Optimal bounds for semi-honest quantum oblivious transfer

Chailloux, André; Gutoski, Gus; Sikora, Jamie

doi:10.48550/arxiv.1310.3262

Cited by 5 publications

(11 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As with coin flipping, this protocol cannot be implemented perfectly: Alice may learn which messages Bob requested and Bob may be able to get access to some of Alice's messages he did not request [May97,LC98]. The minimum probability that Alice or Bob can cheat in this protocol and not be detected is 2/3 [CGS13]. If additional assumptions are made, such as that the adversary has a limit on her computational power (in the classical case) or can only store a certain size of quantum system (in the quantum case) then oblivious transfer is possible [DFSS06].…”

Section: • Quantum Oblivious Transfermentioning

confidence: 99%

Assumptions in Quantum Cryptography

Beaudry

2015

Preprint

View full text Add to dashboard Cite

First, thank you to my supervisor, Renato Renner, for the freedom to pursue the research that interested me and the trust you had in my work throughout my PhD. Your keen insight and positive outlook always seem to lead to new ways of tackling any problem.Thank you to my doctoral committee, including Christian Schaffner and Norbert Lütkenhaus, for many helpful comments and suggestions for this thesis.Thanks to the group members of the quantum information group at ETH for an enjoyable time during my PhD. Thank you to those who read early parts of this thesis:

show abstract

Section: • Quantum Oblivious Transfermentioning

confidence: 99%

Assumptions in Quantum Cryptography

Beaudry

2015

Preprint

View full text Add to dashboard Cite

show abstract

“…To mend the problem, weak OT is proposed [9], with an improved definition on Bob's cheating. Define the symbols P * Alice : The maximum probability with which cheating-Alice can get honest-Bob's choice bit b and honest-Bob does not abort.…”

Section: Definitions and The Security Boundmentioning

confidence: 99%

“…However, unconditionally secure OT was shown to be impossible even in quantum cryptography, because the adversary can always cheat with the so-called honest-but-curious attack [4][5][6][7][8]. To evade the problem, the concept "weak OT" was proposed recently [9], in which the security goals of OT are slightly modified, so that the honest-butcurious attack is no longer considered a successful cheating. Even so, it was found that a security bound exists for weak OT [9], thus it cannot be unconditionally secure either.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Secure quantum weak oblivious transfer against individual measurements

2014

Preprint

View full text Add to dashboard Cite

In quantum weak oblivious transfer, Alice sends Bob two bits and Bob can learn one of the bits at his choice. It was found that the security of such a protocol is bounded by 2P * Alice + P * Bob ≥ 2, where P * Alice is the probability with which Alice can guess Bob's choice, and P * Bob is the probability with which Bob can guess both of Alice's bits given that he learns one of the bits with certainty. Here we propose a protocol and show that as long as Alice is restricted to individual measurements, then both P * Alice and P * Bob can be made arbitrarily close to 1/2, so that maximal violation of the security bound can be reached. Even with some limited collective attacks, the security bound can still be violated. Therefore, although our protocol still cannot break the bound in principle when Alice has unlimited cheating power, it is sufficient for achieving secure quantum weak oblivious transfer in practice.

show abstract

“…Although this would not be relevant for our work, analysis of coin flipping protocols was adapted, and later implemented, for experimental setups [PCDK11, PJL + 14]. There is also a strong connection between coin-flipping and bit-commitment protocols [SR01,CK11], and to a lesser extent to oblivious transfer [CGS16].…”

Section: Introductionmentioning

confidence: 99%

Quantum coin hedging, and a counter measure

Ganz,

Sattath

2017

Preprint

View full text Add to dashboard Cite

A quantum board game is a multi-round protocol between a single quantum player against the quantum board. Molina and Watrous [MW12] discovered quantum hedging. They gave an example for perfect quantum hedging: a board game with winning probability < 1, such that the player can win with certainty at least 1-out-of-2 quantum board games played in parallel. Here we show that perfect quantum hedging occurs in a cryptographic protocol -quantum coin flipping. For this reason, when cryptographic protocols are composed, hedging may introduce serious challenges into their analysis.We also show that hedging cannot occur when playing two-outcome board games in sequence. This is done by showing a formula for the value of sequential twooutcome board games, which depends only on the optimal value of a single board game; this formula applies in a more general setting, in which hedging is only a special case.

show abstract

Optimal bounds for semi-honest quantum oblivious transfer

Cited by 5 publications

References 19 publications

Assumptions in Quantum Cryptography

Assumptions in Quantum Cryptography

Secure quantum weak oblivious transfer against individual measurements

Quantum coin hedging, and a counter measure

Contact Info

Product

Resources

About