the tracing property adds an additional layer of complexity. Traitor tracing techniques have been actively developed for more than three decades, yet they have always remained within the same framework - a single sender responsible for encrypting all the data. However, fine-grained decryption is particularly useful when data originates from multiple sources, allowing for joint computation on personal data. This leads to the concept of multi-client functional encryption (MCFE), where multiple concurrent senders independently encrypt their data while agreeing on the decryption of a specific function (e.g., a statistical measure) computed on the aggregated data, without revealing any additional information. In the era of cloud computing and big data, privacy-preserving joint computation is crucial, and tracing the source of any breach by dishonest participants becomes essential. Thus, in this paper we take the first step toward addressing the tracing problem in the general context of joint computation with multiple senders. Our contributions are twofold: - We propose the first tracing model in the context of multi-sender encryption, namely (), which allows a pirate to extract secret information from both receivers and senders. Our model supports strong and naturally admissible decoders, removing artificial restrictions on the pirate decoder and thus addressing the shortcomings of existing traceable functional encryption schemes designed for the single-sender setting. - To achieve our conceptual objective, we build upon the recently introduced notion of strong admissibility for MCFE. Our main technical contribution is a generic compiler that transforms a large class of MCFE schemes with weak admissibility into schemes with strong admissibility. This compiler not only helps overcome existing challenges but may also be of general interest within the functional encryption domain. Finally, we present a concrete lattice-based scheme for inner-product functionalities that achieves post-quantum security under standard assumptions.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Functional EncryptionTraitor TracingSecurity Notions
Contact author(s)
thanhkhtn @ gmail com
macdangtruong258 @ gmail com
ky nguyen @ ens fr
hieu phan @ telecom-paris fr
quoc huy vu @ ens fr
History
2025-03-04: approved
2025-02-26: received
See all versions
Short URL
https://ia.cr/2025/364
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2025/364,
      author = {Xuan Thanh Do and Dang Truong Mac and Ky Nguyen and Duong Hieu Phan and Quoc-Huy Vu},
      title = {Traitor Tracing in Multi-sender Setting ($\textsf{{TMCFE}}$: Traceable Multi-client Functional Encryption)},
      howpublished = {Cryptology {ePrint} Archive, Paper 2025/364},
      year = {2025},
      url = {https://eprint.iacr.org/2025/364}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.