2016.01.28_ Liudx's Report on PKE-AET(I)
2016-01-29 13:58
344 查看
PKE-AET:Public Key Encryption with Authorized Equality Test
PKE-AET 密文相等性测试公钥加密机制。经授权的用户有权检测用不同公钥加密的两个密文是否相等(检测密文而不是明文)。PKE-AET提出了两种授权方式:Receiver‘s warrants 和 cipher-warrants.
Reciever‘s warrants:Receiver 对 Tester授权(Receiver’s Warrant),tester 可以对receiver的所有密文进行测试。
Tester‘s warrants:Receiver 将自己的某一个特定密文对 Tester 授权(Cipher’s Warrant),tester只能对receiver 的某个特定密文进行测试。
补充:PEKS:Public key Encryption scheme with Keyword Search(可搜索密文关键字的公钥加密机制)
Sender—original ciphertext & encrypted keyword
Receiver—trapdoors for keywords
Server—test ciphertext and trapdoors,return ciphertexts which matched
PEKS不足之处:只能对由相同公钥加密的密文进行相等性测试。
补充:相等性测试
输入:Enc(pk,m) 和Enc(pk′,m′)。
输出:m=m′, 返回1 ; m!=m′,返回0.
Def of PKE-AET
SenderA+PKA=CA+WA
SenderB+PKB=CB+WB (Tester is permitted to test on B’s ciphertext)
If,A authorized a warrant(rw or cw)to Tester,the Tester can verify the equivalence of CA and CB without decryption.
(???是CA 和CB还是 WA 和 WB)
Framework of PKE-AET
Assume:Tester owns(sk1,pk1);
Setup:λ—>pp(a series of public params) and publishes to all users[by setup algorithm]
KeyGeneration:pp—>pk,sk [by generation algorithm ]
Encryption:pk+m—>c [by encryption algorithm ]
Decryption:sk+c—>m [by decryption algorithm ]
Authorization:Receiver gives rw or cw corresponding to a specific c. [by authorization algorithm ]
authorization algorithm
Autr: sk+pkt——All ciphertext encrypted under pk is equality testable for tester.
Autc: sk+pkt+c——A specific ciphertext c encrypted under pk is equality testable for tester.
Verification:
verification algorithm
Verr:on input pk and skt [rw];
Verc:on input pk 、skt and c [cw].
Test:ciphertext c、c′ ,wattants w、w′,tester’s secrect key skt
Test(c,w,c′,w′,skt)
Properties of PKE-AET
Property | Detail |
---|---|
Correctness | ∀m∈G,Pr[Dec(sk,Enc(pk,m))=m]=1 |
Consistency | ∀m,m′≠⊥∧m=m′,Pr[1←Test(c,w,c′,w′,skt)]=1 |
Soundness | ∀m,m′≠⊥∧m≠m′,Pr[1←Test(c,w,c′,w′,skt)]≤ϵ(λ) |
Compatibility | ∀w∈{rw,cw},∀w′∈{rw′,cw′},Test(c,w,c′,w′,skt) isidentical. |
一致性:对于相同的密文,Test结果是1的概率(Pr)是1;
完整性:对于不同的密文,Test结果是1的概率可以忽略不计;
通用性:∀w∈{rw,cw},∀w′∈{rw′,cw′},Test(c,w,c′,w′,skt)都是恒等的。
Sumarry
输入安全参数λ,通过setup算法产生一系列公共参数pp,分发给系统中的所有用户;输入一个pp(接受者的),通过keygeneration算法产生(pk,sk)一对密钥——这对密钥代表接收者;
(发送者)利用pk加密明文m,产生密文c;
接收者对信任的用户(这里指Tester[pkt,skt])进行授权(rw,cw);
sk+pkt→rw [ all ciphertext]
sk+pkt+c→cw [ciphertext c]
Tester进行相等性测试。
Test(c,w,c′,w′,skt)
Contrast with PKEET-FA
In order to prevent the attacker from doing the public test at random without obtaining the data owner’s permission,onliy with permissions and authorizations from the data owners can someone do the test.(Assumed Alice is a receiver.)PKEET-FA proposed four types of authorization:
User Level: All cyphertexts of Alice could be compared with all cyphertexts of any other receivers.
[All Cyphertexts to All Cyphertexts of Any other Receivers]
Cyphertext Level: A specific cyphertext of Alice could be compared with a specific cyphertext of any other receivers.
[A Specific Cyphertext to A Specific Cyphertext of Any other Receivers]
User−specific cyphertext Level: A specific cyphertext of Alice could be only compared with a specific cyphertexts of a specific receiver.
[A Specific Cyphertext to A Specific Cyphertext of A Specific Receiver]
Cyphertext−to−user Level: A specific cyphertext of Alice could be compared with all cyphertexts of any other receivers.
[A Specific Cyphertext to All Cyphertext of Any other Receivers]
Similarity | Difference |
---|---|
Autr和User Level类似,User Level=Test(c,rw,c′,rw′∥∀skt);Autc和Cyphertext Level类似,Cyphertext Level=Test(c,cw,c′,cw′∥∀skt)。 | User−Specific CyphertextLevel=Test(c,cw,c′,cw′,skt);Cyphertext−to−UserLevel=Test(c,cw,c′,rw′∥∀skt)。 |
PKEET−FA既可以对任何一个Tester授权(rw,cw),也可以只对特定的Tester授权(cw).
相关文章推荐
- 收集的一些学习ios的好网站(2)
- 动画瞎写
- Excel中将字符串中从右起第n个指定字符替换的方法
- Sql优化-必劳记!
- servlet基础
- UITableView头部的图片,下拉缩放
- Java Code Examples for org.apache.commons.codec.binary.Base64InputStream
- 大数据量时Mysql的优化要点
- java学习之路
- 对称加密和分组加密中的四种模式(ECB、CBC、CFB、OFB)
- 代码混淆配置
- STL_算法_根据第n个元素排序(nth_element)
- windowSoftInputMode键盘把输入框挡住了
- [Leetcode]146. LRU Cache @python
- Android NDK生成so文件
- 使用poi通过excel模板导出excel数据
- perl AnyEvent
- Android手机实时视频监控
- Matlab---串口操作---数据採集篇
- 分组后取每组内排名的Top N的SQL语句