Title: Defending against key exposure in attribute-based encryption

Authors: J. Li; X. Chen; H. Tian; C. Gao

Addresses: Department of Computer Science, Guangzhou University, Guangzhou 510006, China ' State Key Laboratory of Integrated Service Networks (ISN), Xidian University, Xi'an 710126, China ' School of Information Science and Technology, Sun Yat-Sen University, Guangzhou, Guangdong 510275, China ' Department of Computer Science, Guangzhou University, Guangzhou 510006, China

Abstract: Since the notion of attribute-based encryption (ABE) was proposed, it has been found a lot of important applications such as fine-grained access control. However, the issue of key exposure problem in ABE has been solved completely. This problem is formally addressed and formulated in this paper. More specifically, we propose a new key-insulated ABE (KI-ABE) scheme as a solution to the key exposure problem. The definition and security model of KI-ABE is proposed. Then, a KI-ABE scheme is presented, which is provably secure under the proposed model. The scheme is secure in the remaining time periods against an adversary who compromises the insecure device and obtains secret keys for the periods of its choice. Finally, we show that the scheme also supports user delegation, which is critical when one wants to delegate part of attributes (privileges) to others.

Keywords: key exposure; key-insulated ABE; attribute-based encryption; delegation; cryptography; security.

DOI: 10.1504/IJAHUC.2014.065156

International Journal of Ad Hoc and Ubiquitous Computing, 2014 Vol.17 No.1, pp.31 - 38

Received: 30 May 2012
Accepted: 18 Jun 2013

Published online: 15 Oct 2014 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article