ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2021, Vol. 58 ›› Issue (10): 2222-2237.doi: 10.7544/issn1000-1239.2021.20210596

所属专题: 2021密码学与网络空间安全治理专题

• 信息安全 • 上一篇    下一篇

标准模型下的灵活细粒度授权密文一致性检测方案

邓翔天,钱海峰   

  1. (华东师范大学软件工程学院 上海 200062) (51194506009@stu.ecnu.edu.cn)
  • 出版日期: 2021-10-01
  • 基金资助: 
    国家自然科学基金委员会与以色列科学基金会合作研究项目(61961146004);上海市教育委员会科研创新项目(2021-01-07-00-08-E00101)

Flexible Fine-Grained Authorization Public Key Encryption with Equality Test Under Standard Model

Deng Xiangtian Qian Haifeng   

  1. (Software Engineering Institute, East China Normal University, Shanghai 200062)
  • Online: 2021-10-01
  • Supported by: 
    This work was supported by the NSFC-ISF Joint Scientific Research Program (61961146004) and Innovation Program of Shanghai Municipal Education Commission (2021-01-07-00-08-E00101).

摘要: 密文一致性检测公钥加密方案是一种检测者能够在无需解密密文的情况下检测一对密文的一致性,即该对密文解密所得明文是否一致的公钥加密方案.已有工作中提及的细粒度授权方案和灵活授权方案在授权粒度方面对密文一致性检测公钥加密方案的功能性进行了改进:细粒度授权方案允许2名用户生成专用于检测这2名用户的所有密文的一致性的令牌.灵活授权方案则将令牌的授权客体从用户级别拓展至指定密文级别.2种方案拥有各自的应用场景且在功能性方面互不包含.因此提出灵活细粒度授权密文一致性检测公钥加密方案.与已有方案相比,该方案在计算效率和参数大小方面相当,并具备适应性选择密文攻击安全性、细粒度授权安全性.该方案兼具细粒度授权特性与灵活细粒度特性.同时,对比依赖预言机模型的已有相关方案,其安全性证明基于标准模型之上.

关键词: 公钥加密, 密文一致性检测, 标准模型, 细粒度授权, 适应性选择密文攻击

Abstract: Public key encryption with equality test(PKEET) is a public key encryption scheme which allows testers to perform equality tests on ciphertexts without holding corresponding private keys, that is, detecting whether the plaintexts decrypted from given cyphertext are equal. The fine-grained authorization PKEET (FG-PKEET) and PKEET with flexible authorization (PKEET-FA) schemes mentioned in previous works improve the functionality of PKEET in aspect of authorization granularity: FG-PKEET scheme allows one user to interact with another user to generate a token specifically for detecting the equality of all these two users’ ciphertexts, while PKEET-FA scheme extends the type of authorization object of the token from user level to ciphertext level, permitting one user to authorize on a specific ciphertext. Both solutions have their own application scenarios and do not include each other in terms of functionality. Thus we propose flexible fine-grained authorization PKEET scheme. Our scheme obtains security properties related to adaptive ciphertext attack and fine-grained authorization. Our solution combines both fine-grained authorization and flexible fine-grained features, allowing two users to authorize respectively on one specified ciphertext or all his ciphertexts. Meanwhile, comparing to existing PKEET schemes with fine-grained authorization or flexible authorization features which rely on random oracle model, our scheme’s security properties are proved under standard model.

Key words: public key encryption, equality test, standard model, fine-grained authorization, adaptive chosen ciphertext attack

中图分类号: