Abstract | ||
---|---|---|
Current issues with mass surveillance and a lack of end-user encryption, coupled with a growing demand for key escrow under legal oversight and certificate authority security concerns, raises the question of the appropriateness of continued general dependency on PKI. Under this context, we examine IdentityBased Encryption (IBE) as an alternative to public-key encryption, contrasting the two in light of present interests. Balancing goals of encryption and (limited) key escrow, we compare IBE schemes involving multiple private-key generators (PKGs) where trust is not placed in a single entity, but spread evenly amongst many. Finally, we present CARIBE, a cascaded IBE scheme, and prove the security of it in the computational model. CARIBE combines the ease-of-use of IBE with key escrow, limited to the case when the entire set of participating PKGs collaborate. As a focal point, due to its construction, CARIBE also allows for maximum flexibility and user-side control of which PKGs should be allowed into the web of trust. |
Year | Venue | Field |
---|---|---|
2015 | IACR Cryptology ePrint Archive | Public key infrastructure,Computer science,Computer security,Certificate authority,Encryption,Key escrow |
DocType | Volume | Citations |
Journal | 2015 | 0 |
PageRank | References | Authors |
0.34 | 17 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Britta Hale | 1 | 3 | 2.09 |
Christopher Carr | 2 | 2 | 1.73 |
Danilo Gligoroski | 3 | 193 | 37.59 |