PDF
(299KB)
Abstract
Leakage of private information including private keys of user has become a threat to the security of computing systems. It has become a common security requirement that a cryptographic scheme should withstand various leakage attacks. In the real life, an adversary can break the security of cryptography primitive by performing continuous leakage attacks. Although, some research on the leakage-resilient cryptography had been made, there are still some remaining issued in previous attempts. The identity-based encryption (IBE) constructions were designed in the bounded-leakage model, and might not be able to meet their claimed security under the continuous-leakage attacks. In the real applications, the leakage is unbounded. That is, a practical cryptography scheme should keep its original security in the continuous leakage setting. The previous continuous leakageresilient IBE schemes either only achieve chosen-plaintext attacks security or the chosen-ciphertext attacks (CCA) security is proved in the selective identity model. Aiming to solve these problems, in this paper, we show how to construct the continuous leakage-resilient IBE scheme, and the scheme’s adaptive CCA security is proved in the standard model based on the hardness of decisional bilinear Diffie-Hellman exponent assumption. For any adversary, all elements in the ciphertext are random, and an adversary cannot obtain any leakage on the private key of user from the corresponding given ciphertext. Moreover, the leakage parameter of our proposal is independent of the plaintext space and has a constant size.
Keywords
identity-based encryption
/
CCA security
/
continuous leakage-resilience
/
standard model
Cite this article
Download citation ▾
Yanwei ZHOU, Bo YANG.
Practical continuous leakage-resilient CCA secure identity-based encryption.
Front. Comput. Sci., 2020, 14(4): 144804 DOI:10.1007/s11704-019-8140-2
| [1] |
Zhang X S, Tan Y A, Liang C, Li Y Z, Li J. A covert channel over volte via adjusting silence periods. IEEE Access, 2018, 6(1): 9292–9302
|
| [2] |
Huang Z G,Liu S L, Mao X P, Chen K F, Li J. Insight of the protection for data security under selective opening attacks. Information Sciences, 2017, 412: 223–241
|
| [3] |
Jhaveri R H, Patel N M, Zhong Y B, Sangaiah A K. Sensitivity analysis of an attack-pattern discovery based trusted routing scheme for mobile ad-hoc networks in industrial IoT. IEEEAccess, 2018, 6: 20085–20103
|
| [4] |
Liu S L,Weng J, Zhao Y L. Efficient public key cryptosystem resilient to key leakage chosen ciphertext attacks. In: Proceedings of the Cryptographers’ Track at the RSA Conference. 2013, 84–100
|
| [5] |
Sun S F, Gu D W, Liu S L. Efficient leakage-resilient identity-based encryption with CCA security. In: Proceedings of the 6th International Conference on Pairing-Based Cryptography. 2013, 149–167
|
| [6] |
Sun S F, Gu D W, Huang Z G. Fully secure wicked identity-based encryption against key leakage attacks. The Computer Journal, 2015, 58(10): 2520–2536
|
| [7] |
Sun S F, Gu D W,Liu S L. Efficient chosen ciphertext secure identitybased encryption against key leakage attacks. Security and Communication Networks, 2016, 9(11): 1417–1434
|
| [8] |
Li J G, Guo Y Y, Yu Q H, Lu Y, Zhang Y C. Provably secure identitybased encryption resilient to post-challenge continuous auxiliary input leakage. Security and Communication Networks, 2016, 9(10): 1016–1024
|
| [9] |
Yu Q H, Li J G, Zhang Y C. Leakage-resilient certificate-based encryption. Security and Communication Networks, 2015, 8(18): 3346–3355
|
| [10] |
Yu Q H, Li J G, Zhang Y C, Wu W, Huang X Y, Xiang Y. Certificatebased encryption resilient to key leakage. Journal of Systems and Software, 2016, 116: 101–112
|
| [11] |
Zhang MW,Wang C Z,Morozov K. LR-FEAD: leakage-tolerating and attribute-hiding functional encryption mechanism with delegation in affine subspaces. The Journal of Supercomputing, 2014, 70(3): 1405–1432
|
| [12] |
Qin B D, Liu S L. Leakage-resilient chosen-ciphertext secure publickey encryption from hash proof system and one-time lossy filter. In: Proceedings of International Conference on the Theory and Application of Cryptology and Information Security. 2013, 381–400
|
| [13] |
Qin B D, Liu S L. Leakage-flexible cca-secure publickey encryption: Simple construction and free of pairing. In: Proceedings of International Conference on Practice and Theory in Public-Key Cryptography. 2014, 19–36
|
| [14] |
Qin B D, Liu S L, Chen K F.Efficient chosen-ciphertext secure publickey encryption scheme with high leakage-resilience. IET Information Security, 2015, 9(1): 32–42
|
| [15] |
Wang B. Leakage-resilient message authentication code scheme based on hidden identity weak hash proof system. IET Information Security, 2016, 10(4): 173–179
|
| [16] |
Zhou YW, Yang B, Zhang WZ.Provably secure and efficient leakageresilient certificateless signcryption scheme without bilinear pairing. Discrete Applied Mathematics, 2016, 204: 185–202
|
| [17] |
Zhou Y W, Yang B, Cheng H, Wang Q L. A leakage resilient certificateless public key encryption scheme with CCA2 security. Frontiers of Information Technology and Electronic Engineering, 2018, 19(4): 481–493
|
| [18] |
Zhou Y W, Yang B. Leakage-resilient CCA2-secure certificateless public-key encryption scheme without bilinear pairing. Information Processing Letters, 2018, 130: 16–24
|
| [19] |
Fujisaki E, Xagawa K. Public-key cryptosystems resilient to continuous tampering and leakage of arbitrary functions. In: Proceedings of International Conference on the Theory and Application of Cryptology and Information Security. 2016, 908–938
|
| [20] |
Zhou Y W,Yang B, Zhang W Z,Mu Y.CCA2 secure public-key encryption scheme tolerating continual leakage attacks. Security and Communication Networks, 2016, 9(17): 4505–4519
|
| [21] |
Zhou YW, Yang B.Continuous leakage-resilient publickey encryption scheme with CCA security. The Computer Journal, 2017, 60(8): 1161–1172
|
| [22] |
Toorani M. On continuous after-the-fact leakage-resilient key exchange. In: Proceedings of the 2nd Workshop on Cryptography and Security in Computing Systems. 2015, 31–34
|
| [23] |
Malkin T, Teranishi I, Vahlis Y, Yung M. Signatures resilient to continual leakage on memory and computation. In: Proceedings of Theory of Cryptography Conference. 2011, 89–106
|
| [24] |
Li J G, Guo Y Y, Yu Q H,Lu Y,Zhang Y C, Zhang F T. Continuous leakage-resilient certificate-based encryption. Information Sciences, 2016, 355: 1–14
|
| [25] |
Wang C, Shen J, Liu Q, Ren Y J,Li T.A novel security scheme based on instant encrypted transmission for internet of things. Security and Communication Networks, 2018, (Article ID 3680851): 1–7
|
| [26] |
XuJ,Wei LW, Zhang Y,Wang A D, Zhou F C, Gao C Z. Dynamic fully homomorphic encryption-based merkle tree for lightweight streaming authenticated data structures. Journal of Network and Computer Applications, 2018, 107: 113–124
|
| [27] |
Zhou Y W, Yang B. Continuous leakage-resilient certificateless public key encryption with CCA security. Knowledge Based Systems, 2017, 136: 27–36
|
| [28] |
Li J, Huang X Y, Li J W, Chen X F, Xiang Y. Securely outsourcing attribute-based encryption with checkability. IEEE Transactions on Parallel and Distributed Systems, 2014, 25(8): 2201–2210
|
| [29] |
Wang H, Zheng Z H, Wu L, Li P. New directly revocable attributebased encryption scheme and its application in cloud storage environment. Cluster Computing, 2017, 20(3): 2385–2392
|
| [30] |
Li J, Li J W, Chen X F, Jia C F, Lou W J. Identity-based encryption with outsourced revocation in cloud computing. IEEE Transactions on Computers, 2015, 64(2): 425–437
|
| [31] |
Lin Q, Yan H Y, Huang Z G, Chen W B, Shen J, Tang Y. An idbased linearly homomorphic signature scheme and its application in blockchain. IEEE Access, 2018, 6(1): 20632–20640
|
| [32] |
Yuen T H, Chow S S, Zhang Y, Yiu S M. Identity-based encryption resilient to continual auxiliary leakage. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2012, 117–134
|
| [33] |
Lewko A B,Rouselakis Y, Waters B. Achieving leakage resilience through dual system encryption. In: Proceedings of Theory of Cryptography Conference. 2011, 70–88
|
| [34] |
Li J G, Yu Q H, Zhang Y C.Identity-based broadcast encryption with continuous leakage resilience. Information Sciences, 2018, 29(3): 177–193
|
| [35] |
Zhou Y W, Yang B, Mu Y. Continuous leakage-resilient identity-based encryption without random oracles. The Computer Journal, 2018, 61(4): 586–600
|
| [36] |
Alwen J, Dodis Y, Naor W, Segev G, Walfish S,Wichs D. Public-key encryption in the bounded-retrieval model. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2010, 113–134
|
| [37] |
Chow S S, Dodis Y, Rouselakis Y,Waters B. Practical leakage-resilient identity-based encryption from simple assumptions. In: Proceedings of ACM Conference on Computer and Communications Security. 2010, 152–161
|
| [38] |
Boneh D, Boyen X. Efficient selective-id secure identitybased encryption without random oracles. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2004, 123–238
|
| [39] |
Waters B. Efficient identity-based encryption without random oracles. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2005, 114–127
|
| [40] |
Lewko A, Waters B. New techniques for dual system encryption and fully secure hibe with short ciphertexts. In: Proceedings of Theory of Cryptography Conference. 2010, 455–479
|
| [41] |
Li J G, Teng M L, Zhang Y C,Yu Q H.A leakageresilient CCA-secure identity-based encryption scheme. The Computer Journal, 2016, 59(7): 1066–1075
|
| [42] |
Gentry C. Practical identity-based encryption without random oracles. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2006, 445–464
|
| [43] |
Naor M, Segev G. Public-key cryptosystems resilient to key leakage. In: Proceedings of Annual International Cryptology Conference. 2009, 18–35
|
| [44] |
Dodis Y, Reyzin L. Fuzzy extractors: how to generate strong keys from biometrics and other noisy data. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2004, 523–540
|
| [45] |
Shamir A. Identity-based cryptosystems and signature schemes. In: Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques. 1985, 47–53
|
| [46] |
Dodis Y,Haralambiev K, López-Alt A,Wichs D. Cryptography against continuous memory attacks. In: Proceedings of the 51st Annual IEEE Symposium on Foundations of Computer Science. 2010, 511–520
|
RIGHTS & PERMISSIONS
Higher Education Press and Springer-Verlag GmbH Germany, part of Springer Nature
PDF
(299KB)
