Improved proxy re-encryption schemes with applications to secure distributed storage
-
- Giuseppe Ateniese
- The Johns Hopkins University, Baltimore, MD
-
- Kevin Fu
- University of Massachusetts, Amherst, MA
-
- Matthew Green
- The Johns Hopkins University, Baltimore, MD
-
- Susan Hohenberger
- Massachusetts Institute of Technology, Cambridge, MA
説明
<jats:p> In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called <jats:italic>atomic proxy re-encryption</jats:italic> , in which a semitrusted proxy converts a ciphertext for Alice into a ciphertext for Bob <jats:italic>without</jats:italic> seeing the underlying plaintext. We predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted file systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of Dodis and Ivan, we present new re-encryption schemes that realize a stronger notion of security and demonstrate the usefulness of proxy re-encryption as a method of adding access control to a secure file system. Performance measurements of our experimental file system demonstrate that proxy re-encryption can work effectively in practice. </jats:p>
収録刊行物
-
- ACM Transactions on Information and System Security
-
ACM Transactions on Information and System Security 9 (1), 1-30, 2006-02
Association for Computing Machinery (ACM)