The Community for Technology Leaders
2013 IEEE 54th Annual Symposium on Foundations of Computer Science (2006)
Berkeley, California
Oct. 21, 2006 to Oct. 24, 2006
ISSN: 0272-5428
ISBN: 0-7695-2720-5
pp: 27-38
Zulfikar Ramzan , Symantec, Inc.
David P. Woodruff , MIT, USA; Tsinghua University, China
Craig Gentry , Stanford University, USA
ABSTRACT
A family of subsets C of [n] \underline{\underline {def}} {1, . . . , n} is (r, t)- exclusive if for every S \subset [n] of size at least n - r, there exist S_1, . . . , S_t \in C with S = S_1\cupS_2\cup? ? ? \cupS_t. These families, also known as complement-cover families, have cryptographic applications, and form the basis of informationtheoretic broadcast encryption and multi-certificate revocation. We give the first explicit construction of such families with size poly(r,t)n^{r/t}, essentially matching a basic lower bound. Our techniques are algebraic in nature. <p>When r = O(t), as is natural for many applications, we can improve our bound to poly(r,t)\left( \begin{gathered} n \hfill \\ r \hfill \\ \end{gathered} \right)^{1/t}. Further, when r, t are small, our construction is tight up to a factor of r. We also provide a poly(r, t, log n) algorithm for finding S_1, . . . , S_t, which is crucial for efficient use in applications. Previous constructions either had much larger size, were randomized and took super-polynomial time to find S_1, . . . , S_t, or did not work for arbitrary n, r, and t. Finally, we improve the known lower bound on the number of sets containing each i \in [n]. Our bound shows that our derived broadcast encryption schemes have essentially optimal total number of keys and keys per user for n users, transmission size t, and revoked set size r.</p>
INDEX TERMS
null
CITATION
Zulfikar Ramzan, David P. Woodruff, Craig Gentry, "Explicit Exclusive Set Systems with Applications to Broadcast Encryption", 2013 IEEE 54th Annual Symposium on Foundations of Computer Science, vol. 00, no. , pp. 27-38, 2006, doi:10.1109/FOCS.2006.27
94 ms
(Ver )