查看文章

Proxy re-encryption is a cryptographic primitive used to transform a ciphertext under one public key such that it becomes a ciphertext under another public key using a re-encryption key. Proxy invisibility is a desirable property of a proxy re-encryption scheme. This requires the ciphertexts directly intended for a recipient be indistinguishable from those re-encrypted for the same recipient. However, there may arise a situation where direct and re-encrypted ciphertexts need to be processed differently by a recipient. In such cases, it should be verifiable without decryption whether the ciphertext received is a direct or a re-encrypted ciphertext. Towards this, we design a proxy re-encryption scheme which relaxes the proxy invisibility property. With the proposed scheme, it is possible to publicly verify whether a given ciphertext is direct or re-encrypted for a particular user. This public verification does not fail even if anyone …