Generalized Non-Interactive Oblivious Transfer Using Count-Limited Objects with Applications to Secure Mobile Agents

Gunupudi, Vandana; Tate, Stephen R.

doi:10.1007/978-3-540-85230-8_8

Cited by 14 publications

(21 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Our approach is in the opposite direction: removing all interaction (other than transfer of the device) from the protocol. (c) Prior to OTP being proposed, Gunupudi and Tate [21] proposed count-limited private key usage for realizing non-interactive oblivious transfer using a TPM. Their so-lution requires changes in the TPM design (due to lack of a TEE).…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

One-Time Programs Made Practical

Zhao

Choi

Demirag

et al. 2019

Financial Cryptography and Data Security

View full text Add to dashboard Cite

A one-time program (OTP) works as follows: Alice provides Bob with the implementation of some function. Bob can have the function evaluated exclusively on a single input of his choosing. Once executed, the program will fail to evaluate on any other input. State-of-the-art one-time programs have remained theoretical, requiring custom hardware that is cost-ineffective/unavailable, or confined to adhoc/unrealistic assumptions. To bridge this gap, we explore how the Trusted Execution Environment (TEE) of modern CPUs can realize the OTP functionality. Specifically, we build two flavours of such a system: in the first, the TEE directly enforces the one-timeness of the program; in the second, the program is represented with a garbled circuit and the TEE ensures Bob's input can only be wired into the circuit once, equivalent to a smaller cryptographic primitive called one-time memory. These have different performance profiles: the first is best when Alice's input is small and Bob's is large, and the second for the converse. 5 Hazay and Lindell [24] give a thorough treatment of interactive two-party protocols. 6 Further explanation is provided in Appendix A.2. arXiv:1907.00935v1 [cs.CR] 1 Jul 2019 7 As an example, Intel STK2mv64CC, a Compute Stick that supports both TXT and TPM, was priced at $499.95 USD on Amazon.com (as of September 2018). 8 A state-bound cryptographic operation performed by the TPM chip, like encryption.

show abstract

Section: Related Workmentioning

confidence: 99%

“…For these reasons, we decide to use Frigate for implementing the garbled circuit components of our GC-based OTP. 21 Battleship. Battleship, developed by the same group, separates out the interpreter and execution functionalities of Frigate.…”

Section: The Frigate Gc Compilermentioning

confidence: 99%

One-Time Programs Made Practical

Zhao

Choi

Demirag

et al. 2019

Financial Cryptography and Data Security

View full text Add to dashboard Cite

show abstract

“…For example, with k = 1 and K(i) = 1 for all i, we capture a scheme in which all shares are encrypted with the key of a single trusted authority and shares are distributed (either to a single party or multiple parties) so that decryption of shares is allowed based on some criteria determined by the trusted authority. For example, Γ might be a threshold structure with threshold t, and trusted hardware controls how many shares may be decrypted at any particular time (this is the case in Gunupudi and Tate's generalized oblivious transfer scheme based on trusted hardware [10]). As another example, consider k = n escrow authorities, all with their own keys, and K(i) = i for all i.…”

Section: Secret Sharing With Encrypted Shares and Limited Decryptionmentioning

confidence: 99%

Encrypted Secret Sharing and Analysis by Plaintext Randomization

Tate

Vishwanathan

Weeks

2015

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

In this paper we consider the problem of secret sharing where shares are encrypted using a public-key encryption (PKE) scheme and ciphertexts are publicly available. While intuition tells us that the secret should be protected if the PKE is secure against chosen-ciphertext attacks (i.e., CCA-secure), formally proving this reveals some subtle and non-trivial challenges. We isolate the problems that this raises, and devise a new analysis technique called "plaintext randomization" that can successfully overcome these challenges, resulting in the desired proof. The encryption of different shares can use one key or multiple keys, with natural applications in both scenarios.

show abstract

“…B) Efficiency Improvements for Specific Functionalities. Efficient protocols with a tamper-proof token trusted by both players have been proposed for specific functionalities such as set intersection and oblivious database search (ODBS) [HL08], non-interactive oblivious transfer (OT) [GT08], and verifiable encryption and fair exchange [TV09]. In contrast, we solve the general SFE problem.…”

Section: Related Workmentioning

confidence: 99%

Embedded SFE: Offloading Server and Network Using Hardware Tokens

Järvinen

Kolesnikov²,

Sadeghi

et al. 2010

Financial Cryptography and Data Security

View full text Add to dashboard Cite

Abstract. We consider Secure Function Evaluation (SFE) in the clientserver setting where the server issues a secure token to the client. The token is not trusted by the client and is not a trusted third party. We show how to take advantage of the token to drastically reduce the communication complexity of SFE and computation load of the server. Our main contribution is the detailed consideration of design decisions, optimizations, and trade-offs, associated with the setting and its strict hardware requirements for practical deployment. In particular, we model the token as a computationally weak device with small constant-size memory and limit communication between client and server. We consider semi-honest, covert, and malicious adversaries. We show the feasibility of our protocols based on a FPGA implementation.

show abstract

Generalized Non-Interactive Oblivious Transfer Using Count-Limited Objects with Applications to Secure Mobile Agents

Cited by 14 publications

References 9 publications

One-Time Programs Made Practical

One-Time Programs Made Practical

Encrypted Secret Sharing and Analysis by Plaintext Randomization

Embedded SFE: Offloading Server and Network Using Hardware Tokens

Contact Info

Product

Resources

About