A DFA-based functional proxy re-encryption scheme for secure public cloud data sharing
journal contribution
posted on 2024-11-16, 09:11authored byKaitai Liang, Man Ho Allen Au, J K Liu, Willy SusiloWilly Susilo, Duncan Wong, Guomin Yang, Phuong Viet Xuan Tran, Qi Xie
In this paper for the first time we define a general notion for Proxy Re-Encryption (PRE), which we call Deterministic Finite Automata Based Functional PRE (DFA-based FPRE). Meanwhile, we propose the first and concrete DFA-based FPRE system which adapts to our new notion. In our scheme a message is encrypted in a ciphertext associated with an arbitrary length index string, and a decryptor is legitimate if and only if a DFA associated with his/her secret key accepts the string. Furthermore, the above encryption is allowed to be transformed to another ciphertext associated with a new string by a semi-trusted proxy whom is given a re-encryption key. Nevertheless, the proxy cannot gain access to the underlying plaintext. This new primitive can increase the flexibility of users to delegate their decryption rights to others. We also prove it fully chosen-ciphertext secure in the standard model.
Funding
Practical unified framework for secure e-consent mechanism for health records
Liang, K., Au, M. Ho., Liu, J. K., Susilo, W., Wong, D., Yang, G., Tran, P. Viet Xuan. & Xie, Q. (2014). A DFA-based functional proxy re-encryption scheme for secure public cloud data sharing. IEEE Transactions on Information Forensics and Security, 9 (10), 1667-1680.
Journal title
IEEE Transactions on Information Forensics and Security