Abstract
A time-bound hierarchical key assignment scheme is a method to assign time-dependent encryption keys to a set of classes in a partially ordered hierarchy, in such a way that the key of a higher class can be used to derive the keys of all classes lower down in the hierarchy, according to temporal constraints.In this paper we design and analyze time-bound hierarchical key assignment schemes which are provably-secure and efficient. We first consider the unconditionally secure setting and we show a tight lower bound on the size of the private information distributed to each class. Then, we consider the computationally secure setting and obtain several results: We first prove that a recently proposed scheme is insecure against collusion attacks. Hence, motivated by the need for provably-secure schemes, we propose two different constructions for time-bound hierarchical key assignment schemes. The first one is based on symmetric encryption schemes, whereas, the second one makes use of bilinear maps. These appear to be the first constructions of time-bound hierarchical key assignment schemes which are simultaneously practical and provably-secure.
| Original language | English |
|---|---|
| Article number | 1180441 |
| Pages (from-to) | 288-297 |
| Number of pages | 10 |
| Journal | Proceedings of the ACM Conference on Computer and Communications Security |
| DOIs | |
| State | Published - 2006 |
| Event | CCS 2006: 13th ACM Conference on Computer and Communications Security - Alexandria, VA, United States Duration: 30 Oct 2006 → 3 Nov 2006 |
Keywords
- Access control
- Key assignment
- Provable security