Unique-Path Identity Based Encryption with Applications to Strongly Secure Messaging
Rösler P, Slamanig D, Striecks C (2023)
Publication Type: Conference contribution
Publication year: 2023
Journal
Edited Volumes: Advances in Cryptology – EUROCRYPT 2023
Pages Range: 3-34
Event location: Lyon
ISBN: 9783031305887
DOI: 10.1007/978-3-031-30589-4_1
Abstract
Hierarchical Identity-Based Encryption (HIBE) is a well studied, versatile tool used in many cryptographic protocols. Yet, since the performance of all known HIBE constructions is broadly considered prohibitive, some real-world applications avoid relying on HIBE at the expense of security. A prominent example for this is secure messaging: Strongly secure messaging protocols are provably equivalent to Key-Updatable Key Encapsulation Mechanisms (KU-KEMs; Balli et al., Asiacrypt 2020); so far, all KU-KEM constructions rely on adaptive unbounded-depth HIBE (Poettering and Rösler, Jaeger and Stepanovs, both CRYPTO 2018). By weakening security requirements for better efficiency, many messaging protocols dispense with using HIBE.
In this work, we aim to gain better efficiency without sacrificing security. For this, we observe that applications like messaging only need a restricted variant of HIBE for strong security. This variant, that we call Unique-Path Identity Based Encryption (UPIBE), restricts HIBE by requiring that each secret key can delegate at most one subordinate secret key. However, in contrast to fixed secret key delegation in Forward-Secure Public Key Encryption, the delegation in UPIBE, as in HIBE, is uniquely determined by variable identity strings from an exponentially large space. We investigate this mild but surprisingly effective restriction and show that it offers substantial complexity and performance advantages.
More concretely, we generically build bounded-depth UPIBE from only bounded-collusion IBE in the standard model; and we generically build adaptive unbounded-depth UPIBE from only selective bounded-depth HIBE in the random oracle model. These results significantly extend the range of underlying assumptions and efficient instantiations. We conclude with a rigorous performance evaluation of our UPIBE design. Beyond solving challenging open problems by reducing complexity and improving efficiency of KU-KEM and strongly secure messaging protocols, we offer a new definitional perspective on the bounded-collusion setting.
Authors with CRIS profile
Involved external institutions
Austria (AT)How to cite
APA:
Rösler, P., Slamanig, D., & Striecks, C. (2023). Unique-Path Identity Based Encryption with Applications to Strongly Secure Messaging. In Proceedings of the Annual International Conference on the Theory and Applications of Cryptographic Techniques EUROCRYPT 2023: Advances in Cryptology – EUROCRYPT 2023 (pp. 3-34). Lyon, FR.
MLA:
Rösler, Paul, Daniel Slamanig, and Christoph Striecks. "Unique-Path Identity Based Encryption with Applications to Strongly Secure Messaging." Proceedings of the Annual International Conference on the Theory and Applications of Cryptographic Techniques EUROCRYPT 2023: Advances in Cryptology – EUROCRYPT 2023, Lyon 2023. 3-34.
BibTeX: Download