Ciphertext-Policy ABE for NC1 Circuits with Constant-Size Ciphertexts from Succinct LWE
Abstract
We construct a lattice-based ciphertext-policy attribute-based encryption (CP-ABE) scheme for NC1 access policies with constant-size ciphertexts. Let λ be the security parameter. For an NC1 circuit of depth d and size s on -bit inputs, our scheme has the public-key and ciphertext sizes O(1) (independent of d), and secret-key size O(), where the O(·) hides poly(λ) factors. As an application, we obtain a broadcast encryption scheme for N users with ciphertext size poly(λ) independent of N and key sizes poly(λ, N). Our construction is selectively secure in the standard model under the poly(λ)-succinct LWE assumption introduced by Wee (CRYPTO~2024).
Turn this paper into a full lesson
ArcXiv compiles a staged curriculum from this paper: 8-12 lessons across beginner → advanced, synthesised section guides, visuals, flashcards, a quiz, exercises, and on-demand deep dives per section. Grounded in the abstract, never invented.