Improved proxy re-encryption schemes with applications to secure distributed storage

Giuseppe Ateniese; Kevin Fu; Matthew Green; Susan Hohenberger

doi:10.1145/1127345.1127346

Improved proxy re-encryption schemes with applications to secure distributed storage

Giuseppe Ateniese, Kevin Fu, Matthew Green, Susan Hohenberger

Department of Computer Science

Research output: Contribution to journal › Review article › peer-review

929 Scopus citations

Abstract

In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Dodis and Ivan, we present new re-encryption schemes that realize a stronger notion of security and demonstrate the usefulness of proxy re-encryption as a method of adding access control to a secure file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

Original language	English
Pages (from-to)	1-30
Number of pages	30
Journal	ACM Transactions on Information and System Security
Volume	9
Issue number	1
DOIs	https://doi.org/10.1145/1127345.1127346
State	Published - 2006

Keywords

Bilinear maps
Double decryption
Key translation
Proxy re-encryption

Access to Document

10.1145/1127345.1127346

Cite this

@article{92d30b2f1f754bbb8486a695c9c9bbf3,

title = "Improved proxy re-encryption schemes with applications to secure distributed storage",

abstract = "In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Dodis and Ivan, we present new re-encryption schemes that realize a stronger notion of security and demonstrate the usefulness of proxy re-encryption as a method of adding access control to a secure file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.",

keywords = "Bilinear maps, Double decryption, Key translation, Proxy re-encryption",

author = "Giuseppe Ateniese and Kevin Fu and Matthew Green and Susan Hohenberger",

year = "2006",

doi = "10.1145/1127345.1127346",

language = "English",

volume = "9",

pages = "1--30",

number = "1",

}

TY - JOUR

T1 - Improved proxy re-encryption schemes with applications to secure distributed storage

AU - Ateniese, Giuseppe

AU - Fu, Kevin

AU - Green, Matthew

AU - Hohenberger, Susan

PY - 2006

Y1 - 2006

N2 - In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Dodis and Ivan, we present new re-encryption schemes that realize a stronger notion of security and demonstrate the usefulness of proxy re-encryption as a method of adding access control to a secure file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

AB - In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Dodis and Ivan, we present new re-encryption schemes that realize a stronger notion of security and demonstrate the usefulness of proxy re-encryption as a method of adding access control to a secure file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice.

KW - Bilinear maps

KW - Double decryption

KW - Key translation

KW - Proxy re-encryption

UR - http://www.scopus.com/inward/record.url?scp=33745218758&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33745218758&partnerID=8YFLogxK

U2 - 10.1145/1127345.1127346

DO - 10.1145/1127345.1127346

M3 - Review article

AN - SCOPUS:33745218758

SN - 1094-9224

VL - 9

SP - 1

EP - 30

JO - ACM Transactions on Information and System Security

JF - ACM Transactions on Information and System Security

IS - 1

ER -

Improved proxy re-encryption schemes with applications to secure distributed storage

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this