Home > Publications
Home University of Twente
Prospective Students
Intranet (internal)

EEMCS EPrints Service

15256 Efficient and Provable Secure Ciphertext-Policy Attribute-Based Encryption Schemes
Home Policy Brochure Browse Search User Area Contact Help

Ibraimi, L. and Tang, Qiang and Hartel, P.H. and Jonker, W. (2009) Efficient and Provable Secure Ciphertext-Policy Attribute-Based Encryption Schemes. In: 5th Information Security Practice and Experience Conference (ISPEC), 12-15 April 2009, Xi'an, China. pp. 1-12. Lecture Notes in Computer Science 5451. Springer. ISSN 0302-9743 ISBN 978-3-642-00842-9

This is the latest version of this eprint.

Full text available as:

- Univ. of Twente only
224 Kb

Official URL:

Exported to Metis


In a ciphertext-policy attribute-based encryption (CP-ABE) scheme,
the data is encrypted under an access policy defined by a user who
encrypts the data and a user secret key is associated with a set
of attributes which identify the user. A user can decrypt the
ciphertext if and only if his attributes satisfy the access
policy. In CP-ABE, since the user enforces the access policy at
the encryption phase, the policy moves with the encrypted data.
This is important for data storage servers where data
confidentiality must be preserved even if the server is
compromised or un-trusted. In this paper, we provide an efficient
CP-ABE scheme which can express any access policy represented by a
formula involving $\wedge$ and $\vee$ boolean operators. The
scheme is secure under Decision Bilinear Diffie-Hellman assumption
(DBDH). Furthermore, we extend the expressivity of the scheme by
including \emph{of} (threshold) operator in addition to $\wedge$
and $\vee$ operators. We provide a comparison with existing CP-ABE
schemes and show that our schemes are more efficient. Especially,
the computational work done by the decryptor is reduced.

Item Type:Conference or Workshop Paper (Full Paper, Talk)
Research Group:EWI-DIES: Distributed and Embedded Security, EWI-DB: Databases
Research Program:CTIT-ISTRICE: Integrated Security and Privacy in a Networked World
Research Project:SPCMHD: Secure Patient-Centric Management of Health Data
ID Code:15256
Deposited On:07 April 2009
More Information:statisticsmetis

Available Versions of this Item

Export this item as:

To request a copy of the PDF please email us request copy

To correct this item please ask your editor

Repository Staff Only: edit this item