Secure bidirectional proxy re-encryption for cryptographic cloud storage

详细信息    查看全文

• 作者：Jun Shao^a ; ^{chn.junshao@gmail.com" class="auth_mail" title="E-mail the corresponding author} ; Rongxing Lu^b ; ^{rxlu@ntu.edu.sg" class="auth_mail" title="E-mail the corresponding author} ; Xiaodong Lin^c ; ^{xiaodong.lin@uoit.ca" class="auth_mail" title="E-mail the corresponding author} ; Kaitai Liang^d ; ^{kliang4-c@my.cityu.edu.hk" class="auth_mail" title="E-mail the corresponding author}
• 关键词：Bidirectional proxy re-encryption ; Replayable chosen-ciphertext attack ; Master secret security ; Multi-use ; Constant size ; Cryptographic cloud storage
• 刊名：Pervasive and Mobile Computing
• 出版年：2016
• 出版时间：June 2016
• 年：2016
• 卷：28
• 期：Complete
• 页码：113-121
• 全文大小：402 K

文摘

Bidirectional proxy re-encryption allows ciphertext transformation between Alice and Bob via a semi-trusted proxy, who however cannot obtain the corresponding plaintext. Due to this special property, bidirectional proxy re-encryption has become a flexible tool in many dynamic environments, such as cryptographic cloud storage. Nonetheless, how to design a secure and efficient bidirectional proxy re-encryption is still challenging. In this paper, we propose a new bidirectional proxy re-encryption scheme that holds the following properties: (1) constant ciphertext size no matter how many times the transformation is performed; (2) master secret security in the random oracle model, i.e., Alice (resp. Bob) colluding with the proxy cannot obtain Bob’s (resp. Alice’s) private key; (3) replayable chosen ciphertext (RCCA) security in the random oracle model. The above three properties are usually required in the cryptographic cloud storage. Furthermore, the proposed new master secret security may be of independent interest, as it is closer to the original desire: delegate the decryption rights while keeping the signing rights.