A METHOD FOR ATTRIBUTE BASED BROADCAST ENCRYPTION WITH PERMANENT REVOCATION
First Claim
Patent Images
1. A method for broadcast encryption that allows a broadcaster to send encrypted data to a set of users such that only a subset of authorized users can decrypt said data, wherein said method supports permanent revocation of users;
- said method comprising the following modifications to the four stages of the basic Cipher-text Policy Attribute-Based Encryption techniques;
a) in the setup stage—
a random control component is added by said broadcaster to the master key;
b) in the key generation stage—
said broadcaster sends to each user a private key that includes the attributes of said user and a component that includes the state of said user, wherein said state of said user is a function of said random control component;
c) in the encrypt stage;
said broadcaster constructs a ciphertext by use of an algorithm that includes a global secret key, wherein said global secret key is encrypted by said private keys of said subset of authorized users; and
d) in the decrypt stage;
the broadcaster sends said ciphertext which encrypts said global secret key to said authorized users, whereupon only users in said subset of authorized users are able to decrypt and use said global secret key.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention is a method for broadcast encryption that allows a broadcaster to send encrypted data to a set of users such that only a subset of authorized users can decrypt said data. The method comprises modifications to the four stages of the basic Cipher-text Policy Attribute-Based Encryption techniques. The method can be adapted to transform any Attribute-Based Encryption scheme that supports only temporary revocation into a scheme that supports the permanent revocation of users.
-
Citations
3 Claims
-
1. A method for broadcast encryption that allows a broadcaster to send encrypted data to a set of users such that only a subset of authorized users can decrypt said data, wherein said method supports permanent revocation of users;
-
said method comprising the following modifications to the four stages of the basic Cipher-text Policy Attribute-Based Encryption techniques; a) in the setup stage—
a random control component is added by said broadcaster to the master key;b) in the key generation stage—
said broadcaster sends to each user a private key that includes the attributes of said user and a component that includes the state of said user, wherein said state of said user is a function of said random control component;c) in the encrypt stage;
said broadcaster constructs a ciphertext by use of an algorithm that includes a global secret key, wherein said global secret key is encrypted by said private keys of said subset of authorized users; andd) in the decrypt stage;
the broadcaster sends said ciphertext which encrypts said global secret key to said authorized users, whereupon only users in said subset of authorized users are able to decrypt and use said global secret key. - View Dependent Claims (2, 3)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeBen Gurion University of The Negev, Sami Shamoon College Of Engineering
-
Original AssigneeBen Gurion University of The Negev, Sami Shamoon College Of Engineering
-
InventorsDolev, Shlomi, Gilboa, Niv, Kopeetsky, Marina
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current380/255
-
CPC Class CodesH04L 2209/601 Broadcast encryptionH04L 9/0816 Key establishment, i.e. cry...H04L 9/0833 involving conference or gro...H04L 9/0866 involving user or device id...H04L 9/088 Usage controlling of secret...H04L 9/0891 Revocation or update of sec...H04L 9/3073 involving pairings, e.g. id...H04N 21/2347 involving video stream encr...H04N 21/26606 for generating or managing ...H04N 21/4405 involving video stream decr...H04N 21/4623 Processing of entitlement m...
