Improved Proxy Re-Encryption Schemes With Applications to Secure Distributed Storage
In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy re-encryption, in which a semi-trusted proxy converts a ciphertext for Alice into a ciphertext for Bob without seeing the underlying plaintext. The authors predict that fast and secure re-encryption will become increasingly popular as a method for managing encrypted le systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption has been hindered by considerable security risks. Following recent work of authors, this paper presents new re-encryption schemes that realize a stronger notion of security and the authors demonstrates the usefulness of proxy re-encryption as a method of adding access control to the SFS read-only file system.