Identity-based encryption with equality test and datestamp-based authorization mechanism

Abstract Due to the advancement of cloud computing, public key encryption with equality test has become a hot topic in the cryptography community. The notion was extended to the identity-based setting to obtain a new primitive, called identity-based encryption with equality test (IBEET). To the best of our knowledge, there are two categories of authorization mechanisms for IBEET: ciphertext-specified authorization and user-specified authorization. However, these authorizations are not applicable for some scenarios. Motivated by this, we propose in this paper a new primitive, called identity-based encryption with equality test and datestamp-based authorization mechanism (IBEET-DBA). In the primitive, the data owner can control the validity of trapdoor by embedding datestamp into it. The cloud server can only obtain the correct equivalence results on the ciphertexts which are generated within the valid period of trapdoor. In this paper, we formally define this primitive and its security notion. Moreover, we propose the first IBEET-DBA scheme and prove its security.