In a Broadcast Encryption System, a sender sends an encrypted message to a large set of receivers at once over an insecure channel and it enables only users in a target set to decrypt the message with their private keys. In 2005, Boneh et al. proposed...
In a Broadcast Encryption System, a sender sends an encrypted message to a large set of receivers at once over an insecure channel and it enables only users in a target set to decrypt the message with their private keys. In 2005, Boneh et al. proposed a fully collusion-resistant public key broadcast encryption system in which the ciphertext and the privatekey sizes are constant. In general, pairing-based broadcast encryption systems are more efficient in bandwidth and storing aspects than non-pairing based broadcast encryption systems, however, they require many computational costs that resource-constrained devices are not suitable to be applied. In this paper, we propose a broadcast encryption scheme that user can decrypt a ciphertext more efficiently. The scheme is based on Boneh et al.’s scheme. More precisely, it reduces receiver’s computational costs by delegating pairing computations and other computation where O(n) size public key are used to. Furthermore, the scheme enables a user to check if the proxy server compute correctly. We show that our scheme is secure against selective IND-RCCA adversaries under the n-BDHE assumption.