0Pricing
Cryptology Academy · Lesson

Key-Policy ABE (KP-ABE) and Comparison

Compare KP-ABE (policy in the key) vs CP-ABE and understand the cryptographic constructions behind each.

KP-ABE Defined

In Key-Policy Attribute-Based Encryption (KP-ABE), the access policy is embedded in the user's secret key by the key authority, while ciphertexts carry sets of attributes. Decryption succeeds when the ciphertext's attribute set satisfies the policy encoded in the user's key. The authority grants decryption capabilities by choosing which policy each user's key embeds.

Goyal et al. KP-ABE (2006)

The foundational KP-ABE construction was presented by Goyal, Pandey, Sahai, and Waters in 2006. Their construction uses access trees where leaves are attributes and internal nodes are threshold gates. The key authority converts the access tree into a linear secret sharing scheme and encodes shares of the master secret into the user's key. Encryption is simple: choose a random secret y and distribute shares to each attribute in the ciphertext.

All lessons in this course

  1. Beyond Public-Key: Functional Encryption
  2. Ciphertext-Policy ABE (CP-ABE)
  3. Key-Policy ABE (KP-ABE) and Comparison
  4. Practical Applications of ABE
← Back to Cryptology Academy