Ciphertext-Policy ABE for NC1 Circuits with Constant-Size Ciphertexts from Succinct LWE

Abstract

We construct a lattice-based ciphertext-policy attribute-based encryption (CP-ABE) scheme for NC1 access policies with constant-size ciphertexts. Let λ be the security parameter. For an NC1 circuit of depth d and size s on -bit inputs, our scheme has the public-key and ciphertext sizes O(1) (independent of d), and secret-key size O(), where the O(·) hides poly(λ) factors. As an application, we obtain a broadcast encryption scheme for N users with ciphertext size poly(λ) independent of N and key sizes poly(λ, N). Our construction is selectively secure in the standard model under the poly(λ)-succinct LWE assumption introduced by Wee (CRYPTO~2024).

0

Turn this paper into a full lesson

ArcXiv compiles a staged curriculum from this paper: 8-12 lessons across beginner → advanced, synthesised section guides, visuals, flashcards, a quiz, exercises, and on-demand deep dives per section. Grounded in the abstract, never invented.

Discussion (0)

Sign in to join the discussion.

Loading comments…