RE-ENCRYPTION KEY GENERATOR, RE-ENCRYPTION APPARATUS, ENCRYPTION APPARATUS, DECRYPTION APPARATUS, AND STORAGE MEDIUM
First Claim
1. A re-encryption key generator which generates a re-encryption key needed to obtain re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the generator comprising:
- a first storage circuit configured to store a first private key corresponding to the first public key;
a second storage circuit configured to store a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key; and
a re-encryption key generation device configured to generate the re-encryption key based on the first private key, the second re-encryption key generation key, and a plurality of random numbers,wherein the second re-encryption key generation key comprises a plurality of system-specific values and the second private key,the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion,the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, andthe denominator portion is the first private key.
3 Assignments
0 Petitions
Accused Products
Abstract
According to one embodiment, a re-encryption key generator which generates the re-encryption key based on the first private key, the second re-encryption key generation key, and a plurality of random numbers. The second re-encryption key generation key comprises a plurality of system-specific values and the second private key. The re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion. The numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying relations between the system-specific values and the random numbers is allowed to act. The denominator portion is the first private key.
-
Citations
14 Claims
-
1. A re-encryption key generator which generates a re-encryption key needed to obtain re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the generator comprising:
-
a first storage circuit configured to store a first private key corresponding to the first public key; a second storage circuit configured to store a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key; and a re-encryption key generation device configured to generate the re-encryption key based on the first private key, the second re-encryption key generation key, and a plurality of random numbers, wherein the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key. - View Dependent Claims (2, 3, 4)
-
-
5. A re-encryption apparatus which obtains re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the apparatus comprising:
-
a storage circuit configured to store the re-encryption key pre-generated by a re-encryption key generator; and a re-encryption circuit configured to obtain the re-encrypted text data by re-encrypting the ciphertext data without decryption using the re-encryption key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, and a plurality of random numbers, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
-
6. An encryption apparatus which generates ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, for a re-encryption apparatus configured to obtain re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, the ciphertext data, the apparatus comprising:
-
a storage circuit configured to store the first public key; and an encryption circuit configured to obtain the ciphertext data by encrypting the plaintext data using the first public key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, and a plurality of random numbers, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
-
7. A decryption apparatus which decrypts re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device after a re-encryption apparatus obtains the re-encrypted text data based on a re-encryption key by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the apparatus comprising:
-
a storage circuit configured to store the second private key; and a decryption circuit configured to obtain the plaintext data by decrypting the re-encrypted text data based on the second private key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, and a plurality of random numbers, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
-
8. A non-transitory computer-readable storage medium having a program stored therein, the program being used by a re-encryption key generator which generates a re-encryption key needed to obtain re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the program allowing a processor in the re-encryption key generator to execute:
-
a process of writing a first private key corresponding to the first public key to a first storage circuit in the re-encryption key generator; a process of writing a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, to a second storage circuit; and a process of generating the re-encryption key based on the first private key, the second re-encryption key generation key, and a plurality of random numbers, wherein the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key. - View Dependent Claims (9, 10, 11)
-
-
12. A non-transitory computer-readable storage medium having a program stored therein, the program being used for a re-encryption apparatus which obtains re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the program allowing a processor in the re-encryption apparatus to execute:
-
a process of writing the re-encryption key pre-generated by a re-encryption key generator to a storage circuit in the re-encryption apparatus; and a process of obtaining the re-encrypted text data by re-encrypting the ciphertext data without decryption using the re-encryption key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, and a plurality of random numbers, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
-
13. A non-transitory computer-readable storage medium having a program stored therein, the program being used for an encryption apparatus which generates ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, for a re-encryption apparatus configured to obtain re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device, by re-encrypting, without decryption, the ciphertext data, the program allowing a processor in the encryption apparatus to execute:
-
a process of writing the first public key to a storage circuit in the encryption apparatus; and a process of obtaining the ciphertext data by encrypting the plaintext data using the first public key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, and a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
-
14. A non-transitory computer-readable storage medium having a program stored therein, the program being used for a decryption apparatus which decrypts re-encrypted text data which is configured to be decrypted by means of a second private key of a second user device after a re-encryption apparatus obtains the re-encrypted text data based on a re-encryption key by re-encrypting, without decryption, ciphertext data obtained by encrypting plaintext data by means of a first public key of a first user device, the program allowing a processor in the decryption apparatus to execute:
-
a process of writing the second private key to a storage circuit in the decryption apparatus; and a process of obtaining the plaintext data by decrypting the re-encrypted text data based on the second private key stored in the storage circuit, wherein the re-encryption key is generated based on a first private key corresponding to the first public key, a second re-encryption key generation key of the second user device which is different from a second public key corresponding to the second private key, and a plurality of random numbers, the second re-encryption key generation key comprises a plurality of system-specific values and the second private key, the re-encryption key includes an exponent having a numerator portion and a denominator portion or a scalar having a numerator portion and a denominator portion, the numerator portion is in form of a linear coupling of the second private key on which at least one of a plurality of private values specifying a relation between the system-specific values and the random numbers is allowed to act, and the denominator portion is the first private key.
-
Specification