IACR News item: 07 March 2013
Niu Liu, Shaohua Tang, Lingling Xu
ePrint Report
Theorem [49] (CRTHACS) was supposed to be capable of hiding
hierarchical structure, but Geiselmann et al. [18] showed practical attacks on CRTHACS to reveal the hierarchies it hides. Then, Zou et al. modified it, and gave a new CRTHACS [50] to resist those attacks. Nevertheless, we find that the modified version is still defective if it permits changes of structure, i.e. the scheme works in a dynamic scenario. In this paper, we describe our attack on the modified version of CRTHACS. We extend the description of the CRTHACS in a more proper form making it easier for us to look into the problem it has. We find the key character of the vulnerability which we name as double-invariance. We generalize our attack in an algebraic form and apply it to a series of hierarchical cryptographic
access control schemes that share the same vulnerability with CRTHACS. We also give the countermeasure to fix this vulnerability.
Additional news items may be found on the IACR news page.