IACR News item: 13 August 2014
Máté Horváth
ePrint ReportOur main result is an extension of the decentralized CP-ABE scheme of Lewko and Waters with identity-based user revocation. Our revocation system is made feasible by removing the computational burden of a revocation event from the cloud service provider, at the expense of some permanent, yet acceptable overhead of the encryption and decryption algorithms run by the users. Thus, the computation overhead is distributed over a potentially large number of users, instead of putting it on a single party (e.g., a proxy server), which would easily lead to a performance bottleneck.
Besides describing our scheme, we also give a formal proof of its security in the generic bilinear group and random oracle models.
Additional news items may be found on the IACR news page.