{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,17]],"date-time":"2026-06-17T00:18:29Z","timestamp":1781655509238,"version":"3.54.5"},"reference-count":151,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2022,9,6]],"date-time":"2022-09-06T00:00:00Z","timestamp":1662422400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2022,9,6]],"date-time":"2022-09-06T00:00:00Z","timestamp":1662422400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Des. Codes Cryptogr."],"published-print":{"date-parts":[[2023,1]]},"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Attribute-based encryption (ABE) cryptographically implements fine-grained access control on data. As such, data can be stored by an entity that is not necessarily trusted to enforce access control, or an entity that is not even trusted to have access to the plaintext data at all. Instead, access control can be externally enforced by a trusted entity. Additionally, some multi-authority variants of ABE\u2014which do not have a central authority\u2014can effectively and securely implement access control in multiple-domain settings. Furthermore, ABE is the only cryptographic approach to fine-grained access control that does not require an online trusted third party during access requests, and thus provides better availability properties. The actual realization of these theoretical advantages in practice depends on whether current state-of-the-art ABE schemes support the necessary core properties. Much progress has been made in the last two decades in pairing-based ABE schemes, owing to their versatility and efficiency. In fact, it is possible to support most core properties under strong security guarantees, while incurring acceptable storage and computational costs. It is therefore a good time to ask ourselves whether pairing-based ABE has reached its full practical potential. To answer this question, we provide a comprehensive systematized overview of various existing pairing-based ABE schemes and their core properties. We also investigate the relationship between these core properties and real-world access control requirements. We show that a few challenges remain, that must be overcome for ABE to reach its full potential as a mechanism to implement efficient and secure access control in practice.<\/jats:p>","DOI":"10.1007\/s10623-022-01093-5","type":"journal-article","created":{"date-parts":[[2022,9,6]],"date-time":"2022-09-06T15:22:20Z","timestamp":1662477740000},"page":"165-220","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":24,"title":["Systematizing core properties of pairing-based attribute-based encryption to uncover remaining challenges in enforcing access control in practice"],"prefix":"10.1007","volume":"91","author":[{"given":"Marloes","family":"Venema","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Greg","family":"Alp\u00e1r","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jaap-Henk","family":"Hoepman","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2022,9,6]]},"reference":[{"key":"1093_CR1","doi-asserted-by":"crossref","unstructured":"Abe M., Groth J., Ohkubo M., Tango T.: Converting cryptographic schemes from symmetric to asymmetric bilinear groups. In: CRYPTO, pp. 241\u2013260. Springer (2014).","DOI":"10.1007\/978-3-662-44371-2_14"},{"key":"1093_CR2","doi-asserted-by":"crossref","unstructured":"Abe M., Hoshino F., Ohkubo M.: Design in type-i, run in type-iii: Fast and scalable bilinear-type conversion using integer programming. In: CRYPTO, pp. 387\u2013415. Springer (2016).","DOI":"10.1007\/978-3-662-53015-3_14"},{"key":"1093_CR3","doi-asserted-by":"crossref","unstructured":"Agrawal S., Chase M.: A study of pair encodings: Predicate encryption in prime order groups. In: TCC, pp. 259\u2013288. Springer (2016).","DOI":"10.1007\/978-3-662-49099-0_10"},{"key":"1093_CR4","doi-asserted-by":"crossref","unstructured":"Agrawal S., Chase M.: FAME: fast attribute-based message encryption. In: CCS, pp. 665\u2013682. ACM (2017).","DOI":"10.1145\/3133956.3134014"},{"key":"1093_CR5","doi-asserted-by":"crossref","unstructured":"Agrawal S., Chase M.: Simplifying design and analysis of complex predicate encryption schemes. In: EUROCRYPT, pp. 627\u2013656. Springer (2017).","DOI":"10.1007\/978-3-319-56620-7_22"},{"key":"1093_CR6","doi-asserted-by":"crossref","unstructured":"Akinyele J.A., Garman C., Hohenberger S.: Automating fast and secure translations from type-i to type-iii pairing schemes. In: CCS, pp. 1370\u20131381. ACM (2015).","DOI":"10.1145\/2810103.2813601"},{"key":"1093_CR7","doi-asserted-by":"crossref","unstructured":"Akinyele J.A., Pagano M.W., Green M.D., Lehmann C.U., Peterson Z.N.J., Rubin A.D.: Securing electronic medical records using attribute-based encryption on mobile devices. In: SPSM, pp. 75\u201386. ACM (2011).","DOI":"10.1145\/2046614.2046628"},{"issue":"3","key":"1093_CR8","doi-asserted-by":"publisher","first-page":"541","DOI":"10.1016\/j.jbi.2012.12.003","volume":"46","author":"JLF Alem\u00e1n","year":"2013","unstructured":"Alem\u00e1n J.L.F., Se\u00f1or I.C., Lozoya P.\u00c1.O., Toval A.: Security and privacy in electronic health records: A systematic literature review. J. Biomed. Informatics 46(3), 541\u2013562 (2013).","journal-title":"J. Biomed. Informatics"},{"key":"1093_CR9","doi-asserted-by":"crossref","unstructured":"Ambrona M.: Generic negation of pair encodings. In: Garay J.A. (ed.) PKC, Lecture Notes in Computer Science, vol. 12711, pp. 120\u2013146. Springer (2021).","DOI":"10.1007\/978-3-030-75248-4_5"},{"key":"1093_CR10","doi-asserted-by":"crossref","unstructured":"Ambrona M., Barthe G., Gay R., Wee H.: Attribute-based encryption in the generic group model: Automated proofs and new constructions. In: CCS, pp. 647\u2013664. ACM (2017).","DOI":"10.1145\/3133956.3134088"},{"key":"1093_CR11","unstructured":"Aranha D.: Pairings are not dead, just resting (2017). https:\/\/ecc2017.cs.ru.nl\/slides\/ecc2017-aranha.pdf"},{"key":"1093_CR12","unstructured":"Aranha D.F., Gouv\u00eaa C.P.L., Markmann T., Wahby R.S., Liao K.: RELIC is an Efficient LIbrary for Cryptography. https:\/\/github.com\/relic-toolkit\/relic"},{"key":"1093_CR13","doi-asserted-by":"crossref","unstructured":"Attrapadung N.: Dual system encryption via doubly selective security: Framework, fully secure functional encryption for regular languages, and more. In: EUROCRYPT, pp. 557\u2013577. Springer (2014).","DOI":"10.1007\/978-3-642-55220-5_31"},{"key":"1093_CR14","doi-asserted-by":"crossref","unstructured":"Attrapadung N.: Dual system encryption framework in prime-order groups via computational pair encodings. In: ASIACRYPT, pp. 591\u2013623. Springer (2016).","DOI":"10.1007\/978-3-662-53890-6_20"},{"key":"1093_CR15","doi-asserted-by":"crossref","unstructured":"Attrapadung N.: Unbounded dynamic predicate compositions in attribute-based encryption. In: EUROCRYPT, pp. 34\u201367. Springer (2019).","DOI":"10.1007\/978-3-030-17653-2_2"},{"key":"1093_CR16","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Hanaoka G., Matsumoto T., Teruya T., Yamada S.: Attribute based encryption with direct efficiency tradeoff. In: ACNS, pp. 249\u2013266. Springer (2016).","DOI":"10.1007\/978-3-319-39555-5_14"},{"key":"1093_CR17","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Hanaoka G., Yamada S.: Conversions among several classes of predicate encryption and applications to ABE with various compactness tradeoffs. In: ASIACRYPT, pp. 575\u2013601. Springer (2015).","DOI":"10.1007\/978-3-662-48797-6_24"},{"key":"1093_CR18","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Imai H.: Attribute-based encryption supporting direct\/indirect revocation modes. In: Parker M.G. (ed.) IMACC, LNCS, vol. 5921, pp. 278\u2013300. Springer (2009).","DOI":"10.1007\/978-3-642-10868-6_17"},{"key":"1093_CR19","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Imai H.: Conjunctive broadcast and attribute-based encryption. In: Pairing, LNCS, vol. 5671, pp. 248\u2013265. Springer (2009).","DOI":"10.1007\/978-3-642-03298-1_16"},{"key":"1093_CR20","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Libert B.: Functional encryption for inner product: Achieving constant-size ciphertexts with adaptive security or support for negation. In: PKC, pp. 384\u2013402. Springer (2010).","DOI":"10.1007\/978-3-642-13013-7_23"},{"key":"1093_CR21","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Libert B., de\u00a0Panafieu E.: Expressive key-policy attribute-based encryption with constant-size ciphertexts. In: PKC, pp. 90\u2013108. Springer (2011).","DOI":"10.1007\/978-3-642-19379-8_6"},{"key":"1093_CR22","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Tomida J.: Unbounded dynamic predicate compositions in ABE from standard assumptions. In: ASIACRYPT, pp. 405\u2013436. Springer (2020).","DOI":"10.1007\/978-3-030-64840-4_14"},{"key":"1093_CR23","doi-asserted-by":"crossref","unstructured":"Attrapadung N., Yamada S.: Duality in ABE: converting attribute based encryption for dual predicate and dual policy via computational encodings. In: CT-RSA, pp. 87\u2013105. Springer (2015).","DOI":"10.1007\/978-3-319-16715-2_5"},{"issue":"4","key":"1093_CR24","doi-asserted-by":"publisher","first-page":"1298","DOI":"10.1007\/s00145-018-9280-5","volume":"32","author":"R Barbulescu","year":"2019","unstructured":"Barbulescu R., Duquesne S.: Updating key size estimations for pairings. J. Cryptol. 32(4), 1298\u20131336 (2019).","journal-title":"J. Cryptol."},{"key":"1093_CR25","doi-asserted-by":"crossref","unstructured":"Barreto P.S.L.M., Lynn B., Scott M.: Constructing elliptic curves with prescribed embedding degrees. In: SCN, pp. 257\u2013267. Springer (2002).","DOI":"10.1007\/3-540-36413-7_19"},{"key":"1093_CR26","doi-asserted-by":"crossref","unstructured":"Barreto P.S.L.M., Naehrig M.: Pairing-friendly elliptic curves of prime order. In: SAC, pp. 319\u2013331. Springer (2005).","DOI":"10.1007\/11693383_22"},{"key":"1093_CR27","unstructured":"Beimel A.: Secure schemes for secret sharing and key distribution (1996)."},{"key":"1093_CR28","doi-asserted-by":"crossref","unstructured":"Bellare M., Rogaway P.: Random oracles are practical: A paradigm for designing efficient protocols. In: CCS, pp. 62\u201373. ACM (1993).","DOI":"10.1145\/168588.168596"},{"key":"1093_CR29","doi-asserted-by":"crossref","unstructured":"Bethencourt J., Sahai A., Waters B.: Ciphertext-policy attribute-based encryption. In: S &P, pp. 321\u2013334. IEEE (2007).","DOI":"10.1109\/SP.2007.11"},{"key":"1093_CR30","doi-asserted-by":"crossref","unstructured":"Blaze M., Bleumer G., Strauss M.: Divertible protocols and atomic proxy cryptography. In: Nyberg K. (ed.) EUROCRYPT, LNCS, vol. 1403, pp. 127\u2013144. Springer (1998).","DOI":"10.1007\/BFb0054122"},{"key":"1093_CR31","doi-asserted-by":"crossref","unstructured":"Boneh D.: The decision diffie-hellman problem. In: Buhler J. (ed.) ANTS-III, LNCS, vol. 1423, pp. 48\u201363. Springer (1998).","DOI":"10.1007\/BFb0054851"},{"key":"1093_CR32","doi-asserted-by":"crossref","unstructured":"Boneh D., Boyen X.: Efficient selective-id secure identity-based encryption without random oracles. In: EUROCRYPT, pp. 223\u2013238. Springer (2004).","DOI":"10.1007\/978-3-540-24676-3_14"},{"key":"1093_CR33","doi-asserted-by":"crossref","unstructured":"Boneh D., Boyen X., Goh E.J.: Hierarchical identity based encryption with constant size ciphertext. In: EUROCRYPT, pp. 440\u2013456. Springer (2005).","DOI":"10.1007\/11426639_26"},{"key":"1093_CR34","doi-asserted-by":"crossref","unstructured":"Boneh D., Waters B.: Conjunctive, subset, and range queries on encrypted data. In: Vadhan S.P. (ed.) TCC, LNCS, vol. 4392, pp. 535\u2013554. Springer (2007).","DOI":"10.1007\/978-3-540-70936-7_29"},{"key":"1093_CR35","doi-asserted-by":"crossref","unstructured":"Boyen X.: The uber-assumption family \u2013 a unified complexity framework for bilinear groups. In: Pairing, pp. 39\u201356. Springer (2008).","DOI":"10.1007\/978-3-540-85538-5_3"},{"key":"1093_CR36","doi-asserted-by":"crossref","unstructured":"Boyen X.: Attribute-based functional encryption on lattices. In: Sahai A. (ed.) TCC, LNCS, vol. 7785, pp. 122\u2013142. Springer (2013).","DOI":"10.1007\/978-3-642-36594-2_8"},{"key":"1093_CR37","doi-asserted-by":"crossref","unstructured":"Brickell E.F., Gordon D.M., McCurley K.S., Wilson D.B.: Fast exponentiation with precomputation (extended abstract). In: EUROCRYPT, pp. 200\u2013207. Springer (1992).","DOI":"10.1007\/3-540-47555-9_18"},{"issue":"4","key":"1093_CR38","doi-asserted-by":"publisher","first-page":"557","DOI":"10.1145\/1008731.1008734","volume":"51","author":"R Canetti","year":"2004","unstructured":"Canetti R., Goldreich O., Halevi S.: The random oracle methodology, revisited. J. ACM 51(4), 557\u2013594 (2004).","journal-title":"J. ACM"},{"key":"1093_CR39","doi-asserted-by":"crossref","unstructured":"Canetti R., Halevi S., Katz J.: Chosen-ciphertext security from identity-based encryption. In: Cachin C., Camenisch J. (eds.) EUROCRYPT, LNCS, vol. 3027, pp. 207\u2013222. Springer (2004).","DOI":"10.1007\/978-3-540-24676-3_13"},{"key":"1093_CR40","doi-asserted-by":"crossref","unstructured":"Chase M.: Multi-authority attribute-based encryption. In: TCC, pp. 515\u2013534. Springer (2007).","DOI":"10.1007\/978-3-540-70936-7_28"},{"key":"1093_CR41","doi-asserted-by":"crossref","unstructured":"Chase M., Chow S.S.M.: Improving privacy and security in multi-authority attribute-based encryption. In: Al-Shaer E., Jha S., Keromytis A.D. (eds.) CCS, pp. 121\u2013130. ACM (2009).","DOI":"10.1145\/1653662.1653678"},{"key":"1093_CR42","doi-asserted-by":"crossref","unstructured":"Chatterjee S., Koblitz N., Menezes A., Sarkar P.: Another look at tightness II: practical issues in cryptography. In: Phan R.C., Yung M. (eds.) Mycrypt, LNCS, vol. 10311, pp. 21\u201355. Springer (2016).","DOI":"10.1007\/978-3-319-61273-7_3"},{"key":"1093_CR43","doi-asserted-by":"crossref","unstructured":"Chen C., Chen J., Lim H.W., Zhang Z., Feng D., Ling S., Wang H.: Fully secure attribute-based systems with short ciphertexts\/signatures and threshold access structures. In: CT-RSA, pp. 50\u201367. Springer (2013).","DOI":"10.1007\/978-3-642-36095-4_4"},{"key":"1093_CR44","doi-asserted-by":"crossref","unstructured":"Chen C., Zhang Z., Feng D.: Efficient ciphertext policy attribute-based encryption with constant-size ciphertext and constant computation-cost. In: Boyen X., Chen X. (eds.) ProvSec, LNCS, vol. 6980, pp. 84\u2013101. Springer (2011).","DOI":"10.1007\/978-3-642-24316-5_8"},{"key":"1093_CR45","doi-asserted-by":"crossref","unstructured":"Chen J., Gay R., Wee H.: Improved dual system ABE in prime-order groups via predicate encodings. In: EUROCRYPT, pp. 595\u2013624. Springer (2015).","DOI":"10.1007\/978-3-662-46803-6_20"},{"key":"1093_CR46","doi-asserted-by":"crossref","unstructured":"Chen J., Gong J.: ABE with tag made easy - concise framework and new instantiations in prime-order groups. In: Takagi T., Peyrin T. (eds.) ASIACRYPT, LNCS, vol. 10625, pp. 35\u201365. Springer (2017).","DOI":"10.1007\/978-3-319-70697-9_2"},{"key":"1093_CR47","doi-asserted-by":"crossref","unstructured":"Chen J., Gong J., Kowalczyk L., Wee H.: Unbounded ABE via bilinear entropy expansion, revisited. In: EUROCRYPT, pp. 503\u2013534. Springer (2018).","DOI":"10.1007\/978-3-319-78381-9_19"},{"key":"1093_CR48","doi-asserted-by":"crossref","unstructured":"Chen J., Wee H.: Fully, (almost) tightly secure IBE and dual system groups. In: Canetti R., Garay J.A. (eds.) CRYPTO, LNCS, vol. 8043, pp. 435\u2013460. Springer (2013).","DOI":"10.1007\/978-3-642-40084-1_25"},{"key":"1093_CR49","unstructured":"Chen J., Wee H.: Dual system groups and its applications \u2014 compact hibe and more. Cryptology ePrint Archive, Report 2014\/265 (2014)."},{"key":"1093_CR50","doi-asserted-by":"crossref","unstructured":"Chen J., Wee H.: Semi-adaptive attribute-based encryption and improved delegation for boolean formula. In: Abdalla M., Prisco R.D. (eds.) SCN, LNCS, vol. 8642, pp. 277\u2013297. Springer (2014).","DOI":"10.1007\/978-3-319-10879-7_16"},{"key":"1093_CR51","doi-asserted-by":"crossref","unstructured":"Cheon J.H.: Security analysis of the strong diffie-hellman problem. In: Vaudenay S. (ed.) EUROCRYPT, LNCS, vol. 4004, pp. 1\u201311. Springer (2006).","DOI":"10.1007\/11761679_1"},{"key":"1093_CR52","doi-asserted-by":"crossref","unstructured":"Cheung L., Newport C.C.: Provably secure ciphertext policy ABE. In: Ning P., di\u00a0Vimercati S.D.C., Syverson P.F. (eds.) CCS, pp. 456\u2013465. ACM (2007).","DOI":"10.1145\/1315245.1315302"},{"key":"1093_CR53","doi-asserted-by":"crossref","unstructured":"Chow S.S.M.: Removing escrow from identity-based encryption. In: Jarecki S., Tsudik G. (eds.) PKC, Lecture Notes in Computer Science, vol. 5443, pp. 256\u2013276. Springer (2009).","DOI":"10.1007\/978-3-642-00468-1_15"},{"key":"1093_CR54","doi-asserted-by":"crossref","unstructured":"Chow S.S.M.: A framework of multi-authority attribute-based encryption with outsourcing and revocation. In: Wang X.S., Bauer L., Kerschbaum F. (eds.) SACMAT, pp. 215\u2013226. ACM (2016).","DOI":"10.1145\/2914642.2914659"},{"key":"1093_CR55","doi-asserted-by":"crossref","unstructured":"Cui H., Deng R.H., Li Y., Qin B.: Server-aided revocable attribute-based encryption. In: Askoxylakis I.G., Ioannidis S., Katsikas S.K., Meadows C.A. (eds.) ESORICS, LNCS, vol. 9879, pp. 570\u2013587. Springer (2016).","DOI":"10.1007\/978-3-319-45741-3_29"},{"issue":"2","key":"1093_CR56","doi-asserted-by":"publisher","first-page":"192","DOI":"10.46586\/tches.v2022.i2.192-239","volume":"2022","author":"A de la Piedra","year":"2022","unstructured":"de la Piedra A., Venema M., Alp\u00e1r G.: ABE squared: Accurately benchmarking efficiency of attribute-based encryption. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2022(2), 192\u2013239 (2022).","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"1093_CR57","doi-asserted-by":"crossref","unstructured":"de\u00a0Lemos R., Giese H., M\u00fcller H.A., Shaw M., Andersson J., Litoiu M., Schmerl B.R., Tamura G., Villegas N.M., Vogel T., Weyns D., Baresi L., Becker B., Bencomo N., Brun Y., Cukic B., Desmarais R.J., Dustdar S., Engels G., Geihs K., G\u00f6schka K.M., Gorla A., Grassi V., Inverardi P., Karsai G., Kramer J., Lopes A., Magee J., Malek S., Mankovski S., Mirandola R., Mylopoulos J., Nierstrasz O., Pezz\u00e8 M., Prehofer C., Sch\u00e4fer W., Schlichting R.D., Smith D.B., Sousa J.P., Tahvildari L., Wong K., Wuttke J.: Software engineering for self-adaptive systems: A second research roadmap. In: de Lemos R., Giese H., M\u00fcller H.A., Shaw M. (eds.) Software Engineering for Self-Adaptive Systems II - International Seminar, Dagstuhl Castle, Germany, October 24-29, 2010 Revised Selected and Invited Papers, Lecture Notes in Computer Science, vol. 7475, pp. 1\u201332. Springer (2010).","DOI":"10.1007\/978-3-642-35813-5_1"},{"issue":"1","key":"1093_CR58","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/s00766-010-0115-7","volume":"16","author":"M Deng","year":"2011","unstructured":"Deng M., Wuyts K., Scandariato R., Preneel B., Joosen W.: A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements. Requir. Eng. 16(1), 3\u201332 (2011).","journal-title":"Requir. Eng."},{"key":"1093_CR59","doi-asserted-by":"crossref","unstructured":"Dent A.W.: Adapting the weaknesses of the random oracle model to the generic group model. In: Zheng Y. (ed.) ASIACRYPT, LNCS, vol. 2501, pp. 100\u2013109. Springer (2002).","DOI":"10.1007\/3-540-36178-2_6"},{"issue":"6","key":"1093_CR60","doi-asserted-by":"publisher","first-page":"644","DOI":"10.1109\/TIT.1976.1055638","volume":"22","author":"W Diffie","year":"1976","unstructured":"Diffie W., Hellman M.E.: New directions in cryptography. IEEE Trans. Inf. Theory 22(6), 644\u2013654 (1976).","journal-title":"IEEE Trans. Inf. Theory"},{"key":"1093_CR61","unstructured":"ETSI: ETSI TS 103 458 (V1.1.1) (2018)."},{"key":"1093_CR62","unstructured":"ETSI: ETSI TS 103 532 (V1.1.1) (2018)."},{"key":"1093_CR63","doi-asserted-by":"crossref","unstructured":"Freeman D.M.: Converting pairing-based cryptosystems from composite-order groups to prime-order groups. In: Gilbert H. (ed.) EUROCRYPT, LNCS, vol. 6110, pp. 44\u201361. Springer (2010).","DOI":"10.1007\/978-3-642-13190-5_3"},{"key":"1093_CR64","doi-asserted-by":"crossref","unstructured":"Fujisaki E., Okamoto T.: Secure integration of asymmetric and symmetric encryption schemes. In: Wiener M.J. (ed.) CRYPTO, LNCS, vol. 1666, pp. 537\u2013554. Springer (1999).","DOI":"10.1007\/3-540-48405-1_34"},{"key":"1093_CR65","unstructured":"Galbraith S.D.: New discrete logarithm records, and the death of type 1 pairings. https:\/\/ellipticnews.wordpress.com\/2014\/02\/01\/new-discrete-logarithm-records-and-the-death-of-type-1-pairings\/ (2014)."},{"issue":"16","key":"1093_CR66","doi-asserted-by":"publisher","first-page":"3113","DOI":"10.1016\/j.dam.2007.12.010","volume":"156","author":"SD Galbraith","year":"2008","unstructured":"Galbraith S.D., Paterson K.G., Smart N.P.: Pairings for cryptographers. Discret. Appl. Math. 156(16), 3113\u20133121 (2008).","journal-title":"Discret. Appl. Math."},{"key":"1093_CR67","doi-asserted-by":"crossref","unstructured":"Gamal T.E.: A public key cryptosystem and a signature scheme based on discrete logarithms. In: Blakley G.R., Chaum D. (eds.) CRYPTO, LNCS, vol. 196, pp. 10\u201318. Springer (1984).","DOI":"10.1007\/3-540-39568-7_2"},{"key":"1093_CR68","doi-asserted-by":"crossref","unstructured":"Garg S., Gentry C., Halevi S., Sahai A., Waters B.: Attribute-based encryption for circuits from multilinear maps. In: Canetti R., Garay J.A. (eds.) CRYPTO, LNCS, vol. 8043, pp. 479\u2013499. Springer (2013).","DOI":"10.1007\/978-3-642-40084-1_27"},{"key":"1093_CR69","doi-asserted-by":"crossref","unstructured":"Garg S., Kumarasubramanian A., Sahai A., Waters B.: Building efficient fully collusion-resilient traitor tracing and revocation schemes. In: Al-Shaer E., Keromytis A.D., Shmatikov V. (eds.) CCS, pp. 121\u2013130. ACM (2010).","DOI":"10.1145\/1866307.1866322"},{"key":"1093_CR70","doi-asserted-by":"crossref","unstructured":"Ge A., Zhang R., Chen C., Ma C., Zhang Z.: Threshold ciphertext policy attribute-based encryption with constant size ciphertexts. In: Susilo W., Mu Y., Seberry J. (eds.) ACISP, LNCS, vol. 7372, pp. 336\u2013349. Springer (2012).","DOI":"10.1007\/978-3-642-31448-3_25"},{"key":"1093_CR71","doi-asserted-by":"crossref","unstructured":"Gorbunov S., Vaikuntanathan V., Wee H.: Attribute-based encryption for circuits. J. ACM 62(6), 45:1\u201345:33 (2015).","DOI":"10.1145\/2824233"},{"key":"1093_CR72","doi-asserted-by":"crossref","unstructured":"Goyal V., Pandey O., Sahai A., Waters B.: Attribute-based encryption for fine-grained access control of encrypted data. In: CCS. ACM (2006).","DOI":"10.1145\/1180405.1180418"},{"key":"1093_CR73","doi-asserted-by":"crossref","unstructured":"Goyal V., Pandey O., Sahai A., Waters B.: Attribute-based encryption for fine-grained access control of encrypted data. Cryptology ePrint Archive, Report 2006\/309 (2006).","DOI":"10.1145\/1180405.1180418"},{"key":"1093_CR74","doi-asserted-by":"crossref","unstructured":"Green M., Ateniese G.: Identity-based proxy re-encryption. In: Katz J., Yung M. (eds.) ACNS, LNCS, vol. 4521, pp. 288\u2013306. Springer (2007).","DOI":"10.1007\/978-3-540-72738-5_19"},{"key":"1093_CR75","unstructured":"Green M., Hohenberger S., Waters B.: Outsourcing the decryption of ABE ciphertexts. In: USENIX Security Symposium. USENIX Association (2011)."},{"key":"1093_CR76","doi-asserted-by":"crossref","unstructured":"Guillevic A.: Comparing the pairing efficiency over composite-order and prime-order elliptic curves. In: Jacobson Jr. M.J., Locasto M.E., Mohassel P., Safavi-Naini R. (eds.) ACNS, LNCS, vol. 7954, pp. 357\u2013372. Springer (2013).","DOI":"10.1007\/978-3-642-38980-1_22"},{"key":"1093_CR77","unstructured":"Guillevic A.: Pairing-friendly curves. https:\/\/members.loria.fr\/AGuillevic\/pairing-friendly-curves\/ (2020)."},{"key":"1093_CR78","doi-asserted-by":"crossref","unstructured":"Guillevic A.: A short-list of pairing-friendly curves resistant to special TNFS at the 128-bit security level. In: PKC, pp. 535\u2013564. Springer (2020).","DOI":"10.1007\/978-3-030-45388-6_19"},{"key":"1093_CR79","unstructured":"Guillevic A., Singh S.: On the alpha value of polynomials in the tower number field sieve algorithm. Cryptology ePrint Archive, Report 2019\/885 (2019)."},{"issue":"5","key":"1093_CR80","doi-asserted-by":"publisher","first-page":"291","DOI":"10.1016\/j.ijmedinf.2007.09.001","volume":"77","author":"K H\u00e4yrinen","year":"2008","unstructured":"H\u00e4yrinen K., Saranto K., Nyk\u00e4nen P.: Definition, structure, content, use and impacts of electronic health records: A review of the research literature. Int. J. Medical Informatics 77(5), 291\u2013304 (2008).","journal-title":"Int. J. Medical Informatics"},{"key":"1093_CR81","doi-asserted-by":"crossref","unstructured":"Herranz J., Laguillaumie F., R\u00e0fols C.: Constant size ciphertexts in threshold attribute-based encryption. In: Nguyen P.Q., Pointcheval D. (eds.) PKC, LNCS, vol. 6056, pp. 19\u201334. Springer (2010).","DOI":"10.1007\/978-3-642-13013-7_2"},{"key":"1093_CR82","unstructured":"Hiller J., McMullen M.S., Chumney W.M., Baumer D.L.: Privacy and security in the implementation of health information technology (electronic health records): U.s. and eu compared. Boston University Journal of Science & Technology Law 17(1), 1\u201339 (2011)."},{"key":"1093_CR83","doi-asserted-by":"crossref","unstructured":"Hohenberger S., Waters B.: Attribute-based encryption with fast decryption. In: Kurosawa K., Hanaoka G. (eds.) PKC, LNCS, vol. 7778, pp. 162\u2013179. Springer (2013).","DOI":"10.1007\/978-3-642-36362-7_11"},{"key":"1093_CR84","doi-asserted-by":"crossref","unstructured":"Hohenberger S., Waters B.: Online\/offline attribute-based encryption. In: PKC, pp. 293\u2013310. Springer (2014).","DOI":"10.1007\/978-3-642-54631-0_17"},{"key":"1093_CR85","unstructured":"Hu C.T., Ferraiolo D.F., Kuhn D.R., Schnitzer A., Sandlin K., Miller R., Scarfone K.: Guide to attribute based access control (ABAC) definition and considerations (2019). https:\/\/tsapps.nist.gov\/publication\/get_pdf.cfm?pub_id=927500"},{"key":"1093_CR86","doi-asserted-by":"crossref","unstructured":"Ibraimi L., Petkovic M., Nikova S., Hartel P.H., Jonker W.: Mediated ciphertext-policy attribute-based encryption and its application. In: Youm H.Y., Yung M. (eds.) WISA, LNCS, vol. 5932, pp. 309\u2013323. Springer (2009).","DOI":"10.1007\/978-3-642-10838-9_23"},{"key":"1093_CR87","doi-asserted-by":"crossref","unstructured":"Kamara S., Lauter K.E.: Cryptographic cloud storage. In: FC, pp. 136\u2013149. Springer (2010).","DOI":"10.1007\/978-3-642-14992-4_13"},{"key":"1093_CR88","doi-asserted-by":"crossref","unstructured":"Katz J., Sahai A., Waters B.: Predicate encryption supporting disjunctions, polynomial equations, and inner products. In: Smart N.P. (ed.) EUROCRYPT, LNCS, vol. 4965, pp. 146\u2013162. Springer (2008).","DOI":"10.1007\/978-3-540-78967-3_9"},{"issue":"2\u20133","key":"1093_CR89","doi-asserted-by":"publisher","first-page":"587","DOI":"10.1007\/s10623-015-0094-2","volume":"77","author":"N Koblitz","year":"2015","unstructured":"Koblitz N., Menezes A.J.: The random oracle model: a twenty-year retrospective. Des. Codes Cryptogr. 77(2\u20133), 587\u2013610 (2015).","journal-title":"Des. Codes Cryptogr."},{"key":"1093_CR90","doi-asserted-by":"crossref","unstructured":"Koppula V., Waters B.: Realizing chosen ciphertext security generically in attribute-based encryption and predicate encryption. In: Boldyreva A., Micciancio D. (eds.) CRYPTO, LNCS, vol. 11693, pp. 671\u2013700. Springer (2019)","DOI":"10.1007\/978-3-030-26951-7_23"},{"key":"1093_CR91","doi-asserted-by":"crossref","unstructured":"Kowalczyk L., Lewko A.B.: Bilinear entropy expansion from the decisional linear assumption. In: Gennaro R., Robshaw M. (eds.) CRYPTO, LNCS, vol. 9216, pp. 524\u2013541. Springer (2015).","DOI":"10.1007\/978-3-662-48000-7_26"},{"key":"1093_CR92","doi-asserted-by":"crossref","unstructured":"Kowalczyk L., Wee H.: Compact adaptively secure ABE for $$\\sf nc^{1}$$ from k-lin. In: EUROCRYPT, pp. 3\u201333. Springer (2019).","DOI":"10.1007\/978-3-030-17653-2_1"},{"key":"1093_CR93","doi-asserted-by":"crossref","unstructured":"Lai J., Tang Q.: Making any attribute-based encryption accountable, efficiently. In: L\u00f3pez J., Zhou J., Soriano M. (eds.) ESORICS, LNCS, vol. 11099, pp. 527\u2013547. Springer (2018).","DOI":"10.1007\/978-3-319-98989-1_26"},{"key":"1093_CR94","doi-asserted-by":"crossref","unstructured":"Leurent G., Nguyen P.Q.: How risky is the random-oracle model? In: Halevi S. (ed.) CRYPTO, Lecture Notes in Computer Science, vol. 5677, pp. 445\u2013464. Springer (2009).","DOI":"10.1007\/978-3-642-03356-8_26"},{"key":"1093_CR95","doi-asserted-by":"crossref","unstructured":"Lewko A., Sahai A., Waters B.: Revocation systems with very small private keys. In: IEEE S & P, pp. 273\u2013285 (2010).","DOI":"10.1109\/SP.2010.23"},{"key":"1093_CR96","doi-asserted-by":"crossref","unstructured":"Lewko A., Waters B.: Decentralizing attribute-based encryption. Cryptology ePrint Archive, Report 2010\/351 (2010).","DOI":"10.1007\/978-3-642-20465-4_31"},{"key":"1093_CR97","doi-asserted-by":"crossref","unstructured":"Lewko A., Waters B.: Decentralizing attribute-based encryption. In: EUROCRYPT, pp. 568\u2013588. Springer (2011).","DOI":"10.1007\/978-3-642-20465-4_31"},{"key":"1093_CR98","doi-asserted-by":"crossref","unstructured":"Lewko A.B.: Tools for simulating features of composite order bilinear groups in the prime order setting. In: Pointcheval D., Johansson T. (eds.) EUROCRYPT, LNCS, vol. 7237, pp. 318\u2013335. Springer (2012).","DOI":"10.1007\/978-3-642-29011-4_20"},{"key":"1093_CR99","doi-asserted-by":"crossref","unstructured":"Lewko A.B., Okamoto T., Sahai A., Takashima K., Waters B.: Fully secure functional encryption: Attribute-based encryption and (hierarchical) inner product encryption. In: EUROCRYPT, pp. 62\u201391. Springer (2010).","DOI":"10.1007\/978-3-642-13190-5_4"},{"key":"1093_CR100","doi-asserted-by":"crossref","unstructured":"Lewko A.B., Waters B.: New techniques for dual system encryption and fully secure HIBE with short ciphertexts. In: Micciancio D. (ed.) TCC, LNCS, vol. 5978, pp. 455\u2013479. Springer (2010).","DOI":"10.1007\/978-3-642-11799-2_27"},{"key":"1093_CR101","doi-asserted-by":"crossref","unstructured":"Lewko A.B., Waters B.: Unbounded HIBE and attribute-based encryption. In: EUROCRYPT, pp. 547\u2013567. Springer (2011).","DOI":"10.1007\/978-3-642-20465-4_30"},{"key":"1093_CR102","doi-asserted-by":"crossref","unstructured":"Lewko A.B., Waters B.: New proof methods for attribute-based encryption: Achieving full security through selective techniques. In: CRYPTO, pp. 180\u2013198. Springer (2012).","DOI":"10.1007\/978-3-642-32009-5_12"},{"key":"1093_CR103","doi-asserted-by":"crossref","unstructured":"Lewko A.B., Waters B.: Why proving HIBE systems secure is difficult. In: Nguyen P.Q., Oswald E. (eds.) EUROCRYPT, LNCS, vol. 8441, pp. 58\u201376. Springer (2014).","DOI":"10.1007\/978-3-642-55220-5_4"},{"key":"1093_CR104","doi-asserted-by":"crossref","unstructured":"Li J., Chen X., Li J., Jia C., Ma J., Lou W.: Fine-grained access control system based on outsourced attribute-based encryption. In: Crampton J., Jajodia S., Mayes K. (eds.) ESORICS, LNCS, vol. 8134, pp. 592\u2013609. Springer (2013).","DOI":"10.1007\/978-3-642-40203-6_33"},{"key":"1093_CR105","doi-asserted-by":"crossref","unstructured":"Li J., Huang Q., Chen X., Chow S.S.M., Wong D.S., Xie D.: Multi-authority ciphertext-policy attribute-based encryption with accountability. In: Cheung B.S.N., Hui L.C.K., Sandhu R.S., Wong D.S. (eds.) ASIACCS, pp. 386\u2013390. ACM (2011).","DOI":"10.1145\/1966913.1966964"},{"key":"1093_CR106","doi-asserted-by":"crossref","unstructured":"Lin H., Cao Z., Liang X., Shao J.: Secure threshold multi authority attribute based encryption without a central authority. In: Chowdhury D.R., Rijmen V., Das A. (eds.) INDOCRYPT, LNCS, vol. 5365, pp. 426\u2013436. Springer (2008).","DOI":"10.1007\/978-3-540-89754-5_33"},{"key":"1093_CR107","doi-asserted-by":"crossref","unstructured":"Lin H., Luo J.: Compact adaptively secure ABE from k-lin: Beyond nc$${}^{\\text{1}}$$ and towards NL. In: EUROCRYPT, pp. 247\u2013277. Springer (2020).","DOI":"10.1007\/978-3-030-45727-3_9"},{"key":"1093_CR108","doi-asserted-by":"crossref","unstructured":"Lin H., Luo J.: Succinct and adaptively secure ABE for ABP from k-lin. In: Moriai S., Wang H. (eds.) ASIACRYPT, LNCS, vol. 12493, pp. 437\u2013466. Springer (2020).","DOI":"10.1007\/978-3-030-64840-4_15"},{"key":"1093_CR109","doi-asserted-by":"crossref","unstructured":"Liu J.K., Yuen T.H., Zhang P., Liang K.: Time-based direct revocable ciphertext-policy attribute-based encryption with short revocation list. In: Preneel B., Vercauteren F. (eds.) ACNS, LNCS, vol. 10892, pp. 516\u2013534. Springer (2018).","DOI":"10.1007\/978-3-319-93387-0_27"},{"key":"1093_CR110","doi-asserted-by":"crossref","unstructured":"Liu Z., Cao Z., Huang Q., Wong D.S., Yuen T.H.: Fully secure multi-authority ciphertext-policy attribute-based encryption without random oracles. In: Atluri V., D\u00edaz C. (eds.) ESORICS, LNCS, vol. 6879, pp. 278\u2013297. Springer (2011).","DOI":"10.1007\/978-3-642-23822-2_16"},{"key":"1093_CR111","doi-asserted-by":"crossref","unstructured":"Liu Z., Cao Z., Wong D.S.: Blackbox traceable CP-ABE: how to catch people leaking their keys by selling decryption devices on ebay. In: Sadeghi A., Gligor V.D., Yung M. (eds.) CCS, pp. 475\u2013486. ACM (2013).","DOI":"10.1145\/2508859.2516683"},{"key":"1093_CR112","doi-asserted-by":"crossref","unstructured":"Liu Z., Wong D.S.: Practical ciphertext-policy attribute-based encryption: Traitor tracing, revocation, and large universe. In: Malkin T., Kolesnikov V., Lewko A.B., Polychronakis M. (eds.) ACNS, LNCS, vol. 9092, pp. 127\u2013146. Springer (2015).","DOI":"10.1007\/978-3-319-28166-7_7"},{"key":"1093_CR113","unstructured":"Lynn B.: The stanford pairing based crypto library. http:\/\/crypto.stanford.edu\/pbc"},{"key":"1093_CR114","doi-asserted-by":"crossref","unstructured":"Malek S., Mikic-Rakic M., Medvidovic N.: A decentralized redeployment algorithm for improving the availability of distributed systems. In: Dearle A., Eisenbach S. (eds.) Component Deployment, Lecture Notes in Computer Science, vol. 3798, pp. 99\u2013114. Springer (2005).","DOI":"10.1007\/11590712_8"},{"key":"1093_CR115","doi-asserted-by":"crossref","unstructured":"Michalevsky Y., Joye M.: Decentralized policy-hiding ABE with receiver privacy. In: L\u00f3pez J., Zhou J., Soriano M. (eds.) ESORICS, LNCS, vol. 11099, pp. 548\u2013567. Springer (2018).","DOI":"10.1007\/978-3-319-98989-1_27"},{"key":"1093_CR116","doi-asserted-by":"crossref","unstructured":"M\u00f6ller B.: Algorithms for multi-exponentiation. In: SAC, pp. 165\u2013180. Springer (2001).","DOI":"10.1007\/3-540-45537-X_13"},{"key":"1093_CR117","doi-asserted-by":"crossref","unstructured":"M\u00fcller S., Katzenbeisser S., Eckert C.: Distributed attribute-based encryption. In: Lee P.J., Cheon J.H. (eds.) ICISC, LNCS, vol. 5461, pp. 20\u201336. Springer (2008).","DOI":"10.1007\/978-3-642-00730-9_2"},{"key":"1093_CR118","doi-asserted-by":"crossref","unstructured":"Narayanan A., Shmatikov V.: Robust de-anonymization of large sparse datasets. In: S & P, pp. 111\u2013125. IEEE Computer Society (2008).","DOI":"10.1109\/SP.2008.33"},{"key":"1093_CR119","doi-asserted-by":"crossref","unstructured":"Nishide T., Yoneyama K., Ohta K.: Attribute-based encryption with partially hidden encryptor-specified access structures. In: Bellovin S.M., Gennaro R., Keromytis A.D., Yung M. (eds.) ACNS, LNCS, vol. 5037, pp. 111\u2013129 (2008).","DOI":"10.1007\/978-3-540-68914-0_7"},{"key":"1093_CR120","unstructured":"of\u00a0European\u00a0Union C.: Regulation (eu) 2016\/679 of the european parliament and of the council. https:\/\/eur-lex.europa.eu\/eli\/reg\/2016\/679\/oj (2016)."},{"key":"1093_CR121","doi-asserted-by":"crossref","unstructured":"Okamoto T., Takashima K.: Fully secure functional encryption with general relations from the decisional linear assumption. In: Rabin T. (ed.) CRYPTO, LNCS, vol. 6223, pp. 191\u2013208. Springer (2010).","DOI":"10.1007\/978-3-642-14623-7_11"},{"key":"1093_CR122","doi-asserted-by":"crossref","unstructured":"Okamoto T., Takashima K.: Fully secure unbounded inner-product and attribute-based encryption. In: ASIACRYPT, pp. 349\u2013366. Springer (2012).","DOI":"10.1007\/978-3-642-34961-4_22"},{"key":"1093_CR123","doi-asserted-by":"crossref","unstructured":"Okamoto T., Takashima K.: Decentralized attribute-based signatures. In: Kurosawa K., Hanaoka G. (eds.) PKC, LNCS, vol. 7778, pp. 125\u2013142. Springer (2013).","DOI":"10.1007\/978-3-642-36362-7_9"},{"key":"1093_CR124","doi-asserted-by":"crossref","unstructured":"Ostrovsky R., Sahai A., Waters B.: Attribute-based encryption with non-monotonic access structures. In: CCS, pp. 195\u2013203. ACM (2007).","DOI":"10.1145\/1315245.1315270"},{"issue":"3","key":"1093_CR125","doi-asserted-by":"publisher","first-page":"57","DOI":"10.1016\/S1363-4127(03)00308-X","volume":"8","author":"KG Paterson","year":"2003","unstructured":"Paterson K.G., Price G.: A comparison between traditional public key infrastructures and identity-based cryptography. Inf. Secur. Tech. Rep. 8(3), 57\u201372 (2003).","journal-title":"Inf. Secur. Tech. Rep."},{"issue":"5","key":"1093_CR126","doi-asserted-by":"publisher","first-page":"799","DOI":"10.3233\/JCS-2009-0383","volume":"18","author":"M Pirretti","year":"2010","unstructured":"Pirretti M., Traynor P., McDaniel P.D., Waters B.: Secure attribute-based systems. J. Comput. Secur. 18(5), 799\u2013837 (2010).","journal-title":"J. Comput. Secur."},{"key":"1093_CR127","doi-asserted-by":"crossref","unstructured":"Rackoff C., Simon D.R.: Non-interactive zero-knowledge proof of knowledge and chosen ciphertext attack. In: Feigenbaum J. (ed.) CRYPTO, LNCS, vol. 576, pp. 433\u2013444. Springer (1991).","DOI":"10.1007\/3-540-46766-1_35"},{"key":"1093_CR128","doi-asserted-by":"crossref","unstructured":"Rao Y.S., Dutta R.: Decentralized ciphertext-policy attribute-based encryption scheme with fast decryption. In: Decker B.D., Dittmann J., Kraetzer C., Vielhauer C. (eds.) CMS, LNCS, vol. 8099, pp. 66\u201381. Springer (2013).","DOI":"10.1007\/978-3-642-40779-6_5"},{"key":"1093_CR129","doi-asserted-by":"crossref","unstructured":"Rogaway P., Shrimpton T.: Cryptographic hash-function basics: Definitions, implications, and separations for preimage resistance, second-preimage resistance, and collision resistance. In: Roy B.K., Meier W. (eds.) FSE, LNCS, vol. 3017, pp. 371\u2013388. Springer (2004).","DOI":"10.1007\/978-3-540-25937-4_24"},{"key":"1093_CR130","doi-asserted-by":"crossref","unstructured":"Rouselakis Y., Waters B.: Practical constructions and new proof methods for large universe attribute-based encryption. In: CCS, pp. 463\u2013474. ACM (2013).","DOI":"10.1145\/2508859.2516672"},{"key":"1093_CR131","doi-asserted-by":"crossref","unstructured":"Rouselakis Y., Waters B.: Efficient statically-secure large-universe multi-authority attribute-based encryption. In: B\u00f6hme R., Okamoto T. (eds.) FC, LNCS, vol. 8975, pp. 315\u2013332. Springer (2015).","DOI":"10.1007\/978-3-662-47854-7_19"},{"key":"1093_CR132","doi-asserted-by":"crossref","unstructured":"Sahai A., Seyalioglu H., Waters B.: Dynamic credentials and ciphertext delegation for attribute-based encryption. In: CRYPTO, pp. 199\u2013217. Springer (2012).","DOI":"10.1007\/978-3-642-32009-5_13"},{"key":"1093_CR133","doi-asserted-by":"crossref","unstructured":"Sahai A., Waters B.: Fuzzy identity-based encryption. In: EUROCRYPT, pp. 457\u2013473. Springer (2005).","DOI":"10.1007\/11426639_27"},{"issue":"2","key":"1093_CR134","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"RS Sandhu","year":"1996","unstructured":"Sandhu R.S., Coyne E.J., Feinstein H.L., Youman C.E.: Role-based access control models. Computer 29(2), 38\u201347 (1996).","journal-title":"Computer"},{"issue":"9","key":"1093_CR135","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1109\/35.312842","volume":"32","author":"RS Sandhu","year":"1994","unstructured":"Sandhu R.S., Samarati P.: Access control: principles and practice. IEEE Commun. Mag. 32(9), 40\u201348 (1994).","journal-title":"IEEE Commun. Mag."},{"key":"1093_CR136","unstructured":"Santos N., Rodrigues R., Gummadi K.P., Saroiu S.: Policy-sealed data: A new abstraction for building trusted cloud services. In: USENIX Security Symposium, pp. 175\u2013188. USENIX Association (2012)."},{"issue":"11","key":"1093_CR137","doi-asserted-by":"publisher","first-page":"612","DOI":"10.1145\/359168.359176","volume":"22","author":"A Shamir","year":"1979","unstructured":"Shamir A.: How to share a secret. Commun. ACM 22(11), 612\u2013613 (1979).","journal-title":"Commun. ACM"},{"key":"1093_CR138","doi-asserted-by":"crossref","unstructured":"Shoup V.: Lower bounds for discrete logarithms and related problems. In: Fumy W. (ed.) EUROCRYPT, LNCS, vol. 1233, pp. 256\u2013266. Springer (1997).","DOI":"10.1007\/3-540-69053-0_18"},{"issue":"2\u20133","key":"1093_CR139","doi-asserted-by":"publisher","first-page":"98","DOI":"10.1111\/j.1748-720X.1997.tb01885.x","volume":"25","author":"L Sweeney","year":"1997","unstructured":"Sweeney L.: Weaving technology and policy together to maintain confidentiality. The Journal of Law, Medicine & Ethics 25(2\u20133), 98\u2013110 (1997).","journal-title":"The Journal of Law, Medicine & Ethics"},{"key":"1093_CR140","doi-asserted-by":"crossref","unstructured":"Takashima K.: Expressive attribute-based encryption with constant-size ciphertexts from the decisional linear assumption. In: SCN, pp. 298\u2013317. Springer (2014).","DOI":"10.1007\/978-3-319-10879-7_17"},{"key":"1093_CR141","doi-asserted-by":"crossref","unstructured":"Tomida J., Kawahara Y., Nishimaki R.: Fast, compact, and expressive attribute-based encryption. In: PKC, pp. 3\u201333. Springer (2020).","DOI":"10.1007\/978-3-030-45374-9_1"},{"key":"1093_CR142","doi-asserted-by":"crossref","unstructured":"Venema M., Alp\u00e1r G.: A bunch of broken schemes: A simple yet powerful linear approach to analyzing security of attribute-based encryption. In: Paterson K.G. (ed.) CT-RSA, LNCS, vol. 12704, pp. 100\u2013125. Springer (2021).","DOI":"10.1007\/978-3-030-75539-3_5"},{"key":"1093_CR143","unstructured":"Waters B.: Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization. Cryptology ePrint Archive, Report 2008\/290 (2008)."},{"key":"1093_CR144","doi-asserted-by":"crossref","unstructured":"Waters B.: Dual system encryption: Realizing fully secure IBE and HIBE under simple assumptions. In: Halevi S. (ed.) CRYPTO, LNCS, vol. 5677, pp. 619\u2013636. Springer (2009).","DOI":"10.1007\/978-3-642-03356-8_36"},{"key":"1093_CR145","doi-asserted-by":"crossref","unstructured":"Waters B.: Ciphertext-policy attribute-based encryption - an expressive, efficient, and provably secure realization. In: PKC, pp. 53\u201370. Springer (2011).","DOI":"10.1007\/978-3-642-19379-8_4"},{"key":"1093_CR146","doi-asserted-by":"crossref","unstructured":"Wee H.: Dual system encryption via predicate encodings. In: TCC, pp. 616\u2013637. Springer (2014).","DOI":"10.1007\/978-3-642-54242-8_26"},{"key":"1093_CR147","doi-asserted-by":"crossref","unstructured":"Yamada S., Attrapadung N., Hanaoka G., Kunihiro N.: Generic constructions for chosen-ciphertext secure attribute based encryption. In: Catalano D., Fazio N., Gennaro R., Nicolosi A. (eds.) PKC, LNCS, vol. 6571, pp. 71\u201389. Springer (2011).","DOI":"10.1007\/978-3-642-19379-8_5"},{"key":"1093_CR148","doi-asserted-by":"crossref","unstructured":"Yamada S., Attrapadung N., Hanaoka G., Kunihiro N.: A framework and compact constructions for non-monotonic attribute-based encryption. In: PKC, pp. 275\u2013292. Springer (2014).","DOI":"10.1007\/978-3-642-54631-0_16"},{"key":"1093_CR149","doi-asserted-by":"crossref","unstructured":"Yu S., Wang C., Ren K., Lou W.: Attribute based data sharing with attribute revocation. In: Feng D., Basin D.A., Liu P. (eds.) ASIACCS, pp. 261\u2013270. ACM (2010).","DOI":"10.1145\/1755688.1755720"},{"key":"1093_CR150","unstructured":"Zeutro: The openabe library - open source cryptographic library with attribute-based encryption implementations in c\/c++. https:\/\/github.com\/zeutro\/openabe"},{"key":"1093_CR151","doi-asserted-by":"crossref","unstructured":"Zhang K., Gong J., Tang S., Chen J., Li X., Qian H., Cao Z.: Practical and efficient attribute-based encryption with constant-size ciphertexts in outsourced verifiable computation. In: Chen X., Wang X., Huang X. (eds.) ASIACCS, pp. 269\u2013279. ACM (2016).","DOI":"10.1145\/2897845.2897858"}],"container-title":["Designs, Codes and Cryptography"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10623-022-01093-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10623-022-01093-5\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10623-022-01093-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,3]],"date-time":"2024-10-03T09:21:26Z","timestamp":1727947286000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10623-022-01093-5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,9,6]]},"references-count":151,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2023,1]]}},"alternative-id":["1093"],"URL":"https:\/\/doi.org\/10.1007\/s10623-022-01093-5","relation":{},"ISSN":["0925-1022","1573-7586"],"issn-type":[{"value":"0925-1022","type":"print"},{"value":"1573-7586","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,9,6]]},"assertion":[{"value":"13 September 2021","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"21 March 2022","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"16 July 2022","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"6 September 2022","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}