Efficient Trace and Revoke Schemes (2000)
Cached
Download Links
- [www.wisdom.weizmann.ac.il]
- [www.wisdom.weizmann.ac.il]
- [www278.pair.com]
- DBLP
Other Repositories/Bibliography
| Venue: | Financial Cryptography - FC 2000 |
| Citations: | 42 - 1 self |
BibTeX
@INPROCEEDINGS{Naor00efficienttrace,
author = {Moni Naor and Benny Pinkas},
title = {Efficient Trace and Revoke Schemes},
booktitle = {Financial Cryptography - FC 2000},
year = {2000},
pages = {1--20},
publisher = {Springer-Verlag}
}
Years of Citing Articles
Bookmark
 |
 |
 |
 |
 |
 |
OpenURL
Abstract
Our goal is to design encryption schemes for mass distribution of data in which it is possible to (1) deter users from leaking their personal keys, (2) trace which users leaked keys to construct an illegal decryption device, and (3) revoke these keys as to render the device dysfunctional. We start by designing an efficient revocation scheme, based on secret sharing. It can remove up to t parties and is secure against coalitions of up to t users. The performance of this scheme is more efficient than that of previous schemes with the same properties. We then show how to enhance the revocation scheme with traitor tracing and self enforcement properties. More precisely, how to construct schemes such that (1) Each user's personal key contains some sensitive information of that user (e.g., the user's credit card number), in order to make users would be reluctant to disclose their keys. (2) An illegal decryption device discloses the identity of users that contributed keys to construct the device. And, (3) it is possible to revoke the keys of corrupt users. For the last point it is important to be able to do so without publicly disclosing the sensitive information.
