Your search keyword '"56-bit encryption"' showing total 13 results

1. A Generic Scheme of plaintext-checkable database encryption

Author

Sha Ma, Yi Mu, and Willy Susilo

Subjects

Information Systems and Management, Theoretical computer science, Plaintext-aware encryption, Computer science, Hash function, 02 engineering and technology, Database encryption, computer.software_genre, Encryption, Theoretical Computer Science, Random oracle, Multiple encryption, Filesystem-level encryption, Artificial Intelligence, 0202 electrical engineering, electronic engineering, information engineering, Chosen-ciphertext attack, Database, business.industry, 020206 networking & telecommunications, Plaintext, Computer Science Applications, Deterministic encryption, Control and Systems Engineering, Probabilistic encryption, Pairing, 40-bit encryption, 56-bit encryption, 020201 artificial intelligence & image processing, Attribute-based encryption, Link encryption, On-the-fly encryption, business, computer, Software

Abstract

Database encryption is essential for cloud database systems. For a large database, decryption could take a lot of computational time. Therefore, verifying an encryption that contains a correct plaintext without decryption becomes significant for a large database system. Plaintext-checkable encryption (PCE) is a potential tool for such database systems, which is first proposed by Canard et al. in CT-RSA 2012. Although the generic PCE in the random oracle model has been studied intensively, the generic PCE in the standard model and its efficient implementation are still challenging problems. This paper presents the first generic PCE in the standard model using smooth projective hash function (SPHF) and prove its s-priv1-cca security, which is independent of current unlink security. Based on the instantiated SPHF from DDH assumption, we obtain the most efficient PCE in the standard model, without any pairing operation. Finally, we improve two existing generic constructions in the random oracle model so that they are secure under chosen ciphertext attack.

Published

2018

2. Identity-based broadcast encryption with continuous leakage resilience

Author

Jiguo Li, Qihong Yu, and Yichen Zhang

Subjects

Information Systems and Management, 0102 computer and information sciences, 02 engineering and technology, Encryption, computer.software_genre, Computer security, 01 natural sciences, Theoretical Computer Science, Multiple encryption, Artificial Intelligence, 0202 electrical engineering, electronic engineering, information engineering, Mathematics, Hardware_MEMORYSTRUCTURES, business.industry, Computer Science Applications, 010201 computation theory & mathematics, Control and Systems Engineering, Probabilistic encryption, 56-bit encryption, 40-bit encryption, 020201 artificial intelligence & image processing, Attribute-based encryption, On-the-fly encryption, business, computer, Broadcast encryption, Software, Computer network

Abstract

Identity-based broadcast encryption (IBBE) is an important type of broadcast encryption. In the paper, we put forward the formal definition and security model of IBBE with leakage-resilience. Furthermore, we propose an IBBE scheme with continuous leakage-resilience. The presented scheme is resilient to private key leakage. By refreshing the private key, our scheme can resist continuous private key leakage. Based on dual system encryption technique, we prove the security of the proposed scheme under subgroup decisional assumptions. We give the specific performance analysis of leakage-resilience. The relative leakage ratio can amount to 1/3.

Published

2018

3. Semi-generic construction of public key encryption and identity-based encryption with equality test

Author

Huaxiong Wang, Hyung Tae Lee, Jae Hong Seo, San Ling, and School of Physical and Mathematical Sciences

Subjects

Information Systems and Management, Theoretical computer science, Identity-based encryption, 02 engineering and technology, Public key encryption, Encryption, Computer security, computer.software_genre, Theoretical Computer Science, Random oracle, Public-key cryptography, Identity (mathematics), Artificial Intelligence, 0202 electrical engineering, electronic engineering, information engineering, Mathematics, business.industry, 020206 networking & telecommunications, Computer Science Applications, Control and Systems Engineering, Probabilistic encryption, 56-bit encryption, 40-bit encryption, 020201 artificial intelligence & image processing, Attribute-based encryption, business, computer, Software

Abstract

Public key encryption with equality test (PKEET), which was first introduced by Yang et al. (CT-RSA, 2010), has various applications including facilitating keyword search on encrypted data and partitioning encrypted data on the cloud. It can be also applied to manage personal health records on the internet. For these reasons, there have been improvements on earlier PKEET schemes in terms of performance and functionality. We present a semi-generic method for PKEET constructions, assuming only the existence of IND-CCA2 secure traditional public key encryption (PKE) schemes, the hardness of Computational Diffie-Hellman (CDH) problems, and random oracles. Our approach has several advantages; it enables us to understand requirements for the equality test functionality more clearly. Furthermore, our approach is quite general, in that if we change the underlying PKE scheme with the identity-based encryption (IBE) scheme (and we assume the hardness of Bilinear Diffie-Hellman problems instead of CDH), then we obtain the first IBE scheme with equality test (IBEET) satisfying analogous security arguments to those of PKEET. Although an IBEET construction was recently proposed, but we note that it satisfies only weak security requirements. MOE (Min. of Education, S’pore) Accepted version

Published

2016

4. Continuous leakage-resilient certificate-based encryption

Author

Guo Yuyan, Qihong Yu, Yang Lu, Yichen Zhang, Futai Zhang, and Jiguo Li

Subjects

Information Systems and Management, 0102 computer and information sciences, 02 engineering and technology, Certificate-based encryption, Encryption, Computer security, computer.software_genre, 01 natural sciences, Theoretical Computer Science, Multiple encryption, Artificial Intelligence, 0202 electrical engineering, electronic engineering, information engineering, Mathematics, business.industry, Computer Science Applications, 010201 computation theory & mathematics, Control and Systems Engineering, Probabilistic encryption, 40-bit encryption, 56-bit encryption, 020201 artificial intelligence & image processing, Attribute-based encryption, On-the-fly encryption, business, computer, Software, Computer network

Abstract

Encryption schemes are generally considered to be secure in an ideal environment, where the adversary cannot obtain the secret internal state of schemes. However, in the realistic environment, the adversary can gain partial information about decryption private key through various types of side channel attacks. In order to capture these attacks, it is crucial to design encryption schemes which are resilient to leakage. In this article, we first formalize a continuous leakage-resilient security model of certificate-based encryption. In the model, the adversary continuously obtains partial information about the secret states through the continuous leakage attacks. Furthermore, we construct a continuous leakage-resilient certificate-based encryption (CLR-CBE) scheme which is resilient to continuous leakage, and it is secure against adaptive chosen ciphertext attacks under the bilinear Diffie-Hellman inversion (BDHI) hardness assumption. Lastly, we show the bound on leakage and make comparison between proposed and existing schemes in terms of security properties and efficiency.

Published

2016

5. IRIBE: Intrusion-resilient identity-based encryption

Author

Minglei Shu, Huawei Zhao, Rong Hao, Jianxi Fan, and Jia Yu

Subjects

021110 strategic, defence & security studies, Information Systems and Management, business.industry, 0211 other engineering and technologies, 02 engineering and technology, computer.software_genre, Encryption, Computer security, Computer Science Applications, Theoretical Computer Science, Multiple encryption, Artificial Intelligence, Control and Systems Engineering, Probabilistic encryption, 0202 electrical engineering, electronic engineering, information engineering, 56-bit encryption, 40-bit encryption, 020201 artificial intelligence & image processing, Link encryption, Attribute-based encryption, On-the-fly encryption, business, computer, Software, Mathematics

Abstract

In order to limit the damage of key exposure for identity-based encryption, we propose a new paradigm called intrusion-resilient identity-based encryption (IRIBE) in this paper. Compared with key-insulated identity-based encryption and forward-secure identity-based encryption, IRIBE can achieve a stronger level of security. In our proposed scheme, the ciphertexts in any other time periods are secure even after arbitrarily many compromises of the base and the user, as long as compromises do not happen simultaneously. Furthermore, the intruder cannot decrypt the ciphertexts pertaining to previous time periods, even if it compromises the base and the user simultaneously. Therefore, our IRIBE scheme can greatly enhance the security of identity-based encryption. We also formalize the definition and the security notions of this paradigm. The proposed scheme is proven secure in the standard model.

Published

2016

6. Identity-based encryption with outsourced equality test in cloud computing

Author

Sha Ma

Subjects

Information Systems and Management, Theoretical computer science, business.industry, 020206 networking & telecommunications, 02 engineering and technology, Encryption, Computer security, computer.software_genre, Computer Science Applications, Theoretical Computer Science, Multiple encryption, Artificial Intelligence, Control and Systems Engineering, Probabilistic encryption, 0202 electrical engineering, electronic engineering, information engineering, 40-bit encryption, 56-bit encryption, 020201 artificial intelligence & image processing, Attribute-based encryption, Link encryption, On-the-fly encryption, business, computer, Software, Mathematics

Abstract

It is the first time to integrate identity-based encryption into public key encryption with equality test.It extends identity-based encryption with keyword search to yield a general function: equality test.It is proven to be one-way chosen-ciphertext security against a chosen identity attack as a desirable security.Unlike PEKS or IBEKS, it can be used alone since it contains decryption algorithm besides encryption algorithm. We firstly combine the concepts of public key encryption with equality test (PKEET) and identity-based encryption (IBE) to obtain identity-based encryption with equality test (IBEET). Inheriting the advantage of IBE, IBEET can simplify the certificate management of PKEET with all messages encrypted with the receiver's public identity. In the IBEET scheme, the receiver computes a trapdoor using the secret value for the identity and then sends it to a cloud server for equality test on its ciphertexts with others' ciphertexts. Using this primitive someone with the trapdoor for its identity can delegate out the capability of equality test on its ciphertexts without requiring a central authority to act as a delegator. So it is very suitable for the client with minimal computation resource, e.g, mobile phone. Furthermore, compared with PKEET, it has security improvement since not anyone can perform the test. Therefore, IBEET may have interesting applications in cloud computing, e.g., partition of encrypted emails. We define one-way chosen-ciphertext security against a chosen identity attack (OW-ID-CCA) and propose a construction in bilinear pairing. Finally, extensive security analysis and comparison with related works show that the proposed scheme is proven secure and useful.

Published

2016

7. A novel authenticated encryption scheme and its extension

Author

Jianhong Zhang, Cheng Ji, and Xubing Zhao

Subjects

Authenticated encryption, Information Systems and Management, business.industry, Computer science, Distributed computing, Data_MISCELLANEOUS, Sponge function, Encryption, computer.software_genre, Computer Science Applications, Theoretical Computer Science, Random oracle, Deterministic encryption, Multiple encryption, Filesystem-level encryption, Digital signature, Artificial Intelligence, Control and Systems Engineering, Probabilistic encryption, 56-bit encryption, 40-bit encryption, On-the-fly encryption, business, computer, Software

Abstract

An authenticated encryption scheme is a message transmission scheme, which can send a message in a secure and authentic way, and allows the specified recipient to simultaneously recover and verify the validity of a message. In the large message transmission, traditional authenticated encryption schemes have the disadvantages that communication overheads and the computation costs are too high. In this work, we propose a secure authentication encryption scheme and show that the scheme is secure in the random oracle model. In comparison with Lv et al.'s scheme and Li et al.'s scheme, our proposed scheme is the most efficient one in terms of computation complexity and communication cost. Finally, we extend our proposed scheme to adapt to the authenticated encryption for a large message, which is secure against the message block being reordered, replicated or partially deleted during transmission.

Published

2015

8. Anonymous spatial encryption under affine space delegation functionality with full security

Author

Mingwu Zhang, Bo Yang, and Tsuyoshi Takagi

Subjects

Information Systems and Management, Theoretical computer science, Plaintext-aware encryption, Computer science, media_common.quotation_subject, Data_MISCELLANEOUS, Encryption, Computer security, computer.software_genre, Disk encryption hardware, Theoretical Computer Science, Watermarking attack, Multiple encryption, Filesystem-level encryption, Artificial Intelligence, Computer Science::Multimedia, Ciphertext, Predicate encryption, Computer Science::Cryptography and Security, media_common, Functional encryption, Delegation, business.industry, Client-side encryption, Plaintext, Computer Science Applications, Disk encryption theory, Deterministic encryption, Control and Systems Engineering, Probabilistic encryption, 56-bit encryption, 40-bit encryption, Attribute-based encryption, Link encryption, business, Broadcast encryption, computer, Software

Abstract

Anonymous encryption provides the decrypter’s identity privacy preservation as well as plaintext confidentiality. Spatial encryption, which is a kind of functional encryption, provides a generalized framework for special property encryption schemes such as broadcast encryption, predicate encryption, forward secure encryption, (hierarchical) identity-based encryption, delegatable attribute-based encryption etc. In this paper, we propose an anonymous spatial encryption scheme that deploys an affine subspace delegation mechanism. Our proposed scheme captures the message confidentiality , recipient anonymity , adaptive security , partial-order delegation and short ciphertext , simultaneously. To the best of our knowledge, the proposed scheme is the first anonymous spatial encryption that provides the anonymity property in adaptive security model, whose construction is based on a dual system encryption mechanism in bilinear composite-order groups. We also give a conversion construction to move into a prime-order setting with canceling property , whose security is based on the Decision Linear Problem. Finally, we provide a transformation methodology to obtain a CCA-secure scheme that combines a one-time signature, delegation functionality and the CPA-secure scheme.

Published

2014

9. An expressive and provably secure Ciphertext-Policy Attribute-Based Encryption

Author

A. Balu and K. Kuppusamy

Subjects

TheoryofComputation_MISCELLANEOUS, Homomorphic secret sharing, Information Systems and Management, Plaintext-aware encryption, Theoretical computer science, Proactive secret sharing, Computer science, Access control, Data_CODINGANDINFORMATIONTHEORY, Encryption, computer.software_genre, Secret sharing, Theoretical Computer Science, Multiple encryption, Filesystem-level encryption, Artificial Intelligence, Ciphertext, business.industry, Client-side encryption, Computer Science Applications, Deterministic encryption, Disk encryption, Control and Systems Engineering, Probabilistic encryption, 40-bit encryption, 56-bit encryption, Keyfile, Link encryption, Attribute-based encryption, On-the-fly encryption, business, computer, Software

Abstract

Ciphertext-Policy Attribute-Based Encryption (CP-ABE) allows to encrypt data under an access policy, specified as a logical combination of attributes. Such ciphertexts can be decrypted by anyone with a set of attributes that satisfy the access policy. We propose a Ciphertext-Policy Attribute-Based Encryption, which is based on a recent secret sharing method called Linear Integer Secret Sharing Scheme (LISS). In this scheme, the encryptor can specify the access policy in terms of LISS matrix M, over the attributes in the system. The scheme is selectively secure under Decisional Bilinear Diffie-Hellman (DBDH) assumption.

Published

2014

10. Search pattern leakage in searchable encryption: Attacks and new construction

Author

Chang Liu, Yu-an Tan, Liehuang Zhu, and Mingzhong Wang

Subjects

Information Systems and Management, Computer science, business.industry, Client-side encryption, Adversary, computer.software_genre, Computer security, Encryption, Computer Science Applications, Theoretical Computer Science, Multiple encryption, Filesystem-level encryption, Artificial Intelligence, Control and Systems Engineering, Probabilistic encryption, 56-bit encryption, 40-bit encryption, On-the-fly encryption, Oblivious ram, business, computer, Software

Abstract

Searching on remote encrypted data (commonly known as searchable encryption) has become an important issue in secure data outsourcing, since it allows users to outsource encrypted data to an untrusted third party while maintains the capability of keyword search on the data. Searchable encryption can be achieved using the classical method called oblivious RAM, but the resultant schemes are too inefficient to be applied in the real-world scenarios (e.g., cloud computing). Recently, a number of efficient searchable encryption schemes have been proposed under weaker security guarantees. Such schemes, however, still leak statistical information about the users' search pattern. In this paper, we first present two concrete attack methods to show that the search pattern leakage will result in such a situation: an adversary who has some auxiliary knowledge can uncover the underlying keywords of user queries. To address this issue, we then develop a grouping-based construction (GBC) to transform an existing searchable encryption scheme to a new scheme hiding the search pattern. Finally, experiments based on the real-world dataset demonstrate the effectiveness of our attack methods and the feasibility of our construction.

Published

2014

11. Provably secure threshold public-key encryption with adaptive security and short ciphertexts

Author

Qianhong Wu, Bo Qin, Josep Domingo-Ferrer, Oriol FarríS, and Lei Zhang

Subjects

Information Systems and Management, Plaintext-aware encryption, Computer science, computer.software_genre, Encryption, Computer security, Theoretical Computer Science, Public-key cryptography, Multiple encryption, Artificial Intelligence, Ciphertext, Goldwasser–Micali cryptosystem, Key size, Cryptographic primitive, business.industry, Computer Science Applications, Deterministic encryption, Ciphertext indistinguishability, Control and Systems Engineering, Probabilistic encryption, 40-bit encryption, 56-bit encryption, Attribute-based encryption, On-the-fly encryption, business, computer, Software, Computer network

Abstract

Threshold public-key encryption is a cryptographic primitive allowing decryption control in group-oriented encryption applications. Existing TPKE schemes suffer from long ciphertexts with size linear in the number of authorized users or can only achieve non-adaptive security, which is too weak to capture the capacity of the attackers in the real world. In this paper, we propose an efficient TPKE scheme with constant-size ciphertexts and adaptive security. Security is proven under the decision Bilinear Diffie-Hellman Exponentiation assumption in the standard model. Then we extend our basic construction with efficient trade-offs between the key size and the ciphertext size. Finally, we illustrate improvements to transmit multiple secret session keys in one session with almost no extra cost.

Published

2012

12. Generic construction of designated tester public-key encryption with keyword search

Author

Jong Hwan Park, Hyun Sook Rhee, and Dong Hoon Lee

Subjects

Information Systems and Management, Computer science, Data security, computer.software_genre, Encryption, Computer security, Theoretical Computer Science, Public-key cryptography, Multiple encryption, Email encryption, Filesystem-level encryption, Artificial Intelligence, business.industry, Client-side encryption, Computer Science Applications, Disk encryption theory, Control and Systems Engineering, Probabilistic encryption, 40-bit encryption, 56-bit encryption, Keyfile, Attribute-based encryption, Link encryption, On-the-fly encryption, business, computer, Software

Abstract

This paper provides two generic transformations to construct a designated tester public-key encryption with keyword search scheme using two identity-based encryption schemes. We also identify the properties of identity-based encryption that are sufficient to provide the confidentiality and consistency in designated tester public-key encryption with keyword search. The anonymity and confidentiality of identity-based encryption are sufficient for achieving confidentiality of designated tester public-key encryption with keyword search, and the confidentiality of identity-based encryption is sufficient for achieving consistency of designated tester public-key encryption with keyword search. Our constructions do not need any global set-up for the public parameters. We further extend our generic method to construct designated tester identity-based encryption with keyword search, where encryption is performed under the identity of a recipient instead of a public key.

Published

2012

13. Secure public-key encryption scheme without random oracles

Author

Chik How Tan

Subjects

Information Systems and Management, Theoretical computer science, Plaintext-aware encryption, business.industry, Encryption, Computer Science Applications, Theoretical Computer Science, Deterministic encryption, Multiple encryption, Artificial Intelligence, Control and Systems Engineering, Probabilistic encryption, 40-bit encryption, 56-bit encryption, Attribute-based encryption, business, Software, Mathematics

Abstract

Since the first practical and secure public-key encryption scheme without random oracles proposed by Cramer and Shoup in 1998, Cramer-Shoup's scheme and its variants remained the only practical and secure public-key encryption scheme without random oracles until 2004. In 2004, Canetti et al. proposed a generic transformation from a selective identity-based encryption scheme to a public-key encryption by adding a one-time strongly signature scheme. Since then, some transformation techniques from a selective identity-based encryption scheme to a public-key encryption have been proposed to enhance the computational efficiency, for example, Boneh-Katz's construction and Boyen-Mei-Waters' scheme. These transformations have either traded-off the publicly verifiable properties or tightness of security reduction. In 2007, Zhang proposed another generic transformation by adding Chameleon hash functions. In this paper, we introduce another technique from the Boneh-Boyen's selective identity-based encryption scheme to a public-key encryption which is publicly verifiable and is slightly more efficient than Zhang's transformation. The proposed public-key encryption scheme is based on the decisional bilinear Diffie-Hellman assumption and the target collision resistant hash functions.

Published

2008