HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave
Proxy re-encryption (PRE) allows a proxy to transform one ciphertext to another under different encryption keys while keeping the underlying plaintext secret. Because of the ciphertext transformability of PRE, there are many potential private communicating applications of this feature. However, exis...
Saved in:
| Main Authors: | , , , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2021
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/6812 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-7815 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-78152022-01-27T03:48:03Z HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave ZHANG, Fan LIANG, Ziyuan ZUO, Cong SHAO, Jun NING, Jianting SUN, Jun LIU, Joseph K. BAO, Yibao Proxy re-encryption (PRE) allows a proxy to transform one ciphertext to another under different encryption keys while keeping the underlying plaintext secret. Because of the ciphertext transformability of PRE, there are many potential private communicating applications of this feature. However, existing PRE schemes are not as full-fledged as expected. The lack of necessary features makes them hard to apply in real-world scenarios. So far, there does not exist a unidirectional multihop PRE scheme with constant decryption efficiency and constant ciphertext size without extensions. Impractical performance and weak scalability also hinder PRE from most real-world applications. In this work, we present a new PRE scheme with secure hardware enclave named hPRESS (hardware-enhanced PRE scheme using secure enclave). To the best of our knowledge, hPRESS is the first unidirectional multihop PRE scheme which achieves both constant decryption efficiency and constant ciphertext size without extensions. A detailed security analysis demonstrates that our proposal is CCA secure based on the security of the underlying encryption schemes and the secure enclave. We also implement a prototype based on Intel SGX, one of the most popular secure enclave techniques in recent years, and evaluate its performance. The experimental results show that, compared with previous PRE schemes, our hPRESS is almost one order of magnitude faster in terms of the decryption and transformation. 2021-06-01T07:00:00Z text https://ink.library.smu.edu.sg/sis_research/6812 info:doi/10.1109/TCAD.2020.3022841 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Intel SGX proxy re-encryption (PRE) secure enclave trusted computing Software Engineering |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Intel SGX proxy re-encryption (PRE) secure enclave trusted computing Software Engineering |
| spellingShingle |
Intel SGX proxy re-encryption (PRE) secure enclave trusted computing Software Engineering ZHANG, Fan LIANG, Ziyuan ZUO, Cong SHAO, Jun NING, Jianting SUN, Jun LIU, Joseph K. BAO, Yibao HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| description |
Proxy re-encryption (PRE) allows a proxy to transform one ciphertext to another under different encryption keys while keeping the underlying plaintext secret. Because of the ciphertext transformability of PRE, there are many potential private communicating applications of this feature. However, existing PRE schemes are not as full-fledged as expected. The lack of necessary features makes them hard to apply in real-world scenarios. So far, there does not exist a unidirectional multihop PRE scheme with constant decryption efficiency and constant ciphertext size without extensions. Impractical performance and weak scalability also hinder PRE from most real-world applications. In this work, we present a new PRE scheme with secure hardware enclave named hPRESS (hardware-enhanced PRE scheme using secure enclave). To the best of our knowledge, hPRESS is the first unidirectional multihop PRE scheme which achieves both constant decryption efficiency and constant ciphertext size without extensions. A detailed security analysis demonstrates that our proposal is CCA secure based on the security of the underlying encryption schemes and the secure enclave. We also implement a prototype based on Intel SGX, one of the most popular secure enclave techniques in recent years, and evaluate its performance. The experimental results show that, compared with previous PRE schemes, our hPRESS is almost one order of magnitude faster in terms of the decryption and transformation. |
| format |
text |
| author |
ZHANG, Fan LIANG, Ziyuan ZUO, Cong SHAO, Jun NING, Jianting SUN, Jun LIU, Joseph K. BAO, Yibao |
| author_facet |
ZHANG, Fan LIANG, Ziyuan ZUO, Cong SHAO, Jun NING, Jianting SUN, Jun LIU, Joseph K. BAO, Yibao |
| author_sort |
ZHANG, Fan |
| title |
HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| title_short |
HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| title_full |
HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| title_fullStr |
HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| title_full_unstemmed |
HPRESS: A Hardware-enhanced proxy Re-encryption scheme using secure enclave |
| title_sort |
hpress: a hardware-enhanced proxy re-encryption scheme using secure enclave |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2021 |
| url |
https://ink.library.smu.edu.sg/sis_research/6812 |
| _version_ |
1770576073547841536 |