The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. ex. Some numerals are expressed as "XNUMX".
Copyrights notice
The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. Copyrights notice
Exibições de texto completo
97
Este artigo apresenta esquemas descentralizados de criptografia e assinatura baseados em atributos de múltiplas autoridades (DMA-ABE e DMA-ABS), nos quais não existe autoridade central e nenhuma coordenação global é necessária, exceto para o estabelecimento de um parâmetro para um grupo bilinear de ordem principal e uma função hash, que pode estar disponível em documentos públicos, por exemplo, documentos oficiais ISO e FIPS. Nos esquemas DMA-ABE e DMA-ABS propostos, todos os processos podem ser executados de forma totalmente descentralizada; qualquer parte pode se tornar uma autoridade e emitir uma parte de uma chave secreta para um usuário sem interagir com qualquer outra parte, e cada usuário obtém uma parte de sua chave secreta da autoridade associada sem interagir com qualquer outra parte. Embora desfrutem de tais processos totalmente descentralizados, os esquemas propostos ainda são seguros contra ataques de conluio, ou seja, múltiplas peças emitidas para um usuário por diferentes autoridades podem formar uma chave secreta resistente ao conluio, composta por essas peças, do usuário. O esquema ABE proposto é o primeiro DMA-ABE para relações não monótonas (e relações mais gerais), que é adaptativamente seguro sob a suposição linear decisória (DLIN) no modelo oráculo aleatório. Este artigo também propõe o primeiro esquema DMA-ABS para relações não monótonas (e relações mais gerais), que é totalmente seguro, predicado adaptativo imprevisível e privado perfeito, sob a suposição DLIN no modelo oráculo aleatório. DMA-ABS é uma noção generalizada de assinaturas em anel. A eficiência dos esquemas DMA-ABE e DMA-ABS propostos é comparável à dos esquemas práticos ABE e ABS existentes, com relações e segurança comparáveis.
Tatsuaki OKAMOTO
NTT Research Inc.
Katsuyuki TAKASHIMA
Mitsubishi Electric Corporation
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copiar
Tatsuaki OKAMOTO, Katsuyuki TAKASHIMA, "Decentralized Attribute-Based Encryption and Signatures" in IEICE TRANSACTIONS on Fundamentals,
vol. E103-A, no. 1, pp. 41-73, January 2020, doi: 10.1587/transfun.2019CIP0008.
Abstract: This paper presents decentralized multi-authority attribute-based encryption and signature (DMA-ABE and DMA-ABS) schemes, in which no central authority exists and no global coordination is required except for the setting of a parameter for a prime order bilinear group and a hash function, which can be available from public documents, e.g., ISO and FIPS official documents. In the proposed DMA-ABE and DMA-ABS schemes, every process can be executed in a fully decentralized manner; any party can become an authority and issue a piece for a secret key to a user without interacting with any other party, and each user obtains a piece of his/her secret key from the associated authority without interacting with any other party. While enjoying such fully decentralized processes, the proposed schemes are still secure against collusion attacks, i.e., multiple pieces issued to a user by different authorities can form a collusion resistant secret key, composed of these pieces, of the user. The proposed ABE scheme is the first DMA-ABE for non-monotone relations (and more general relations), which is adaptively secure under the decisional linear (DLIN) assumption in the random oracle model. This paper also proposes the first DMA-ABS scheme for non-monotone relations (and more general relations), which is fully secure, adaptive-predicate unforgeable and perfect private, under the DLIN assumption in the random oracle model. DMA-ABS is a generalized notion of ring signatures. The efficiency of the proposed DMA-ABE and DMA-ABS schemes is comparable to those of the existing practical ABE and ABS schemes with comparable relations and security.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1587/transfun.2019CIP0008/_p
Copiar
@ARTICLE{e103-a_1_41,
author={Tatsuaki OKAMOTO, Katsuyuki TAKASHIMA, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={Decentralized Attribute-Based Encryption and Signatures},
year={2020},
volume={E103-A},
number={1},
pages={41-73},
abstract={This paper presents decentralized multi-authority attribute-based encryption and signature (DMA-ABE and DMA-ABS) schemes, in which no central authority exists and no global coordination is required except for the setting of a parameter for a prime order bilinear group and a hash function, which can be available from public documents, e.g., ISO and FIPS official documents. In the proposed DMA-ABE and DMA-ABS schemes, every process can be executed in a fully decentralized manner; any party can become an authority and issue a piece for a secret key to a user without interacting with any other party, and each user obtains a piece of his/her secret key from the associated authority without interacting with any other party. While enjoying such fully decentralized processes, the proposed schemes are still secure against collusion attacks, i.e., multiple pieces issued to a user by different authorities can form a collusion resistant secret key, composed of these pieces, of the user. The proposed ABE scheme is the first DMA-ABE for non-monotone relations (and more general relations), which is adaptively secure under the decisional linear (DLIN) assumption in the random oracle model. This paper also proposes the first DMA-ABS scheme for non-monotone relations (and more general relations), which is fully secure, adaptive-predicate unforgeable and perfect private, under the DLIN assumption in the random oracle model. DMA-ABS is a generalized notion of ring signatures. The efficiency of the proposed DMA-ABE and DMA-ABS schemes is comparable to those of the existing practical ABE and ABS schemes with comparable relations and security.},
keywords={},
doi={10.1587/transfun.2019CIP0008},
ISSN={1745-1337},
month={January},}
Copiar
TY - JOUR
TI - Decentralized Attribute-Based Encryption and Signatures
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 41
EP - 73
AU - Tatsuaki OKAMOTO
AU - Katsuyuki TAKASHIMA
PY - 2020
DO - 10.1587/transfun.2019CIP0008
JO - IEICE TRANSACTIONS on Fundamentals
SN - 1745-1337
VL - E103-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2020
AB - This paper presents decentralized multi-authority attribute-based encryption and signature (DMA-ABE and DMA-ABS) schemes, in which no central authority exists and no global coordination is required except for the setting of a parameter for a prime order bilinear group and a hash function, which can be available from public documents, e.g., ISO and FIPS official documents. In the proposed DMA-ABE and DMA-ABS schemes, every process can be executed in a fully decentralized manner; any party can become an authority and issue a piece for a secret key to a user without interacting with any other party, and each user obtains a piece of his/her secret key from the associated authority without interacting with any other party. While enjoying such fully decentralized processes, the proposed schemes are still secure against collusion attacks, i.e., multiple pieces issued to a user by different authorities can form a collusion resistant secret key, composed of these pieces, of the user. The proposed ABE scheme is the first DMA-ABE for non-monotone relations (and more general relations), which is adaptively secure under the decisional linear (DLIN) assumption in the random oracle model. This paper also proposes the first DMA-ABS scheme for non-monotone relations (and more general relations), which is fully secure, adaptive-predicate unforgeable and perfect private, under the DLIN assumption in the random oracle model. DMA-ABS is a generalized notion of ring signatures. The efficiency of the proposed DMA-ABE and DMA-ABS schemes is comparable to those of the existing practical ABE and ABS schemes with comparable relations and security.
ER -