Abstract
The notion of aggregator oblivious (AO) security for privacy preserving data aggregation was formalized with a specific construction of AO-secure blinding technique over a cyclic group by Shi et al. Some of proposals of data aggregation protocols use the blinding technique of Shi et al. for BGN cryptosystem, an additive homomorphic encryption. Previously, there have been some security analysis on some of BGN based data aggregation protocols in the context of integrity or authenticity of data. Even with such security analysis, the BGN cryptosystem has been a popular building block of privacy preserving data aggregation protocol. In this paper, we study the privacy issues in the blinding technique of Shi et al. used for BGN cryptosystem. We show that the blinding techniques for the BGN cryptosystem used in several protocols are not privacy preserving against the recipient, the decryptor. Our analysis is based on the fact that the BGN cryptosystem uses a pairing e : G × G → GT and the existence of the pairing makes the DDH problem on G easy to solve. We also suggest how to prevent such privacy leakage in the blinding technique of Shi et al. used for BGN cryptosystem.
Original language | English |
---|---|
Pages (from-to) | 91-101 |
Number of pages | 11 |
Journal | Fundamenta Informaticae |
Volume | 188 |
Issue number | 2 |
DOIs | |
State | Published - 2023 |
Bibliographical note
Funding Information:Acknowledgments Hyang-Sook Lee was supported by the National Research Foundation of Korea (NRF) grant funded by the Korea government (MSIT) (Grant No. 2021R1A2C1094821) and partially supported by the Basic Science Research Program through the NRF funded by the Ministry of Education (Grant No. 2019R1A6A1A11051177). Seongan Lim was supported by the National Research Foundation of Korea (NRF) grant funded by the Korea government(Grant No. 2016R1D1A1B01008562). Aaram Yun was supported by the National Research Foundation of Korea (NRF) funded by the Ministry of Education (Grant No. 2019R1A6A1A11051177).
Publisher Copyright:
© 2022 - IOS Press. All rights reserved.
Keywords
- BGN cryptosystem
- additive homomorphic encryption
- data aggregation protocol