Functional encryption for cascade automata

Dan Brownstein; Shlomi Dolev; Niv Gilboa

doi:10.1016/j.ic.2016.12.005

Functional encryption for cascade automata

Dan Brownstein, Shlomi Dolev, Niv Gilboa

Department of Computer Science

Research output: Contribution to journal › Article › peer-review

Abstract

We introduce a Functional Encryption (FE) scheme for the class of languages accepted by extended automata. In an extended automaton, n Deterministic Finite Automata (DFA), each with at most q states, are linked in a cascade such that in each transition the i-th DFA performs its own transition and outputs an input symbol for DFA number i+1modn. Our scheme encrypts a message m with a word w and the resulting ciphertext can be decrypted only by a key that is associated with an automaton that accepts w. Our scheme has key size O(nq²), while the ciphertext length and encryption and decryption times are O(n|w|). Our scheme is significantly more efficient than previous proposals, e.g. Waters (Crypto'12), for interesting applications of FE for regular languages such as accepting a word in a regular language only if it is accompanied by a standard public key signature on that word.

Original language	English
Pages (from-to)	384-407
Number of pages	24
Journal	Information and Computation
Volume	255
DOIs	https://doi.org/10.1016/j.ic.2016.12.005
State	Published - 1 Aug 2017

Keywords

Functional encryption

ASJC Scopus subject areas

Theoretical Computer Science
Information Systems
Computer Science Applications
Computational Theory and Mathematics

Access to Document

10.1016/j.ic.2016.12.005

Cite this

@article{e001ae54907b4711840b6a4009dc986b,

title = "Functional encryption for cascade automata",

abstract = "We introduce a Functional Encryption (FE) scheme for the class of languages accepted by extended automata. In an extended automaton, n Deterministic Finite Automata (DFA), each with at most q states, are linked in a cascade such that in each transition the i-th DFA performs its own transition and outputs an input symbol for DFA number i+1modn. Our scheme encrypts a message m with a word w and the resulting ciphertext can be decrypted only by a key that is associated with an automaton that accepts w. Our scheme has key size O(nq2), while the ciphertext length and encryption and decryption times are O(n|w|). Our scheme is significantly more efficient than previous proposals, e.g. Waters (Crypto'12), for interesting applications of FE for regular languages such as accepting a word in a regular language only if it is accompanied by a standard public key signature on that word.",

keywords = "Functional encryption",

author = "Dan Brownstein and Shlomi Dolev and Niv Gilboa",

note = "Publisher Copyright: {\textcopyright} 2016",

year = "2017",

month = aug,

day = "1",

doi = "10.1016/j.ic.2016.12.005",

language = "English",

volume = "255",

pages = "384--407",

journal = "Information and Computation",

issn = "0890-5401",

publisher = "Elsevier Inc.",

}

TY - JOUR

T1 - Functional encryption for cascade automata

AU - Brownstein, Dan

AU - Dolev, Shlomi

AU - Gilboa, Niv

PY - 2017/8/1

Y1 - 2017/8/1

N2 - We introduce a Functional Encryption (FE) scheme for the class of languages accepted by extended automata. In an extended automaton, n Deterministic Finite Automata (DFA), each with at most q states, are linked in a cascade such that in each transition the i-th DFA performs its own transition and outputs an input symbol for DFA number i+1modn. Our scheme encrypts a message m with a word w and the resulting ciphertext can be decrypted only by a key that is associated with an automaton that accepts w. Our scheme has key size O(nq2), while the ciphertext length and encryption and decryption times are O(n|w|). Our scheme is significantly more efficient than previous proposals, e.g. Waters (Crypto'12), for interesting applications of FE for regular languages such as accepting a word in a regular language only if it is accompanied by a standard public key signature on that word.

AB - We introduce a Functional Encryption (FE) scheme for the class of languages accepted by extended automata. In an extended automaton, n Deterministic Finite Automata (DFA), each with at most q states, are linked in a cascade such that in each transition the i-th DFA performs its own transition and outputs an input symbol for DFA number i+1modn. Our scheme encrypts a message m with a word w and the resulting ciphertext can be decrypted only by a key that is associated with an automaton that accepts w. Our scheme has key size O(nq2), while the ciphertext length and encryption and decryption times are O(n|w|). Our scheme is significantly more efficient than previous proposals, e.g. Waters (Crypto'12), for interesting applications of FE for regular languages such as accepting a word in a regular language only if it is accompanied by a standard public key signature on that word.

KW - Functional encryption

UR - http://www.scopus.com/inward/record.url?scp=85013655522&partnerID=8YFLogxK

U2 - 10.1016/j.ic.2016.12.005

DO - 10.1016/j.ic.2016.12.005

M3 - Article

AN - SCOPUS:85013655522

SN - 0890-5401

VL - 255

SP - 384

EP - 407

JO - Information and Computation

JF - Information and Computation

ER -

Functional encryption for cascade automata

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this