Efficient certificate-based proxy re-encryption scheme without bilinear pairings

doi:10.11772/j.issn.1001-9081.2016.05.1250

Journal of Computer Applications ›› 2016, Vol. 36 ›› Issue (5): 1250-1256.DOI: 10.11772/j.issn.1001-9081.2016.05.1250

Previous Articles Next Articles

Efficient certificate-based proxy re-encryption scheme without bilinear pairings

XU Hailin¹, CHEN Ying¹, LU Yang²

1. Basic Course Department, Jiangsu Police Institute, Nanjing Jiangsu 210031, China;
2. College of Computer and Information, Hohai University, Nanjing Jiangsu 211100, China

Received:2015-11-09 Revised:2015-12-20 Online:2016-05-10 Published:2016-05-09
Supported by:
This work is partially supported by the National Natural Science Foundation of China (61272542), the Project Funded by the Priority Academic Program Development of Jiangsu Higher Education Institutions, the Science Research Foundation of Jiangsu Police Institute (2014SJYZQ01).

高效无双线性对的基于证书代理重加密方案

徐海琳¹, 陈莺¹, 陆阳²

1. 江苏省警官学院基础课教研部, 南京 210031;
2. 河海大学计算机与信息学院, 南京 211100

通讯作者: 陆阳
作者简介:徐海琳(1980-),女,江苏南通人,讲师,主要研究方向:应用数学、密码学;陈莺(1981-),女,江苏南京人,讲师,硕士,主要研究方向:应用数学、密码学;陆阳(1977-),男,江苏扬州人,副教授,博士,CCF会员,主要研究方向:网络与信息安全、密码学、云计算安全。
基金资助:
国家自然科学基金资助项目(61272542);江苏高校优势学科建设工程资助项目;江苏警官学院科学研究项目(2014SJYZQ01)。

Abstract

Abstract: All the previous certificate-based Proxy Re-Encryption (PRE) schemes are based on the computationally-heavy bilinear pairings, and thus have low computation efficiency. To solve this problem, a certificate-based proxy re-encryption scheme without relying on the bilinear pairings was proposed over the elliptic curve group. Under the hardness assumption of the Computational Diffie-Hellman (CDH) problem, the proposed scheme was formally proven to be indistinguishable against adaptively chosen-ciphertext attacks in the random oracle model. Due to avoiding the time-consuming bilinear pairing operations, the proposed scheme significantly reduced the computation cost. Compared with the previous certificate-based proxy re-encryption schemes with bilinear pairings, the analysis shows that the proposed scheme has obvious advantages in both the computation efficiency and the communication cost, and the scheme is more suitable for the computation-constrained and bandwidth-limited applications.

Key words: public cloud, certificate-based proxy re-encryption, elliptic curve, Random Oracle Model (ROM), chosen-ciphertext security

摘要： 针对已有基于证书代理重加密(PRE)方案需要复杂的双线性对运算,计算效率较低的问题,提出了一个高效的不依赖于双线性对的基于证书代理重加密方案。基于计算性Diffie-Hellman(CDH)问题的困难性假设,该方案在随机预言模型下被严格证明满足适应性选择密文攻击下的不可区分安全性,即满足选择密文安全性。所提方案的构造基于椭圆曲线群,避免了计算开销高昂的双线性对运算,因此方案的计算性能得到了显著提高。对比分析表明,相对于已有使用双线性对的基于证书代理重加密方案,所提方案在计算效率和通信代价两个方面都具有明显的优势,更适用于计算受限以及低通信带宽的应用场合。

关键词: 公共云, 基于证书代理重加密, 椭圆曲线, 随机预言模型, 选择密文安全性

CLC Number:

TP309.7

XU Hailin, CHEN Ying, LU Yang. Efficient certificate-based proxy re-encryption scheme without bilinear pairings[J]. Journal of Computer Applications, 2016, 36(5): 1250-1256.

徐海琳, 陈莺, 陆阳. 高效无双线性对的基于证书代理重加密方案[J]. 计算机应用, 2016, 36(5): 1250-1256.

References

[1] BLAZE M, BLEUMER G, STRAUSS M. Divertible protocols and atomic proxy cryptography[C]//Proceedings of the 1998 International Conference on the Theory and Application of Cryptographic Techniques. Berlin:Springer, 1998:127-144.
[2] ATENIESE G, FU K, GREEN M, et al. Improved proxy re-encryption schemes with applications to secure distributed storage[J]. ACM Transactions on Information and System Security, 2006, 9(1):1-30.
[3] CANETTI R, HOHENBERGER S. Chosen-ciphertext secure proxy re-encryption[C]//Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM, 2007:185-194.
[4] LIBERT B, VERGNAUD D. Unidirectional chosen-ciphertext se-cure proxy re-encryption[C]//Proceedings of the 11th International Workshop on Practice and Theory in Public-Key Cryptography. Berlin:Springer, 2008:360-379.
[5] SHAO J, CAO Z. CCA-secure proxy re-encryption without pairings[C]//Proceedings of the 12th International Workshop on Practice and Theory in Public-Key Cryptography. Berlin:Springer, 2009:357-376.
[6] GREEN M, ATENIESE G. Identity-based proxy re-encryption[C]//Proceedings of the 5th International Conference on Applied Cryptography and Network Security. Berlin:Springer, 2007:288-306.
[7] MATSUO T. Proxy re-encryption systems for identity-based encryption[C]//Proceedings of the 1st International Conference on Pairing-Based Cryptography. Berlin:Springer, 2007:247-267.
[8] LUO S, SHEN Q, CHEN Z. Fully secure unidirectional identity-based proxy re-encryption[C]//Proceedings of the 14th Annual International Conference on Information Security and Cryptology. Berlin:Springer, 2012:109-126.
[9] LIANG K, LIU J K, WONG D S, et al. An efficient cloud-based revocable identity-based proxy re-encryption scheme for public clouds data sharing[C]//Proceedings of the 19th European Symposium on Research in Computer Security. Berlin:Springer, 2014:257-272.
[10] SUR C, PARK Y, SHIN S U, et al. Certificate-based proxy re-encryption for public cloud storage[C]//Proceedings of the 7th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing. Piscataway, NJ:IEEE, 2013:159-166.
[11] GENTRY C. Certificate-based encryption and the certificate revocation problem[C]//Proceedings of 2003 International Conference on the Theory and Applications of Cryptographic Techniques. Berlin:Springer, 2003:272-293.
[12] WANG L, SHAO J, CAO Z, et al. A certificate-based proxy cryptosystem with revocable proxy decryption power[C]//Proceedings of the 8th International Conference on Cryptology in India. Berlin:Springer, 2007:297-311.
[13] GALINDO D, MORILLO P, RÀFOLS C. Improved certificate-based encryption in the standard model[J]. Journal of Systems and Software, 2008, 81(7):1218-1226.
[14] LIU J K, ZHOU J Y. Efficient certificate-based encryption in the standard model[C]//Proceedings of the 6th International Conference on Security and Cryptography for Networks. Berlin:Springer, 2008:144-155.
[15] LU Y, LI J G, XIAO J M. Constructing efficient certificate-based encryption with pairing[J]. Journal of Computers, 2009, 4(1):19-26.
[16] SHAO Z. Enhanced certificate-based encryption from pairings[J]. Computers & Electrical Engineering, 2011, 37(2):136-146.
[17] YAO J, LI J G, ZHANG Y. Certificate-based encryption scheme without pairing[J]. KSⅡ Transactions on Internet and Information Systems, 2013, 7(6):1480-1491.
[18] LU Y, LI J G. Efficient construction of certificate-based encryption secure against public key replacement attacks in the standard model[J]. Journal of Information Science and Engineering, 2014, 30(5):1553-1568.
[19] LI J G, ZHAO X, ZHANG Y. Certificate-based conditional proxy re-encryption[C]//Proceedings of the 8th International Conference on Network and System Security. Berlin:Springer, 2014:299-310.
[20] BOYEN X. The BB1 identity-based cryptosystem:a standard for encryption and key encapsulation[EB/OL].[2015-06-10]. http://grouper.ieee.org/groups/1363/IBC/submissions.

Efficient certificate-based proxy re-encryption scheme without bilinear pairings

高效无双线性对的基于证书代理重加密方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

[1]	CHEN Hong, LIU Yumeng, XIAO Chenglong, GUO Pengfei, XIAO Zhenjiu. Improved RC4 algorithm based on elliptic curve [J]. Journal of Computer Applications, 2019, 39(8): 2339-2345.
[2]	LIU Xindong, XU Shuishuai, CHEN Jianhua. Authentication scheme for smart grid communication based on elliptic curve cryptography [J]. Journal of Computer Applications, 2019, 39(3): 779-783.
[3]	XU Hailin, LU Yang. Efficient bilinear-pairing-free certificate-based encryption scheme with keyword search [J]. Journal of Computer Applications, 2018, 38(2): 379-385.
[4]	YANG Xingchun, XU Chunxiang, LI Chaorong. ECC-based RFID authentication protocol enabling tag ownership transfer [J]. Journal of Computer Applications, 2017, 37(8): 2275-2280.
[5]	LI Ani, ZHANG Xiao, ZHANG Boyang, LIU Chunyi, ZHAO Xiaonan. Research on performance evaluation method of public cloud storage system [J]. Journal of Computer Applications, 2017, 37(5): 1229-1235.
[6]	LI Yun, CHEN Pangsen, SUN Shanlin. Security analysis and implementation for wireless local area network access protocol via near field communication authentication [J]. Journal of Computer Applications, 2016, 36(5): 1236-1245.
[7]	XU Shengwei, CHEN Cheng, WANG Rongrong. Improved differential fault attack on scalar multiplication algorithm in elliptic curve cryptosystem [J]. Journal of Computer Applications, 2016, 36(12): 3328-3332.
[8]	ZHANG Xidong, TONG Weiming, WANG Tiecheng, JIN Xianji. Cipher texts generation method in elliptic curve cryptography based on plaintext length [J]. Journal of Computer Applications, 2015, 35(10): 2863-2866.
[9]	MENG Yichao ZHANG Minqing WANG Xu'an. Unidirectional and multi-hop identity-based proxy re-encryption scheme with constant ciphertext [J]. Journal of Computer Applications, 2014, 34(6): 1681-1685.
[10]	YE Xiang XU Zhan HU Xiang LIU Dan. Low-cost mutual authenticate and encrypt scheme for active RIFD system [J]. Journal of Computer Applications, 2014, 34(2): 456-460.
[11]	WANG Yi DU Weizhang. Security analysis and improvement of certificateless signature scheme without bilinear pairing [J]. Journal of Computer Applications, 2013, 33(08): 2250-2252.
[12]	LAI Zhongxi ZHANG Zhanjun TAO Dongya. Algorithm for directly computing 7P elliptic curves and its application [J]. Journal of Computer Applications, 2013, 33(07): 1870-1874.
[13]	LI Haifeng LAN Caihui ZUO Weiping MA Haiyun. New two-party key agreement protocol in separate networks [J]. Journal of Computer Applications, 2013, 33(05): 1353-1356.
[14]	TANG Hong-bin LIU Xin-song. Robust and efficient remote authentication with key agreement protocol [J]. Journal of Computer Applications, 2012, 32(05): 1381-1384.
[15]	TANG Hong-bin LIU Xin-song. Cryptanalysis and improvement of TAKASIP protocol [J]. Journal of Computer Applications, 2012, 32(02): 468-471.