Questions tagged [identity-based-encryption]

Question 1

The following definitions are from Fuzzy Identity-based Encryption by Sahai and Waters (Eurocrypt 2005, Eprint). Definition 2 (Decisional Bilinear Diffie-Hellman (BDH) Assumption). Suppose a ...

Question 2

Consider the paper From Identification to Signatures via the Fiat-Shamir Transform: Minimizing Assumptions for Security and Forward-Security published by Abdalla, An, Bellare, Namprempre. In their ...

Question 3

In certificateless cryptography, the KGC must ensure that the partial private keys are delivered securely to the correct entities. So my question is how KGC can send these keys secretly? In the other ...

Question 4

In Gentry's paper "Practical Identity-Based Encryption without Random Oracles", I have a little difficulty understanding the security proof part. The paper claims that in the Challenge phase:...

Question 5

In the paper Dual system encryption: realizing fully secure IBE and HIBE under simple assumption (free PDF), the authors said "there is an apparent paradox in this strategy since it seems that ...

Question 6

Alice wants to send Bob a message. Both have well known public/private EC keys (PA, b, PB, <...

Question 7

This question pertains to identity-based key encapsulation mechanisms (IB-KEMs). To recap the functionality: $\mathsf{KeyGen}(1^\lambda) \to (\mathsf{msk}, \mathsf{mpk})$ Generates the master keypair ...

Question 8

I am a developer with very little experience on the crypto part, and I'm looking for a secure solution (OTP Like) for identifying between client (browser) and server. this is what i need: Web Page at ...

Question 9

Identity Based Encryption is an asymmetric encryption scheme such that encryption uses the receiver's identity as the public key. Such a identity can be receiver's email address or some other string ...

Question 10

I stumbled across this correctness of a scheme: $e(g^r, H(id)^x) = e(g^x, H(id))^r = e(g^x, H(id))^r$ and have a hard time following the properties of the bilinear pairing. Does anyone know the "...

Question 11

I was just wondering how the private key generator should publish the master public key inside of an IBE system. This key is needed for all devices in the network to derive the public key of receiving ...

Question 12

Let's assume such a scenario. Person A will broadcast his public key and person B will broadcast his public key. They can now communicate. But let's say that suddenly another person C will write to ...

Question 13

The PKG performs the following steps Choose $p,q \in \mathbb{P}$. Calculate $N=pq$. Calculate $\phi (n)=(p-1)(q-1)$. Choose $e$ with $gcd(e,\phi(n))=1$ and $1 < e < \phi(n)$. Let it be $e = {p^{...

Question 14

Although there are several proposals of ID-based PKC based on lattices, multivariate cryptography, I want to know why identity (ID) based PKC is not included in the NIST post-quantum competition. Is ...

Question 15

I'm looking for a IB-DS algorithm in the web. I found this one (if you know some other let me know). But I cannot figure out what the "identity" is. Better: I don't know if, in the section ...

Stack Exchange Network

Questions tagged [identity-based-encryption]

Which Variant of the Decisional Bilinear DH Assumption is Stronger?

Why are OO-secure ID-schemes IMP-PA?

secure channel for sending partial private keys!

Question about Security proof of Gentry's Anonymous IBE

self-decryption paradox in identity based encryption

Well-known public key with non-interactive deniable encryption

"Shifting" a dual-Regev keypair away from a trapdoored instance

OTP like Identity

Why use pairing to construct identity based encryption?

Properties of the bilinear pairing groups?

Distributing the Master Public Key in Identity-based Encryption systems

Proving identity in asymmetrically encrypted communication

Is this RSA-based IBE Scheme secure?

Why has ID-based PKC not been included in the NIST PQC competition?

Is there a robust Identity-Based Digital Signature algorithm?

Hot Network Questions