Paper 2025/364
Traitor Tracing in Multi-sender Setting ($\textsf{TMCFE}$: Traceable Multi-client Functional Encryption)
, Institute of Cryptography Science and Technology, Vietnam, Vietnam National University, Hanoi, Vietnam, DIENS, École normale supérieure, CNRS, Inria, PSL University, Paris, France, LTCI, Telecom Paris, Institut Polytechnique de Paris, France, De Vinci Higher Education, De Vinci Research Center, Paris, FranceAbstract
Traitor tracing is a traditional cryptographic primitive designed for scenarios with multiple legitimate receivers. When the plaintext - that is, the output of decryption - is leaked and more than one legitimate receiver exists, it becomes imperative to identify the source of the leakage, a need that has motivated the development of traitor tracing techniques. Recent advances in standard encryption have enabled decryption outcomes to be defined in a fine-grained manner through the introduction of Functional Encryption (FE). Constructing FE schemes is intriguing, and achieving the tracing property adds an additional layer of complexity. Traitor tracing techniques have been actively developed for more than three decades, yet they have always remained within the same framework - a single sender responsible for encrypting all the data. However, fine-grained decryption is particularly useful when data originates from multiple sources, allowing for joint computation on personal data. This leads to the concept of multi-client functional encryption (MCFE), where multiple concurrent senders independently encrypt their data while agreeing on the decryption of a specific function (e.g., a statistical measure) computed on the aggregated data, without revealing any additional information. In the era of cloud computing and big data, privacy-preserving joint computation is crucial, and tracing the source of any breach by dishonest participants becomes essential. Thus, in this paper we take the first step toward addressing the tracing problem in the general context of joint computation with multiple senders. Our contributions are twofold: - $\textbf{Conceptually:}$ We propose the first tracing model in the context of multi-sender encryption, namely $\textit{Traceable Multi-Client Functional Encryption}$ ($\textsf{TMCFE}$), which allows a pirate to extract secret information from both receivers and senders. Our model supports strong and naturally admissible decoders, removing artificial restrictions on the pirate decoder and thus addressing the shortcomings of existing traceable functional encryption schemes designed for the single-sender setting. - $\textbf{Technically:}$ To achieve our conceptual objective, we build upon the recently introduced notion of strong admissibility for MCFE. Our main technical contribution is a generic compiler that transforms a large class of MCFE schemes with weak admissibility into schemes with strong admissibility. This compiler not only helps overcome existing challenges but may also be of general interest within the functional encryption domain. Finally, we present a concrete lattice-based scheme $\textsf{TMCFE}$ for inner-product functionalities that achieves post-quantum security under standard assumptions.
Metadata
- Available format(s)
-
PDF
- Category
- Cryptographic protocols
- Publication info
- Preprint.
- Keywords
- Functional EncryptionTraitor TracingSecurity Notions
- Contact author(s)
-
thanhkhtn @ gmail com
macdangtruong258 @ gmail com
ky nguyen @ ens fr
hieu phan @ telecom-paris fr
quoc huy vu @ ens fr - History
- 2025-03-04: approved
- 2025-02-26: received
- See all versions
- Short URL
- https://ia.cr/2025/364
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2025/364,
author = {Xuan Thanh Do and Dang Truong Mac and Ky Nguyen and Duong Hieu Phan and Quoc-Huy Vu},
title = {Traitor Tracing in Multi-sender Setting ($\textsf{{TMCFE}}$: Traceable Multi-client Functional Encryption)},
howpublished = {Cryptology {ePrint} Archive, Paper 2025/364},
year = {2025},
url = {https://eprint.iacr.org/2025/364}
}
