摘要
基于身份的多密文等值测试加密方案(IB-MET)具有广泛的应用前景,但目前仍缺少高效的构造方案.本文研究基于身份体制下的多密文等值测试加密方案构造.将传统公钥体制构造的加密算法抽象成数据封装和系数封装两个具体的步骤.提出将数据封装机制进行变形后再结合系数封装机制即可实现相应体制下具有多密文等值测试功能的加密方案.给出了基于身份体制多密文等值测试加密方案的一般性构造,以Beneh-Franklin IBE为例给出了一个具体的构造实例.方案基于一个基于身份加密(IBE)方案和BDH困难假设,相比传统的多密文等值测试加密方案,主要增加的计算开销为传统加密算法到基于身份加密算法的额外开销.
Identity-based encryption with multiple ciphertext equality test(IB-MET)schemes can be applied in various applications.However,there still lacks a systematic research on how to generally achieve an efficient construction.This paper studies the construction of IB-MET schemes.First,traditional public-key encryption with multiple ciphertext equality tests are treated as two basic mechanisms,namely the data encapsulation and coefficient encapsulation.Second,a general construction of encryption schemes with multiple ciphertext equality test is proposed by combining the coefficient encapsulation mechanism and the data encapsulation mechanism in the corresponding public-key cryptographic setting.Then,a general construction of IB-MET schemes is presented,the Beneh-Franklin IBE is used as an example to illustrate how to achieve a concrete IB-MET scheme.The proposed general construction requires an identity-based encryption(IBE)scheme and the BDH assumption.Compared with the schemes in the traditional public-key setting,the additional computational costs in the general construction is mainly introduced from the difference between IBE and public-key encryption schemes.
作者
花锦国
张磊
杨波
陈立全
吴戈
HUA Jin-Guo;ZHANG Lei;YANG Bo;CHEN Li-Quan;WU Ge(School of Cyber Science and Engineering,Southeast University,Wuxi 214081,China;China Telecom Hongxin Information Technology Co.Ltd.,Nanjing 210018,China;Internet Information Office,Suqian City,Suqian 223800,China;School of Cyber Science and Engineering,Southeast University,Nanjing 211189,China)
出处
《密码学报》
CSCD
2023年第1期87-101,共15页
Journal of Cryptologic Research
基金
国家重点研发计划(2020YFE0200600)
国家自然科学基金(62002058)
江苏省自然科学基金(BK20200391)
中央高校基本科研业务费专项资金(2242021R40011)
宿迁市网信领域研究课题。
关键词
密文去重
多密文等值测试
基于身份体制
一般性构造
ciphertext de-duplication
multiple ciphertext equality test
identity-based cryptography
general construction