ibe

package

v1.3.0 Latest Latest Go to latest Published: Mar 18, 2024 License: MPL-2.0 Imports: 9 Imported by: 4

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/drand/kyber

Links

Open Source Insights

Documentation ¶

Index ¶

func DecryptCCAonG1(s pairing.Suite, private kyber.Point, c *Ciphertext) ([]byte, error)
func DecryptCCAonG2(s pairing.Suite, private kyber.Point, c *Ciphertext) ([]byte, error)
func DecryptCPAonG1(s pairing.Suite, private kyber.Point, c *CiphertextCPA) ([]byte, error)
func H2Tag() []byte
func H3Tag() []byte
func H4Tag() []byte
type Ciphertext
- func EncryptCCAonG1(s pairing.Suite, master kyber.Point, ID, msg []byte) (*Ciphertext, error)
- func EncryptCCAonG2(s pairing.Suite, master kyber.Point, ID, msg []byte) (*Ciphertext, error)
type CiphertextCPA
- func EncryptCPAonG1(s pairing.Suite, basePoint, public kyber.Point, ID, msg []byte) (*CiphertextCPA, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DecryptCCAonG1 ¶ added in v1.2.0

func DecryptCCAonG1(s pairing.Suite, private kyber.Point, c *Ciphertext) ([]byte, error)

DecryptCCAonG1 decrypts ciphertexts encrypted using EncryptCCAonG1 given a G2 "private" point

func DecryptCCAonG2 ¶ added in v1.2.0

func DecryptCCAonG2(s pairing.Suite, private kyber.Point, c *Ciphertext) ([]byte, error)

DecryptCCAonG2 decrypts ciphertexts encrypted using EncryptCCAonG2 given a G1 "private" point

func DecryptCPAonG1 ¶ added in v1.2.0

func DecryptCPAonG1(s pairing.Suite, private kyber.Point, c *CiphertextCPA) ([]byte, error)

DecryptCPAonG1 implements the CPA identity-based encryption scheme from https://crypto.stanford.edu/~dabo/pubs/papers/bfibe.pdf for more information about the scheme. SigGroup = G2 (large secret identities) KeyGroup = G1 (short master public keys) Decrypt:

V XOR H2(e(U, did)) = V XOR H2(e(rP, s*Qid)) = V XOR H2(e(P, P)^(r*s*x)) = V XOR H2(GidT) = M

func H2Tag ¶

func H2Tag() []byte

H2Tag is the domain separation tag for the H2 hash function

func H3Tag ¶

func H3Tag() []byte

H3Tag is the domain separation tag for the H3 hash function

func H4Tag ¶

func H4Tag() []byte

H4Tag is the domain separation tag for the H4 hash function

Types ¶

type Ciphertext ¶

type Ciphertext struct {
	// Random point rP
	U kyber.Point
	// Sigma attached to ID: sigma XOR H(rG_id)
	V []byte
	// ciphertext of the message M XOR H(sigma)
	W []byte
}

func EncryptCCAonG1 ¶ added in v1.2.0

func EncryptCCAonG1(s pairing.Suite, master kyber.Point, ID, msg []byte) (*Ciphertext, error)

EncryptCCAonG1 implements the CCA identity-based encryption scheme from https://crypto.stanford.edu/~dabo/pubs/papers/bfibe.pdf for more information about the scheme. - master is the master key on G1 - "identities" (rounds) are on G2 - the Ciphertext.U point will be on G1 - ID is the ID towards which we encrypt the message - msg is the actual message - seed is the random seed to generate the random element (sigma) of the encryption The suite must produce points which implements the `HashablePoint` interface.

func EncryptCCAonG2 ¶ added in v1.2.0

func EncryptCCAonG2(s pairing.Suite, master kyber.Point, ID, msg []byte) (*Ciphertext, error)

EncryptCCAonG2 implements the CCA identity-based encryption scheme from https://crypto.stanford.edu/~dabo/pubs/papers/bfibe.pdf for more information about the scheme. - master is the master key on G2 - identities ("round") are on G1 - the Ciphertext.U point will be on G2 - ID is the ID towards which we encrypt the message - msg is the actual message - seed is the random seed to generate the random element (sigma) of the encryption The suite must produce points which implements the `HashablePoint` interface.

type CiphertextCPA ¶ added in v1.2.0

type CiphertextCPA struct {
	// commitment
	RP kyber.Point
	// ciphertext
	C []byte
}

func EncryptCPAonG1 ¶ added in v1.2.0

func EncryptCPAonG1(s pairing.Suite, basePoint, public kyber.Point, ID, msg []byte) (*CiphertextCPA, error)

EncryptCPAonG1 implements the CPA identity-based encryption scheme from https://crypto.stanford.edu/~dabo/pubs/papers/bfibe.pdf for more information about the scheme. SigGroup = G2 (large secret identities) KeyGroup = G1 (short master public keys) P random generator of G1 dist master key: s, Ppub = s*P \in G1 H1: {0,1}^n -> G1 H2: GT -> {0,1}^n ID: Qid = H1(ID) = xP \in G2

secret did = s*Qid \in G2

Encrypt:

random r scalar
Gid = e(Ppub, r*Qid) == e(P, P)^(x*s*r) \in GT = GidT
U = rP \in G1,
V = M XOR H2(Gid)) = M XOR H2(GidT) \in {0,1}^n

Source Files ¶

View all Source files

ibe.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL