Conference item
Attribute-based signatures for unbounded circuits in the ROM and efficient instantiations from lattices
- Abstract:
-
Attribute-based signature (ABS), originally introduced by Maji et al. (CT-RSA'11), represents an essential mechanism to allow for fine-grained authentication. A user associated with an attribute x can sign w.r.t. a given public policy C only if his attribute satisfies C, i.e., C(x) = 1. So far, much effort on constructing bilinear map-based ABS schemes have been made, where the state-of-the-art scheme of Sakai et al. (PKC'16) supports the very wide class of unbounded circuits as policies. However, construction of ABS schemes without bilinear maps are less investigated, where it was not until recently that Tsabary (TCC'17) showed a lattice-based ABS scheme supporting bounded circuits as policies, at the cost of weakening the security requirement.
In this work, we affirmatively close the gap between ABS schemes based on bilinear maps and lattices by constructing the first lattice-based ABS scheme for unbounded circuits in the random oracle model. We start our work by providing a generic construction of ABS schemes for unbounded-circuits in the random oracle model, which in turn implies that one-way func- tions are sufficient to construct ABS schemes. To prove security, we formalize and prove a generalization of the Forking Lemma, which we call \general multi-forking lemma with oracle access", capturing the situation where the simulator is interacting with some algorithms he cannot rewind, and also covering many features of the recent lattice-based ZKPs. This, in fact, was a formalization lacking in many existing anonymous signatures from lattices so far (e.g., group signatures). Therefore, this formalization is believed to be of independent inter- est. Finally, we provide a concrete instantiation of our generic ABS construction from lattices by introducing a new Σ-protocol, that highly departs from the previously known techniques, for proving possession of a valid signature of the lattice-based signature scheme of Boyen (PKC'10).
- Publication status:
- Published
- Peer review status:
- Peer reviewed
Actions
Access Document
- Files:
-
-
(Preview, Accepted manuscript, pdf, 237.2KB, Terms of use)
-
- Publisher copy:
- 10.1007/978-3-319-76581-5_4
Authors
- Publisher:
- Springer
- Host title:
- 21st International Conference on Practice and Theory of Public Key Cryptography (PKC 2018)
- Journal:
- 21st International Conference on Practice and Theory of Public Key Cryptography (PKC 2018) More from this journal
- Publication date:
- 2018-03-25
- Acceptance date:
- 2017-12-15
- DOI:
- Pubs id:
-
pubs:833245
- UUID:
-
uuid:1e14f187-c655-427d-8de8-536ed656f795
- Local pid:
-
pubs:833245
- Source identifiers:
-
833245
- Deposit date:
-
2018-05-04
- ARK identifier:
Terms of use
- Copyright holder:
- International Association for Cryptologic Research
- Copyright date:
- 2018
- Notes:
- © International Association for Cryptologic Research 2018. This is the accepted manuscript version of the article. The final version is available online from Springer at: https://doi.org/10.1007/978-3-319-76581-5_4
If you are the owner of this record, you can report an update to it here: Report update to this record