I've found the following encryption scheme
UserA: $$sk_A, pk_A = sk_A \cdot G$$
UserB: $$sk_B, pk_B = sk_B \cdot G$$
Enc: UserA
$$u \in \mathbb{Z}_q^* \\ Y = u \cdot pk_B \\ S = H(U) \oplus m \\ C = (S, Y)$$
Dec: UserB
$$Y \cdot sk_B^{-1} = u \cdot pk_B \cdot sk_B^{-1} = u \cdot sk_B \cdot G \cdot sk_B^{-1} = u \cdot G = U \\ m = H(U) \oplus S$$
Who proposed this encryption method? I saw the application of this encryption in the paper "Blockchain-Based Lightweight Message Authentication for Edge-Assisted Cross-Domain Industrial Internet of Things", but couldn't find the source. I would like to know the cryptanalysis of this encryption scheme.
