支持多密文批量审计的解密外包SM9-HIBE密钥封装机制

doi:10.11959/j.issn.1000-436x.2023222

Abstract

Abstract:

The decryption operation of SM9-HIBE key encapsulation mechanism required two bilinear pairing operations, for the equipment requiring frequent decryption of massive data and with limited computing resources, such resourcing-consuming pairing operation will become an important bottleneck restricting the system deployment.To address the above issue, a decryption outsourcing key encapsulation mechanism OASM9-HIBE based on SM9-HIBE was proposed, which supported multi-ciphertext batch auditing.The Fujisaki-Okamoto transformation technology was utilized to prove the RCCA security of OASM9-HIBE under the random oracle model.All resourcing-consuming bilinear pairing operations were safely offloaded to the cloud server in OASM9-HIBE, the k-th hierarchical user only need to perform one simple exponentiation operation to complete the final decryption.The decryption efficiency of the original SM9-HIBE was effectively improved under the premise of not changing the downward proxy generation function of the user’s private key between hierarchical.OASM9-HIBE additively achieved the property of batch auditing of multi-transformed ciphertexts by employing the key blinding technology.Theoretical analysis and evaluation of experimental data highlight the feasibility and efficiency of OASM9-HIBE, OASM9-HIBE extends the application field of SM9 series algorithms.

Key words: hierarchical key encapsulation mechanism, decryption outsourcing, batch audit, key encapsulation

CLC Number:

TP309

Kuan LIU, Jianting NING, Wei WU, Shengmin XU, Chao LIN. Multi-ciphertext batch auditable decryption outsourcing SM9-HIBE key encapsulation mechanism[J]. Journal on Communications, 2023, 44(12): 158-170.

Figures/Tables 9

密钥封装机制	密钥生成	密钥派生	密文生成	终端解密
SM9-HIBE	$2 T_{{sm}_{1}} + (n + 1) T_{{sm}_{2}}$	$2 T_{{sm}_{1}} + (n + 1) T_{{sm}_{2}}$	$2 T_{{sm}_{1}} + k T_{{sm}_{2}} + 1 E_{t}$	$2 T_{p} + H_{K}$
OASM9-HIBE	$2 T_{{sm}_{1}} + (n + 2) T_{{sm}_{2}}$	$2 T_{{sm}_{1}} + (n + 2) T_{{sm}_{2}}$	$2 T_{{sm}_{1}} + k T_{{sm}_{2}} + 2 E_{t}$	$T_{e_{t}} + H_{K}$

密钥封装机制	全局参数生成	密钥生成	密钥派生	密文生成	终端解密
SM9-HIBE	$\| G_{T} \| + (n + 1) \| G_{2} \| + 2 \| G_{1} \|$	$(n - k + 1) \| G_{2} \| + \| G_{1} \|$	$(n - k + 1) \| G_{2} \| + \| G_{1} \|$	$\| G_{1} \| + \| G_{2} \|$	$2 \| G_{T} \|$
OASM9-HIBE	$2 \| G_{T} \| + (n + 1) \| G_{2} \| + 2 \| G_{1} \|$	$(n - k + 2) \| G_{2} \| + \| G_{1} \|$	$(n - k + 2) \| G_{2} \| + \| G_{1} \|$	$\| G_{1} \| + \| G_{2} \| + \| G_{T} \|$	$\| G_{2} \|$

References 20

[1]	SHAMIR A . Identity-based cryptosystems and signature schemes[C]// Advances in Cryptology. Berlin:Springer, 2007: 47-53.
[2]	BONEH D , FRANKLIN M . Identity-based encryption from the Weil pairing[C]// Advances in Cryptology 2001. Berlin:Springer, 2001: 213-229.
[3]	HORWITZ J , LYNN B . Toward hierarchical identity-based encryption[C]// Advances in Cryptology. Berlin:Springer, 2002: 466-481.
[4]	BONEH D , BOYEN X . Efficient selective-id secure identity-based encryption without random oracles[C]// International Conference on the Theory and Applications of Cryptographic Techniques. Berlin:Springer, 2004: 223-238.
[5]	WATERS B . Dual system encryption:realizing fully secure IBE and HIBE under simple assumptions[C]// Annual International Cryptology Conference. Berlin:Springer, 2009: 619-636.
[6]	LEWKO A , WATERS B . Unbounded HIBE and attribute-based encryption[C]// Advances in Cryptology. Berlin:Springer, 2011: 547-567.
[7]	BOYEN X , WATERS B . Anonymous hierarchical identity-based encryption (without random oracles)[C]// Lecture Notes in Computer Science. Berlin:Springer, 2006: 290-307.
[8]	LANGREHR R , PAN J X . Tightly secure hierarchical identity-based encryption[C]// International Workshop on Public Key Cryptography. Berlin:Springer, 2019: 436-465.
[9]	LANGREHR R , PAN J X . Hierarchical identity-based encryption with tight multi-challenge security[C]// IACR International Conference on Public-Key Cryptography. Cham:Springer, 2020: 153-183.
[10]	BLAZY O , KILTZ E , PAN J X . (Hierarchical) identity-based encryption from affine message authentication[C]// Annual Cryptology Conference. Berlin:Springer, 2014: 408-425.
[11]	GONG J Q , CAO Z F , TANG S H ,et al. Extended dual system group and shorter unbounded hierarchical identity based encryption[J]. Designs,Codes and Cryptography, 2016,80(3): 525-559.
[12]	LANGREHR R , PAN J X . Tightly secure hierarchical identity-based encryption[J]. Journal of Cryptology, 2020,33: 1787-1821.
[13]	Cryptography Standardization Technical Committee. SM9 identity-based cryptographic algorithm:GM/T0044-2016[S]. 2016.
[14]	赖建昌, 黄欣沂, 何德彪 ,等. 国密SM9数字签名和密钥封装算法的安全性分析[J]. 中国科学(信息科学), 2021,51(11): 1900-1913.
	LAI J C , HUANG X Y , HE D B ,et al. Security analysis of SM9 digital signature and key encapsulation[J]. Scientia Sinica (Informationis), 2021,51(11): 1900-1913.
[15]	赖建昌, 黄欣沂, 何德彪 . 一种基于商密SM9的高效标识广播加密方案[J]. 计算机学报, 2021,44(5): 897-907.
	LAI J C , HUANG X Y , HE D B . An efficient identity-based broadcast encryption scheme based on SM9[J]. Chinese Journal of Computers, 2021,44(5): 897-907.
[16]	秦宝东, 张博鑫, 白雪 . 基于仲裁的SM9标识加密算法[J]. 计算机学报, 2022,45(2): 412-426.
	QIN B D , ZHANG B X , BAI X . Mediated SM9 identity-based encryption algorithm[J]. Chinese Journal of Computers, 2022,45(2): 412-426.
[17]	赖建昌, 黄欣沂, 何德彪 ,等. 基于商用密码SM9的高效分层标识加密[J]. 中国科学(信息科学), 2023,53(5): 918-930.
	LAI J C , HUANG X Y , HE D B ,et al. An efficient hierarchical identity-based encryption based on SM9[J]. Scientia Sinica (Informationis), 2023,53(5): 918-930.
[18]	BONEH D , BOYEN X , GOH E J . Hierarchical identity based encryption with constant size ciphertext[C]// Lecture Notes in Computer Science. Berlin:Springer, 2005: 440-456.
[19]	GREEN M , HOHENBERGER S , WATERS B . Outsourcing the decryption of ABE ciphertexts[C]// Proceedings of the 20th USENIX Security Symposium. Berkeley:USENIX Association, 2011: 523-538.
[20]	FUJISAKI E , OKAMOTO T . Secure integration of asymmetric and symmetric encryption schemes[J]. Journal of Cryptology, 2013,26(1): 80-101.

Metrics

Recommended 0

No Suggested Reading articles found!

密钥封装机制	解密外包	批量审计	困难问题假设	安全性
SM9-HIBE	×	×	(q,n)-DBDHI	sID-CPA
OASM9-HIBE	√	√	(q,n)-DBDHI	RCCA

密钥封装机制	全局参数生成	密钥生成	密钥派生	密文生成	终端解密
SM9-HIBE	$\| G_{T} \| + (n + 1) \| G_{2} \| + 2 \| G_{1} \|$	$(n - k + 1) \| G_{2} \| + \| G_{1} \|$	$(n - k + 1) \| G_{2} \| + \| G_{1} \|$	$\| G_{1} \| + \| G_{2} \|$	$2 \| G_{T} \|$
OASM9-HIBE	$2 \| G_{T} \| + (n + 1) \| G_{2} \| + 2 \| G_{1} \|$	$(n - k + 2) \| G_{2} \| + \| G_{1} \|$	$(n - k + 2) \| G_{2} \| + \| G_{1} \|$	$\| G_{1} \| + \| G_{2} \| + \| G_{T} \|$	$\| G_{2} \|$

密钥封装机制	密钥生成/ms	密钥派生/ms	加密/ms	解密外包/ms	批量审计/ms
SM9-HIBE	82.90	82.13	84.79	—	—
OASM9-HIBE	88.11	87.90	95.13	14.25	10.68

密钥封装机制	密钥生成/ms	密钥派生/ms	加密/ms	解密外包/ms	批量审计/ms
SM9-HIBE	82.90	82.13	8 572	—	—
OASM9-HIBE	88.11	87.90	9 737	1 501	11.33

Multi-ciphertext batch auditable decryption outsourcing SM9-HIBE key encapsulation mechanism

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 9

References 20

Related Articles 5

Metrics

Recommended 0

密钥封装机制	终端解密/ms
SM9-HIBE	78.63
OASM9-HIBE	11.07

[1]	Yan SONG,Zhen HAN,Jian-jun LI,Lei HAN. Research on cloud storage systems supporting secure sharing [J]. Journal on Communications, 2017, 38(Z1): 88-96.
[2]	. Multiuser and multiple-replica provable data possession scheme based on multi-branch authentication tree [J]. Journal on Communications, 2015, 36(11): 80-91.
[3]	Kai HE,Chuan-he HUANG,Xiao-mao WANG,Jing WANG,Jiao-li SHI. Aggregated privacy-preserving auditing for cloud data integrity [J]. Journal on Communications, 2015, 36(10): 119-132.
[4]	Hai-ying MA,Guo-sun ZENG,GZhan-jun WAN,Wei WANG. Efficient and provably secure attribute-based online/offline encryption schemes [J]. Journal on Communications, 2014, 35(7): 104-112.
[5]	. Efficient and provably secure attribute-based online/ offline encryption schemes [J]. Journal on Communications, 2014, 35(7): 13-112.