Search papers, labs, and topics across Lattice.
This paper presents a ciphertext-policy attribute-based encryption (CP-ABE) scheme for $\mathsf{NC}^1$ circuits using lattice cryptography, achieving constant-size ciphertexts. The construction relies on the succinct LWE assumption and offers public-key and ciphertext sizes independent of the circuit depth. As a notable application, the scheme yields a broadcast encryption method with ciphertext size independent of the number of users.
Constant-size ciphertexts for $\mathsf{NC}^1$ attribute-based encryption are now possible via succinct LWE, unlocking practical applications like scalable broadcast encryption.
We construct a lattice-based ciphertext-policy attribute-based encryption (CP-ABE) scheme for $\mathsf{NC}^1$ access policies with constant-size ciphertexts. Let $\lambda$ be the security parameter. For an $\mathsf{NC}^1$ circuit of depth $d$ and size $s$ on $\ell$-bit inputs, our scheme has the public-key and ciphertext sizes $O(1)$ (independent of $d$), and secret-key size $O(\ell)$, where the $O(\cdot)$ hides $\operatorname{poly}(\lambda)$ factors. As an application, we obtain a broadcast encryption scheme for $N$ users with ciphertext size $\operatorname{poly}(\lambda)$ independent of $\log N$ and key sizes $\operatorname{poly}(\lambda,\log N)$. Our construction is selectively secure in the standard model under the $\operatorname{poly}(\lambda)$-succinct LWE assumption introduced by Wee (CRYPTO~2024).
