We provide efficient constructions for trace-and-revoke systems with public traceability in the black-box confirmation model. Our constructions achieve adaptive security, are based on standard assumptions and achieve significant efficiency gains compared to previous constructions.



Our constructions rely on a generic transformation from inner product functional encryption (IPFE) schemes to trace-and-revoke systems. Our transformation requires the underlying IPFE scheme to only satisfy a very weak notion of security -- the attacker may only request a bounded number of random keys -- in contrast to the standard notion of security where she may request an unbounded number of arbitrarily chosen keys. We exploit the much weaker security model to provide a new construction for bounded collusion and random key IPFE from the learning with errors assumption (LWE), which enjoys improved efficiency compared to the scheme of Agrawal et al. [CRYPTO'16].



Together with IPFE schemes from Agrawal et al., we obtain trace and revoke from LWE, Decision Diffie Hellman and Decision Composite Residuosity

Agrawal, Shweta

Bhattacherjee, Sanjay

Phan, Duong Hieu

Stehlé, Damien

Yamada, Shota

English

International audienceWe provide efficient constructions for trace-and-revoke systemswith public traceability in the black-box confirmationmodel. Our constructions achieve adaptive security, are basedon standard assumptions and achieve significant efficiencygains compared to previous constructions.Our constructions rely on a generic transformation frominner product functional encryption (IPFE) schemes to traceand-revoke systems. Our transformation requires the underlyingIPFE scheme to only satisfy a very weak notion of security– the attacker may only request a bounded number of randomkeys – in contrast to the standard notion of security whereshe may request an unbounded number of arbitrarily chosenkeys. We exploit the much weaker security model to providea new construction for bounded collusion and randomkey IPFE from the learning with errors assumption (LWE),which enjoys improved efficiency compared to the scheme ofAgrawal et al. [CRYPTO’16].Together with IPFE schemes from Agrawal et al., we obtaintrace and revoke from LWE, Decision Diffie Hellman andDecision Composite Residuosit

HAL-UNILIM

Efficient Public Trace and Revoke from Standard Assumptions

HAL-ENS-LYON

Kent Academic Repository

Hal-Diderot

INRIA a CCSD electronic archive server

We provide efficient constructions for trace-and-revoke systems with public
traceability in the black-box confirmation model. Our constructions achieve adaptive
security, are based on standard assumptions and achieve significant efficiency gains
compared to previous constructions.
Our constructions rely on a generic transformation from inner product functional encryption (IPFE) schemes to trace-and-revoke systems. Our transformation requires the
underlying IPFE scheme to only satisfy a very weak notion of security -- the attacker
may only request a bounded number of random keys -- in contrast to the standard notion of security where she may request an unbounded number of arbitrarily chosen keys.
We exploit the much weaker security model to provide a new construction for bounded
collusion and random key IPFE from the learning with errors assumption (LWE), which
enjoys improved efficiency compared to the scheme of Agrawal et al. [CRYPTO\u2716].
Together with IPFE schemes from Agrawal et al., we obtain trace and revoke from
LWE, Decision Diffie Hellman and Decision Quadratic Residuosity

Efficient Public Trace and Revoke from Standard Assumptions

Abstract

Similar works

Full text

Available Versions

HAL-UNILIM

HAL-ENS-LYON

Kent Academic Repository

Hal-Diderot

INRIA a CCSD electronic archive server

Cryptology ePrint Archive