Forward-Secure Certificate-Based Encryption and its Generic Construction
In this paper, the authors introduce a new asymmetric encryption paradigm called Forward-Secure Certificate-Based Encryption. It preserves the advantages of Certificate-Based Encryption (CBE) such as implicit certificate and no private key escrow. At the same time it also inherits the properties of the forward-secure public key encryption. In a forward-secure CBE scheme, all users' private keys are updated at regular periods throughout the lifetime of the system; exposure of a user's private key corresponding to a given time period does not enable an adversary to break the security of the ciphertext sent to this user for any prior time period.