Paper 2007/183

Provably Secure Ciphertext Policy ABE

Ling Cheung and Calvin Newport

Abstract

In ciphertext policy attribute-based encryption (CP-ABE), every secret key is associated with a set of attributes, and every ciphertext is associated with an access structure on attributes. Decryption is enabled if and only if the user's attribute set satisfies the ciphertext access structure. This provides fine-grained access control on shared data in many practical settings, including secure databases and secure multicast. In this paper, we study CP-ABE schemes in which access structures are AND gates on positive and negative attributes. Our basic scheme is proven to be chosen plaintext (CPA) secure under the decisional bilinear Diffie-Hellman (DBDH) assumption. We then apply the Canetti-Halevi-Katz technique to obtain a chosen ciphertext (CCA) secure extension using one-time signatures. The security proof is a reduction to the DBDH assumption and the strong existential unforgeability of the signature primitive. In addition, we introduce hierarchical attributes to optimize our basic scheme, reducing both ciphertext size and encryption/decryption time while maintaining CPA security. Finally, we propose an extension in which access policies are arbitrary threshold trees, and we conclude with a discussion of practical applications of CP-ABE.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
attribute based encryptionciphertext access policy
Contact author(s)
lcheung @ theory csail mit edu
History
2007-05-20: received
Short URL
https://ia.cr/2007/183
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2007/183,
      author = {Ling Cheung and Calvin Newport},
      title = {Provably Secure Ciphertext Policy ABE},
      howpublished = {Cryptology ePrint Archive, Paper 2007/183},
      year = {2007},
      note = {\url{https://eprint.iacr.org/2007/183}},
      url = {https://eprint.iacr.org/2007/183}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.