I am trying to find a method of implementing identity based cryptography to generate key pairs without the use of a trusted PKG that holds the private keys. Has there been any solutions to overcoming this challenge?
Asked
Active
Viewed 235 times
1 Answers
2
It's not possible to completely get rid of the PKG, but one can limit the amount of trust on a (single) PKG through distributed key generation --- see BF01,§6. On the other hand, one could hold the PKG accountable in case it behaves malicously --- see Goy07.
ckamath
- 5,188
- 2
- 21
- 41
-
I guess your first link should point here: https://crypto.stanford.edu/~dabo/papers/bfibe.pdf – Christian Matt Apr 04 '17 at 21:00