Multi-authority attribute-based encryption with honest-but-curious central authority


An attribute based encryption scheme capable of handling multiple authorities was recently proposed by Chase. The scheme is built upon a single-authority attribute based encryption scheme presented earlier by Sahai and Waters. Chase’s construction uses a trusted central authority that is inherently capable of decrypting arbitrary ciphertexts created within the system. We present a multi-authority attribute based encryption scheme in which only the set of recipients defined by the encrypting party can decrypt a corresponding ciphertext. The central authority is viewed as “honest-but-curious”: on the one hand it honestly follows the protocol, and on the other hand it is curious to decrypt arbitrary ciphertexts thus violating the intent of the encrypting party. The proposed scheme, which like its predecessors relies on the Bilinear DiffieHellman assumption, has a complexity comparable to that of Chase’s scheme. We prove that our scheme is secure in the selective ID model and can tolerate an honest-but-curious central authority.

DOI: 10.1080/00207160.2011.555642

Extracted Key Phrases

3 Figures and Tables

Cite this paper

@article{Bozovic2009MultiauthorityAE, title={Multi-authority attribute-based encryption with honest-but-curious central authority}, author={Vladimir Bozovic and Daniel Socek and Rainer Steinwandt and Vikt{\'o}ria I. Vill{\'a}nyi}, journal={IACR Cryptology ePrint Archive}, year={2009}, volume={2009}, pages={83} }