Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add partial coordinates #122

Open
wants to merge 152 commits into
base: develop
Choose a base branch
from
Open

Add partial coordinates #122

wants to merge 152 commits into from

Conversation

tbrezot
Copy link
Collaborator

@tbrezot tbrezot commented Jan 16, 2024
edited
Loading

Partial coordinates allow ciphertexts created with an access policy "D1::A" not to be invalidated upon addition or deletion of another dimension/attribute.

The number of coordinate derived from the policy ("universe") is the product of the cardinal of the dimensions, plus one:

$$\prod_{dim}(|dim| + 1)$$

Breaking changes

  1. The master keys hold the coordinates of all the subspaces.
  2. The user keys hold the coordinates of the semantic subspace of their associated access policy. A semantic subspace is defined as the envelop of the points of the conjunctions defined by the DNF of the associated policy. In other words, this is the smallest valid subspace in which the access policy can be expressed.
  3. Re-keying and pruning are performed using the semantic subspaces (so as to allow easily re-keying all coordinates associated to a leaked user key).
  4. Encapsulations are created for all the points defined by the conjunctions in the DNF of the associated access policy. This means that "D1::A && (D2::A || D2::B)" <=> "D1::A && D2::A || D1::A && D2::B" generates two coordinates and the access policy "" generates one coordinate (the 0 of the universe), which allow for an efficient broadcast.

Work in progress

  • ensure adding and deleting other dimensions or attributes does not invalidate any ciphertext/user key which associated access policy leaves in a different subspace.
  • validate the creation of user key and re-keying/prunning per semantic space

@tbrezot tbrezot requested review from Manuthor and ackRow and removed request for Manuthor January 16, 2024 18:42
@tbrezot tbrezot marked this pull request as draft January 16, 2024 18:42
@tbrezot tbrezot marked this pull request as ready for review January 26, 2024 15:54
@tbrezot tbrezot mentioned this pull request Jan 26, 2024
Merged
2 tasks
ackRow
ackRow reviewed Feb 5, 2024
View reviewed changes
Copy link
Contributor

@ackRow ackRow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice refacto!

src/abe_policy/access_policy.rs Outdated Show resolved Hide resolved
src/abe_policy/dimension.rs Show resolved Hide resolved
Manuthor
Manuthor reviewed Feb 6, 2024
View reviewed changes
Copy link
Contributor

@Manuthor Manuthor left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

great job!
I suppose you will complete this PR with benches and the last item of you WIP list.
Otherwise, all good to me.

src/abe_policy/access_policy.rs Show resolved Hide resolved
@tbrezot tbrezot mentioned this pull request Mar 4, 2024
Merged
tbrezot and others added 10 commits March 18, 2024 14:32
@tbrezot
feat: add partial coordinates
343e1f1
@tbrezot
fix: cargo test --all-features
4ef2054 
- remove benches (see `fix/benches`)
- remove `serialization` feature to fix tests that depend on it.
@tbrezot
fix: access policy parsing
496642d 
Simplify parsing code and correct parsing errors. Notice that now, empty
access policies can be parsed. Parsing should be more efficient too, but
we lack benchmarks for that.

The only downside is that allowing '&' or '|' inside attributes is
painful to write. I consider it an acceptable limitation to the
expressivness allowed by the parsing operation.

This is a breaking change though. All "Department::R&D" attributes have
been renamed into "Department::RD".
@tbrezot
fix: access policy parsing
78e6351
@tbrezot
rename!: rename from_boolean_expression into parse
b5aefe6
@tbrezot
fix: neats
1dee2fc
@tbrezot
fix: use mem::take instead of RefCell to refresh UserSecretKey (#…
32366ee 
…124)

feat: add partial coordinates

fix: cargo test --all-features

- remove benches (see `fix/benches`)
- remove `serialization` feature to fix tests that depend on it.

fix: access policy parsing

Simplify parsing code and correct parsing errors. Notice that now, empty
access policies can be parsed. Parsing should be more efficient too, but
we lack benchmarks for that.

The only downside is that allowing '&' or '|' inside attributes is
painful to write. I consider it an acceptable limitation to the
expressivness allowed by the parsing operation.

This is a breaking change though. All "Department::R&D" attributes have
been renamed into "Department::RD".

fix: access policy parsing

rename!: rename `from_boolean_expression` into `parse`

fix: neats
@tbrezot
fix: review
182bb1b
@tbrezot
fix: remove benchmarks
0f08eef 
Work done in `feat/partial_coordinates` breaks the current benchmarks.
Later MR will reintroduce new benchmarks compatible with the new inner workings
of the key derivation.
@tbrezot
fix: rename Partition into Coordinate
5275698
tbrezot and others added 3 commits March 18, 2024 15:11
@tbrezot
wip: feat: refactor key structure
89139f9 
wip: feat: merge msk/mpk

removing buggy benches

fix: `crypto_core` dependency link

fix: cleanup remaining mention of Curve25519 in `primitives.rs`

fix: tests encaps/decaps

fix: serialization

fix: rebase

fix: rename ElGamal encryption to masking primitives

fix: review

Rename `chronological_iter` back to `bfs`
todo : refactoring API. Just declared KEM and PKE traits
aeb481d
@tbrezot
fix: cleanup
cafa459
@tbrezot tbrezot requested a review from Adamk93 March 22, 2024 08:13
Adamk93
Adamk93 previously approved these changes Mar 24, 2024
View reviewed changes
Copy link

@Adamk93 Adamk93 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't have real comments on this PR

tbrezot and others added 30 commits October 28, 2024 15:36
@tbrezot @phochard
Check all subkeys are of the same hybridation type upon encapsulating
a1142c0
@tbrezot @phochard
use Kyber CCA
f5c5bdc
@tbrezot @phochard
use pqc_kyber without hazmat feature
85e7465
@tbrezot @phochard
use instead of recoding it
022d18e
@tbrezot @phochard
remove the eakem_hash! macro
80ed204
@tbrezot @phochard
Use released CryptoCore version
3b9293a
@phochard
include policy in mpk and msk structs
b28d2e3
@phochard
update functions parameters
2464ae1
@phochard
implement read for policy
715d9ce
@phochard
implement read for policy
da1df51
@phochard
rebase on partial_coordinates branch
e7f1d30
@phochard
fix some errors after rebase
ae73e47
@phochard
try to pass tests
415439b
@phochard
try to pass tests
018aa00
@phochard
try to pass tests
cf2459e
@phochard
try to pass tests
0301098
@phochard
add new line at the end of rs file
750404e
@phochard
Merge branch 'feat/partial_coordinates' into merge_policy_object
9e24cb7
@phochard
try to pass tests
8d4131c
@phochard
try to pass tests
72de55c
@phochard
use Theophile fix
535e727
@phochard @tbrezot
Update src/abe_policy/attribute.rs
f7fb1f6 
Co-authored-by: Théophile BRÉZOT <theophile.brezot@cosmian.com>
@phochard @tbrezot
Update src/core/serialization/mod.rs
33e6ee1 
Co-authored-by: Théophile BRÉZOT <theophile.brezot@cosmian.com>
@phochard @tbrezot
Update src/test_utils/non_regression.rs
6e582e3 
Co-authored-by: Théophile BRÉZOT <theophile.brezot@cosmian.com>
@phochard
pr review
8861353
@phochard
cargot fmt
64fa10e
@phochard
cargo fmt
f3f5efa
@phochard
cargo fmt
3a77352
@phochard
cargo fmt
6371a65
@phochard
Merge pull request #137 from Cosmian/merge_policy_object
b91c99d 
Merge policy object
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Manuthor Manuthor Manuthor left review comments

@ackRow ackRow ackRow left review comments

@Adamk93 Adamk93 Adamk93 left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@tbrezot @Adamk93 @ackRow @Manuthor @phochard