Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage

Giuseppe Ateniese; Kevin Fu; Matthew Green; Susan Hohenberger

Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage

Giuseppe Ateniese, Kevin Fu, Matthew Green, Susan Hohenberger

Department of Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

335 Scopus citations

Abstract

In 1998, Blaze, Bleumer, and Strauss proposed an application called atomic proxy re-encryption, in which a semi-trusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Ivan and Dodis, we present new re-encryption schemes that realize a stronger notion of security and we demonstrate the usefulness of proxy re-encryption as a method of adding access control to the SFS read-only file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

Original language	English
Title of host publication	Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005
ISBN (Electronic)	1891562207, 9781891562204
State	Published - 2005
Event	12th Symposium on Network and Distributed System Security, NDSS 2005 - San Diego, United States Duration: 3 Feb 2005 → …

Publication series

Name	Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005

Conference

Conference	12th Symposium on Network and Distributed System Security, NDSS 2005
Country/Territory	United States
City	San Diego
Period	3/02/05 → …

Cite this

@inproceedings{7ec53af4fdbb43c9ba88c22d620f1f60,

title = "Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage",

abstract = "In 1998, Blaze, Bleumer, and Strauss proposed an application called atomic proxy re-encryption, in which a semi-trusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Ivan and Dodis, we present new re-encryption schemes that realize a stronger notion of security and we demonstrate the usefulness of proxy re-encryption as a method of adding access control to the SFS read-only file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.",

author = "Giuseppe Ateniese and Kevin Fu and Matthew Green and Susan Hohenberger",

note = "Publisher Copyright: {\textcopyright} 2005 Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005. All Rights Reserved.; 12th Symposium on Network and Distributed System Security, NDSS 2005 ; Conference date: 03-02-2005",

year = "2005",

language = "English",

series = "Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005",

booktitle = "Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005",

}

Ateniese, G, Fu, K, Green, M & Hohenberger, S 2005, Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage. in Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005. Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005, 12th Symposium on Network and Distributed System Security, NDSS 2005, San Diego, United States, 3/02/05.

Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage. / Ateniese, Giuseppe; Fu, Kevin; Green, Matthew et al.
Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005. 2005. (Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage

AU - Ateniese, Giuseppe

AU - Fu, Kevin

AU - Green, Matthew

AU - Hohenberger, Susan

PY - 2005

Y1 - 2005

N2 - In 1998, Blaze, Bleumer, and Strauss proposed an application called atomic proxy re-encryption, in which a semi-trusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Ivan and Dodis, we present new re-encryption schemes that realize a stronger notion of security and we demonstrate the usefulness of proxy re-encryption as a method of adding access control to the SFS read-only file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

AB - In 1998, Blaze, Bleumer, and Strauss proposed an application called atomic proxy re-encryption, in which a semi-trusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Ivan and Dodis, we present new re-encryption schemes that realize a stronger notion of security and we demonstrate the usefulness of proxy re-encryption as a method of adding access control to the SFS read-only file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

UR - http://www.scopus.com/inward/record.url?scp=85180411878&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85180411878&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:85180411878

T3 - Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005

BT - Proceedings of the Symposium on Network and Distributed System Security, NDSS 2005

T2 - 12th Symposium on Network and Distributed System Security, NDSS 2005

Y2 - 3 February 2005

ER -

Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage

Abstract

Publication series

Conference

Other files and links

Fingerprint

Cite this