Private Key Management in Hierarchical Identity-Based Encryption

The concept of Identity Based Cryptography introduced the idea of using arbitrary strings such as e-mail addresses and IP Addresses to form public keys with the corresponding private keys being created by the Trusted Authority(TA) who is in possession of a system-wide master secret. Then a party, Alice who wants to send encrypted communication to Bob need only Bob's identifier and the system-wide public parameters. Thus the receiver is able to choose and manipulate the public key of the intended recipient which has a number of advantages. While IBC removes the problem of trust in the public key, it introduces trust in the TA. As the TA uses the system-wide master secret to compute private keys for users in the system, it can effectively recompute a private key for any arbitrary string without having to archive private keys. This greatly simplifies key management as the TA simply needs to protect its master secret.

Download Full-text

Security of Identity-Based Encryption Algorithms

Advanced Methodologies and Technologies in System Security, Information Privacy, and Forensics - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-7492-7.ch025 ◽

2019 ◽

pp. 312-325

Author(s):

Kannan Balasubramanian ◽

M. Rajakani

Keyword(s):

Key Management ◽

Public Key ◽

The Public ◽

Private Key ◽

Identity Based Encryption ◽

Public Keys ◽

Identity Based ◽

Encryption Algorithms ◽

Encrypted Communication ◽

E Mail

The concept of identity-based cryptography introduced the idea of using arbitrary strings such as e-mail addresses and IP addresses to form public keys with the corresponding private keys being created by the trusted authority (TA) who is in possession of a systemwide master secret. Then a party, Alice, who wants to send encrypted communication to Bob need only Bob's identifier and the systemwide public parameters. Thus, the receiver is able to choose and manipulate the public key of the intended recipient which has a number of advantages. While IBC removes the problem of trust in the public key, it introduces trust in the TA. As the TA uses the systemwide master secret to compute private keys for users in the system, it can effectively recompute a private key for any arbitrary string without having to archive private keys. This greatly simplifies key management as the TA simply needs to protect its master secret.

Download Full-text

Practical identity-based encryption in multiple private key generator (PKG) environments

Security and Communication Networks ◽

10.1002/sec.743 ◽

2013 ◽

Vol 8 (1) ◽

pp. 43-50 ◽

Cited By ~ 1

Author(s):

Shengbao Wang ◽

Zhenfu Cao ◽

Qi Xie ◽

Wenhao Liu

Keyword(s):

Practical Identity ◽

Private Key ◽

Identity Based Encryption ◽

Identity Based

Download Full-text

Implementation of Algorithms for Identity Based Encryption and Decryption

Research Anthology on Artificial Intelligence Applications in Security ◽

10.4018/978-1-7998-7705-9.ch015 ◽

2021 ◽

pp. 315-327

Author(s):

Kannan Balasubramanian ◽

M. Rajakani

Keyword(s):

Third Party ◽

Public And Private ◽

Trusted Third Party ◽

Private Key ◽

Identity Based Encryption ◽

Encryption And Decryption ◽

Semantic Security ◽

Identity Based ◽

Mail Address ◽

E Mail

Identity-based cryptosystems were introduced to overcome one of the main problems in public key encryption, the generation of public and private keys. In the identity-based cryptosystem, an identifier such as an e-mail address of a user can be used to generate public and private keys by a trusted third party. The trusted third party uses a system-wide master secret to provide private keys to a user. Identity-based cryptosystems can be constructed using the idea of pairings. This article discusses four different identity-based cryptosystems: the Boneh-Franklin scheme, the Cock's scheme, the Authenticated IBE scheme and the Hierarchical IBE scheme. This article also discusses the security notions considered for the identity-based cryptosystem. The security notions considered are: one-wayness, indistinguishability, semantic security and non-malleability. An architecture consisting of a public parameter server and private key generator for the implementation of the identity-based cryptosystems is also discussed.

Download Full-text

On Delegating Private Key Derivation in Hierarchical Identity Based Encryption and Related Encryption Privacy

Journal of Software Engineering ◽

10.3923/jse.2016.279.284 ◽

2016 ◽

Vol 10 (3) ◽

pp. 279-284

Author(s):

Jian-Wu Zheng ◽

Jing Zhao ◽

Xin-Ping Guan

Keyword(s):

Private Key ◽

Identity Based Encryption ◽

Identity Based ◽

Key Derivation

Download Full-text

Provably Secure Identity-Based Encryption and Signature over Cyclotomic Fields

Wireless Communications and Mobile Computing ◽

10.1155/2019/1742386 ◽

2019 ◽

Vol 2019 ◽

pp. 1-13

Author(s):

Yang Wang ◽

Mingqiang Wang ◽

Jingdan Zou ◽

Jin Xu ◽

Jing Wang

Keyword(s):

Key Management ◽

Cyclotomic Field ◽

Cyclotomic Fields ◽

Secret Key ◽

Worst Case ◽

Identity Based Encryption ◽

Management Procedures ◽

Identity Based ◽

Identity Based Cryptography ◽

Provably Secure

Identity-based cryptography is a type of public key cryptography with simple key management procedures. To our knowledge, till now, the existing identity-based cryptography based on NTRU is all over power-of-2 cyclotomic rings. Whether there is provably secure identity-based cryptography over more general fields is still open. In this paper, with the help of the results of collision resistance preimage sampleable functions (CRPSF) over cyclotomic fields, we give concrete constructions of provably secure identity-based encryption schemes (IBE) and identity-based signature schemes (IBS) based on NTRU over any cyclotomic field. Our IBE schemes are provably secure under adaptive chosen-plaintext and adaptive chosen-identity attacks, meanwhile, our IBS schemes are existentially unforgeable against adaptively chosen message and adaptively chosen identity attacks for any probabilistic polynomial time (PPT) adversary in the random oracle model. The securities of both schemes are based on the worst-case approximate shortest independent vectors problem (SIVPγ) over corresponding ideal lattices. The secret key size of our IBE (IBS) scheme is short—only one (two) ring element(s). The ciphertext (signature) is also short—only two (three) ring elements. Meanwhile, as the case of NTRUEncrypt, our IBE scheme could encrypt n bits in each encryption process. These properties may make our schemes have more advantages for some IoT applications over postquantum world in theory.

Download Full-text

Identity Based Encryption and Identity Based Signature Scheme: A Research on Security Schemes

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.f1270.0486s419 ◽

2019 ◽

Vol 8 (6S4) ◽

pp. 1330-1337

Keyword(s):

Key Management ◽

Public Key Cryptography ◽

Public Key Infrastructure ◽

Public Key ◽

Signature Scheme ◽

Certificate Authority ◽

Identity Based Encryption ◽

Computer Based ◽

Identity Based ◽

To Receive

In computer based system, key for the problem of identification, authentication and secrecy can be found in the field of cryptography. Dependence on public key infrastructure and to receive certificates signed by Certificate Authority (CA) to authenticate oneself for exchange of encrypted messages is one of the most significant limitation for the widespread adoption of Public Key Cryptography (PKC) as this process is time engrossing and error prone. Identity based cryptography (IBC) aspires to reduce the certificate and key management overhead of PKC. IBC’s important primordial is Identity-based Encryption (IBE). IBE provided emergent for perception of Identity based signature (IBS) schemes. In this paper, overview of IBE and IBS schemes has been given. Also, a survey on various IBE and IBS schemes has been performed to review different problems related to them. Finally, feasibility and applicability of IBC in current and future environments has been discussed.

Download Full-text

Efficient Hierarchical Identity-Based Encryption System for Internet of Things Infrastructure

Symmetry ◽

10.3390/sym11070913 ◽

2019 ◽

Vol 11 (7) ◽

pp. 913

Author(s):

Lifeng Guo ◽

Jing Wang ◽

Wei-Chuen Yau

Keyword(s):

Internet Of Things ◽

Standard Model ◽

Main Concern ◽

The Public ◽

Private Key ◽

Identity Based Encryption ◽

Dual System Encryption ◽

The Standard Model ◽

Identity Based ◽

The Internet Of Things

Security is a main concern for the Internet of Things (IoT) infrastructure as large volumes of data are collected and processed in the systems. Due to the limited resources of interconnected sensors and devices in the IoT systems, efficiency is one of the key considerations when deploying security solutions (e.g., symmetric/asymmetric encryption, authentication, etc.) in IoT. In this paper, we present an efficient Hierarchical Identity-Based Encryption (HIBE) system with short parameters for protecting data confidentiality in distributed IoT infrastructure. Our proposed HIBE system has the public parameters, private key, and ciphertext, each consisting of a constant number of group elements. We prove the full security of the HIBE system in the standard model using the dual system encryption technique. We also implement the proposed scheme and compare the performance with the original Lewko–Waters HIBE. To the best of our knowledge, our construction is the first HIBE system that achieves both full security in the standard model and short parameters in terms of the public parameters, private key, and ciphertext.

Download Full-text

SECURITY ANALYSIS OF A FUZZY IDENTITY-BASED ENCRYPTION SCHEME

Journal of Circuits System and Computers ◽

10.1142/s0218126614500339 ◽

2014 ◽

Vol 23 (03) ◽

pp. 1450033 ◽

Cited By ~ 2

Author(s):

MIAOMIAO TIAN ◽

LIUSHENG HUANG ◽

WEI YANG

Keyword(s):

Security Analysis ◽

Error Tolerance ◽

Encryption Scheme ◽

Security Model ◽

Private Key ◽

Identity Based Encryption ◽

The Standard Model ◽

Real World Applications ◽

Identity Based ◽

Fuzzy Identity

Fuzzy identity-based encryption (FIBE) scheme is a kind of identity-based encryption (IBE) scheme, in which any user's identity is composed by a set of attributes and any ciphertext encrypted under identity ID can be decrypted by using a private key corresponding to identity ID′ if ID′ is close to ID as measured by some metric. Due to the error-tolerance property, FIBE scheme is very useful in real-world applications. However, most FIBE schemes are provable secure only in a weaker security model. In order to eliminate this problem, Ren et al. recently proposed a new FIBE scheme and proved that it is fully chosen-ciphertext secure in the standard model. Unfortunately, in this paper, we will show that their FIBE scheme is even not chosen-plaintext secure.

Download Full-text

Cryptanalysis of a Compact Anonymous HIBE with Constant Size Private Keys

The Computer Journal ◽

10.1093/comjnl/bxy130 ◽

2018 ◽

Vol 62 (8) ◽

pp. 1087-1091

Author(s):

Xi-Jun Lin ◽

Lin Sun ◽

Haipeng Qu ◽

He-Qun Xian

Keyword(s):

Standard Model ◽

Prime Order ◽

Private Key ◽

Identity Based Encryption ◽

Constant Size ◽

The Standard Model ◽

Identity Based

AbstractRecently, Zhang et al. proposed a new anonymous hierarchical identity-based encryption (anonymous HIBE) over prime order groups to achieve both constant size private key and constant size ciphertext. Moreover, a double exponent technique was used to provide anonymity. They proved that their scheme is secure and anonymous against chosen plaintext attacks in the standard model. In this paper, we point out that their scheme is insecure.

Download Full-text