Practical Fully Secure Unrestricted Inner Product Functional Encryption modulo p
| hal.structure.identifier | Lithe and fast algorithmic number theory [LFANT] | |
| dc.contributor.author | CASTAGNOS, Guilhem | |
| hal.structure.identifier | Arithmetic and Computing [ARIC] | |
| dc.contributor.author | LAGUILLAUMIE, Fabien | |
| hal.structure.identifier | Arithmetic and Computing [ARIC] | |
| dc.contributor.author | TUCKER, Ida | |
| dc.contributor.editor | Thomas Peyrin | |
| dc.contributor.editor | Steven Galbraith | |
| dc.date.accessioned | 2024-04-04T03:03:57Z | |
| dc.date.available | 2024-04-04T03:03:57Z | |
| dc.date.conference | 2018-12-02 | |
| dc.identifier.uri | https://oskar-bordeaux.fr/handle/20.500.12278/193111 | |
| dc.description.abstractEn | Functional encryption is a modern public-key cryptographic primitive allowing an encryptor to finely control the information revealed to recipients from a given ciphertext. Abdalla, Bourse, De Caro, and Pointcheval (PKC 2015) were the first to consider functional encryption restricted to the class of linear functions, i.e. inner products. Though their schemes are only secure in the selective model, Agrawal, Libert, and Stehlé (CRYPTO 16) soon provided adaptively secure schemes for the same functionality. These constructions, which rely on standard assumptions such as the Decision Diffie-Hellman (DDH), the Learning-with-Errors (LWE), and Paillier's Decision Composite Residuosity (DCR) problems, do however suffer of various practical drawbacks. Namely, the DCR based scheme only computes inner products modulo an RSA integer which is oversized for many practical applications, while the computation of inner products modulo a prime p either requires, for their (DDH) based scheme, that the inner product be contained in a sufficiently small interval for decryption to be efficient, or, as in the LWE based scheme, suffers of poor efficiency due to impractical parameters. In this paper, we provide adaptively secure functional encryption schemes for the inner product functionality which are both efficient and allow for the evaluation of unbounded inner products modulo a prime p. Our constructions rely on new natural cryptographic assumptions in a cyclic group containing a subgroup where the discrete logarithm (DL) problem is easy which extend Castagnos and Laguillaumie's assumption (RSA 2015) of a DDH group with an easy DL subgroup. Instantiating our generic construction using class groups of imaginary quadratic fields gives rise to the most efficient functional encryption for inner products modulo an arbitrary large prime p. One of our schemes outperforms the DCR variant of Agrawal et al.'s protocols in terms of size of keys and cipher-texts by factors varying between 2 and 20 for a 112-bit security. | |
| dc.description.sponsorship | AppLicAtions de la MalléaBIlité en Cryptographie - ANR-16-CE39-0006 | |
| dc.language.iso | en | |
| dc.subject.en | Inner Product Functional Encryption | |
| dc.subject.en | Adaptive Security | |
| dc.subject.en | Diffie-Hellman Assumptions | |
| dc.title.en | Practical Fully Secure Unrestricted Inner Product Functional Encryption modulo p | |
| dc.type | Communication dans un congrès | |
| dc.subject.hal | Informatique [cs]/Cryptographie et sécurité [cs.CR] | |
| dc.description.sponsorshipEurope | Lattices: algorithms and cryptography | |
| bordeaux.page | 733-764 | |
| bordeaux.volume | LNCS | |
| bordeaux.hal.laboratories | Institut de Mathématiques de Bordeaux (IMB) - UMR 5251 | * |
| bordeaux.issue | 11273 | |
| bordeaux.institution | Université de Bordeaux | |
| bordeaux.institution | Bordeaux INP | |
| bordeaux.institution | CNRS | |
| bordeaux.conference.title | ASIACRYPT 2018 - 24th International Conference on the Theory and Application of Cryptology and Information Security | |
| bordeaux.country | AU | |
| bordeaux.conference.city | Brisbane | |
| bordeaux.peerReviewed | oui | |
| hal.identifier | hal-01934296 | |
| hal.version | 1 | |
| hal.invited | non | |
| hal.proceedings | oui | |
| hal.conference.end | 2018-12-06 | |
| hal.popular | non | |
| hal.audience | Internationale | |
| hal.origin.link | https://hal.archives-ouvertes.fr//hal-01934296v1 | |
| bordeaux.COinS | ctx_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.volume=LNCS&rft.issue=11273&rft.spage=733-764&rft.epage=733-764&rft.au=CASTAGNOS,%20Guilhem&LAGUILLAUMIE,%20Fabien&TUCKER,%20Ida&rft.genre=unknown |
Fichier(s) constituant ce document
| Fichiers | Taille | Format | Vue |
|---|---|---|---|
|
Il n'y a pas de fichiers associés à ce document. |
|||