Hybrid Encryption with Certified Deletion in Preprocessing Model
Kunal Dey, Reihaneh Safavi-Naini
TL;DR
The paper addresses the challenge of certifying data deletion when outsourcing to a remote party, leveraging quantum no-cloning to enable verifiable deletion. It introduces pHE-CD, a hybrid encryption in the preprocessing model that combines an information-theoretic iKEM with a DEM-CD to provide encryption plus certified deletion, yielding either information-theoretic or everlasting deletion security. It presents two constructions: Construction 1 achieves information-theoretic deletion using BI-based SKE-CD, while Construction 2 achieves everlasting deletion with a quantum-safe, computationally secure DEM-CD that uses a constant-length key; a composition theorem links the security of the components to overall pHE-CD security. The framework supports encryption of arbitrarily long messages and suggests future work on integrating quantum-enabled KEMs (qKEM) to further enhance security against evolving quantum attacks.
Abstract
Certified deletion allows Alice to outsource data to Bob and, at a later time, obtain a verifiable guarantee that the file has been irreversibly deleted at her request. The functionality, while impossible using classical information alone, can be achieved using quantum information. Existing approaches, rely on one-time pad (OTP) encryption, or use computational hardness assumptions that may be vulnerable to future advances in classical or quantum computing. In this work, we introduce and formalize hybrid encryption with certified deletion in the preprocessing model (pHE-CD) and propose two constructions. The constructions combine an information-theoretic key encapsulation mechanism (iKEM) with a data encapsulation mechanism that provides certified deletion (DEM-CD) and, respectively, provide {\em information-theoretic certified deletion}, where both confidentiality and deletion properties are provided against a computationally unbounded adversary; and {\em everlasting certified deletion}, where confidentiality is computational before deletion, and upon successful verification of the deletion certificate, the message becomes information-theoretically hidden from an adversary that is computationally unbounded. Our pHE-CD schemes provide IND-$q_e$-CPA notion of security and support encryption of arbitrarily long messages. In the second construction, using a computationally secure DEM-CD that is quantum-safe (i.e. constructed using quantum coding and AES), we obtain quantum-safe security with keys that are significantly shorter than the message. Instantiating the proposed framework using quantum enabled kem (qKEM) as the iKEM, is a future work.
