Jamie Cui,Chaochao Chen,Alex X. Liu,Li Wang

2021-01-01

Abstract:With the emerging popularity of cloud computing, the problem of how to query over cryptographically-protected data has been widely studied. However, most existing works focus on querying protected relational databases, few work has shown interests in graph databases. In this paper, we first investigate and summarize two single-instruction queries, namely Graph Pattern Matching (GPM) and Graph Navigation (GN). Then we follow their design intuitions and leverage secure Multi-Party Computation (MPC) to implement their functionalities in a privacy-preserving manner. Moreover, we propose a general framework for processing multi-instruction query on secret-shared graph databases and present a novel cryptographic primitive Oblivious Filter (OF) as a core building block. Nevertheless, we formalize the problem of OF and present its constructions using homomorphic encryption. Finally, we conduct an empirical study to evaluate the efficiency of our proposed OF protocol.

Sven Laur,Jan Willemson,Bingsheng Zhang

DOI: https://doi.org/10.1007/978-3-642-24861-0_18

2011-01-01

Abstract:Most of the multi-party computation frameworks can be viewed as oblivious databases where data is stored and processed in a secret-shared form. However, data manipulation in such databases can be slow and cumbersome without dedicated protocols for certain database operations. In this paper, we provide efficient protocols for oblivious selection, filtering and shuffle essential tools in privacy-preserving data analysis. As the first contribution, we present a 1-out-of-n oblivious transfer protocol with 0(log log n) rounds, which achieves optimal communication and time complexity and works over any ring Z(N). Secondly, we show how to construct round-efficient shuffle protocols with optimal asymptotic computation complexity and provide several optimizations.

Bingsheng Zhang

DOI: https://doi.org/10.1007/978-3-642-24316-5_6

2011-01-01

Abstract:During an adaptive oblivious transfer (OT), a sender has n private documents, and a receiver can adaptively fetch k documents from them such that the sender learns nothing about the receiver’s selection and the receiver learns nothing more than those k documents. Most recent fully simulatable adaptive OT schemes are based on so-called “assisted decryption” or “blind decryption”. In this paper, we revisit another technique, “blind permute-decryption”, for designing adaptive OT. We propose an efficient generic fully simulatable oblivious transfer framework with statistical receiver’s privacy that based on “blind permute-decryption” together with three concrete installations. The first one is based on Elgamal, so the corresponding OT is secure under classical DDH assumption. The second one is based on Paillier, so the corresponding OT is secure under Decisional n-th Residuosity assumption. Besides, we introduce an extended zero-knowledge proof framework with several applications.

Wei Yang,Liusheng Huang,Yonglong Luo,Mingjun Xiao

2006-01-01

Abstract:Oblivious transfer (OT) is an important primitive in cryptography. In chosen one-out-of-two OT, Alice offers two bits, one of which Bob can choose to read, not learning any information about the other bit. Alice on the other hand does not obtain any information about Bob’s choice. We present a new technique for the same task in quantum environment, based on POVM measurements. It is shown that our method has two important advantages over the previous approaches. First, it is unconditionally secure without invoking a commitment scheme, and second, it is more efficient in terms of communication complexity.

Zhao Shengnan,Jiang Han,Wei Xiaochao,Ke Junming,Zhao Minghao

DOI: https://doi.org/10.7544/issn1000-1239.2017.20170463

2017-01-01

Journal of Computer Research and Development

Abstract:Oblivious transfer (OT ) is a cryptographic primitive used for choice information hiding for the receiver .As a basic tool for high-level multi-party cryptographic protocol construction ,it plays an important role in numerous specific applications .In the k-out-of-n OT (OT k n ) ,the receiver acquires k selections among the n choice in an oblivious manner .Generally ,the construction of the OT kn involves lots of group exponential operations ,which brings a heavy burden for embedded devices with limited computational capabilities . With the proliferation of cloud computing ,it is feasible to implement complex cryptographic primitives with the support of powerful computing recourse and high-speed dedicated network provided by the cloud service provider (CSP) .In this paper ,we propose a service-assisted k-out-of-n OT protocol in single server architecture ,which outsources the vast majority of exponentiation operations to the cloud . This scheme is constructed with secret sharing and other fundamental public-key primitives ,and it achieves provable security on none-collusion semi-honest model under the decisional Diffie-Hellamn (DDH) hard problem ;meanwhile it ensures data privacy against the cloud server .Besides ,a detailed description of scheme construction and security proof is presented in the context .As a basic cryptographic primitive in cloud environment ,the single server-added oblivious transfer protocol will play an important role in designs of general cloud-assisted multi-party computation protocol as well as developments of secure and efficient cloud service software .

Ricardo Faleiro,Manuel Goulão,Leonardo Novo,Emmanuel Zambrini Cruzeiro

2024-10-11

Abstract:Few primitives are as intertwined with the foundations of cryptography as Oblivious Transfer (OT). Not surprisingly, with the advent of the use of quantum resources in information processing, OT played a central role in establishing new possibilities (and defining impossibilities) pertaining to the use of these novel assets. A major research path is minimizing the required assumptions to achieve OT, and studying their consequences. Regarding its computation, it is impossible to construct unconditionally-secure OT without extra assumptions; and, regarding communication complexity, achieving 1-shot (and even non-interactive) OT has proved to be an elusive task, widely known to be impossible classically. Moreover, this has strong consequencesfor realizing round-optimal secure computation, in particular 1-shot 2-Party Computation (2PC). In this work, three main contributions are evidenced by leveraging quantum resources: 1. Unconditionally-secure 2-message non-interactive OT protocol constructed in the Noisy-Quantum-Storage Model. 2. 1-shot OT in the Noisy-Quantum-Storage Model -- proving that this construction is possible assuming the existence of one-way functions and sequential functions. 3. 1-shot 2PC protocol compiled from a semi-honest 1-shot OT to semi-honest 1-shot Yao's Garbled Circuits protocol.

Quantum Physics,Cryptography and Security

Esther Hänggi,Severin Winkler

2024-07-15

Abstract:Oblivious transfer (OT) is a fundamental primitive for secure two-party computation. It is well known that OT cannot be implemented with information-theoretic security if the two players only have access to noiseless communication channels, even in the quantum case. As a result, weaker variants of OT have been studied. In this work, we rigorously establish the impossibility of cheat-sensitive OT, where a dishonest party can cheat, but risks being detected. We construct a general attack on any quantum protocol that allows the receiver to compute all inputs of the sender and provide an explicit upper bound on the success probability of this attack. This implies that cheat-sensitive quantum Symmetric Private Information Retrieval cannot be implemented with statistical information-theoretic security. Leveraging the techniques devised for our proofs, we provide entropic bounds on primitives needed for secure function evaluation. They imply impossibility results for protocols where the players have access to OT as a resource. This result significantly improves upon existing bounds and yields tight bounds for reductions of 1-out-of-n OT to a resource primitive. Our results hold in particular for transformations between a finite number of primitives and for any error.

Quantum Physics,Cryptography and Security

Run-hua SHI,Hong ZHONG,Jie CUI,Yan XU,Shun ZHANG,Liu-sheng HUANG

DOI: https://doi.org/10.3969/j.issn.0372-2112.2014.11.022

2014-01-01

Abstract:Oblivious Transfer (OT) protocol is a fundamental building block for Secure Multiparty Computation and finds critically important applications in protecting privacy in various settings .Nevertheless ,existing OT protocols do not include the pro-cedure to conduct the statistical analysis in a cooperative environment .Here ,a new OT protocol is proposed with a cooperative sta-tistical analysis by pursuing secure multiparty computation of the sum ,adopting the homomorphic encryption scheme ,and using a clever coding method .Specifically ,the sender can calculate the total number of each message sent privately within a given period . Theoretical analysis indicates that the new protocol allows for secure and efficient transfer of private messages in an oblivious way and shows great promise for practical applications in Electronic Commerce ,Healthcare Management and other secure systems as well .

Zhide Chen,Tianming Bu,Hong Zhu

2008-01-01

Abstract:Quantum cryptography is one example of applying a deep understanding of quantum physics to create a novel technology of potentially enormous significance. Oblivious Transfer (OT) is used as a key component in many applications of cryptography. Crépeau showed the first quantum 1-out-of-2 oblivious transfer in 1994 based on the transmission of polarized light and the exist of secure quantum bit commitment protocol. The protocol he constructed satisfy both the correctness and the privacy for Alice with probability 1 − εn, the privacy for Bob with probability 1 2 . In this paper, we show that quantum can be constructed using only the Bell states, and the scheme satisfies the correctness and the privacy for Alice with probability 1, the privacy for Bob with probability 1 2 . Furthermore, we show the relations between the OTs, i.e. Bit-QOT 2 can be constructed using String-QOT 2 , String-QOT n can be constructed using String-QOT 2 , String-QOTm n can be constructed using String-QOT n , and vice versa. We get the conclusion that String-QOT n can be constructed using Bit-QOT 2 and vice versa. So, String-QOTm n and Bit-QOTm n can be constructed by the Bit-QOT 2 . Finally, We show that quantum bit commitment and quantum coin flipping can be constructed using QOT.

Zhide Chen,Tianming Bu,Hong Zhu

2008-01-01

Abstract:Quantum cryptography is one example of applying a deep understanding of quantum physics to create a novel technology of potentially enormous significance. Oblivious Transfer (OT) is used as a key component in many applications of cryptography. Crépeau showed the first quantum 1-out-of-2 oblivious transfer in 1994 based on the transmission of polarized light and the exist of secure quantum bit commitment protocol. The protocol he constructed satisfy both the correctness and the privacy for Alice with probability 1 − εn, the privacy for Bob with probability 1 2 . In this paper, we show that quantum can be constructed using only the Bell states, and the scheme satisfies the correctness and the privacy for Alice with probability 1, the privacy for Bob with probability 1 2 . Furthermore, we show the relations between the OTs, i.e. Bit-QOT 2 can be constructed using String-QOT 2 , String-QOT n can be constructed using String-QOT 2 , String-QOTm n can be constructed using String-QOT n , and vice versa. We get the conclusion that String-QOT n can be constructed using Bit-QOT 2 and vice versa. So, String-QOTm n and Bit-QOTm n can be constructed by the Bit-QOT 2 . Finally, We show that quantum bit commitment and quantum coin flipping can be constructed using QOT.

Tianyou Pei,Wei Kang,Nan Liu

DOI: https://doi.org/10.1109/isit54713.2023.10206863

2023-01-01

Abstract:Both the oblivious transfer (OT) problem and the symmetric private information retrieval (SPIR) problem studies the scenario where a client retrieves information privately and securely from databases, i.e., the privacy of the client is protected from the databases, and the undesired information is protected from the client. The OT problem studies the case of one database plus additional noisy resources between the database and the client. The SPIR problem studies the case of multiple replicated and non-colluding databases. In this paper, we combine the two models and propose a new problem of oblivious transfer (OT) with two replicated databases and a binary erasure multiple access channel connecting the databases and the client. We first provide an upper bound on the OT capacity. We then propose a protocol which achieves the upper bound. Therefore, we obtain the capacity of OT for this model. In our achievability and converse proofs, we utilized the techniques from both traditional OT and PIR. Compared to schemes that utilizes only techniques from OT, we see a 100% increase in the achieved OT rate.

Bo Mi,Darong Huang,Shaohua Wan,Yu Hu,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1016/j.compeleceng.2019.01.021

IF: 4.152

2019-01-01

Computers & Electrical Engineering

Abstract:Security is a key concern in any loT deployment, particularly if we have to take into consideration future attacks facilitated by the use of quantum computers. Therefore, in this paper, we present a post-quantum lightweight 1-out-n oblivious transfer (OT) protocol, based on the NTRU cryptographic primitive. Compared to the OT scheme proposed by Chou and Orlandi in LATINCRYPT 2015, our protocol is more suitable for deployment in heterogeneous and distributed environment, due to the reusability of encoded data set. Findings from the performance evaluation indicate that the proposed protocol outperforms that of Chou and Orlandi [13] protocol, in terms of computation and communication costs. (C) 2019 Elsevier Ltd. All rights reserved.

Eleni Diamanti,Alex B. Grilo,Adriano Innocenzi,Pascal Lefebvre,Verena Yacoub,Álvaro Yángüez

2024-11-04

Abstract:We present a new simulation-secure quantum oblivious transfer (QOT) protocol based on one-way functions in the plain model. With a focus on practical implementation, our protocol surpasses prior works in efficiency, promising feasible experimental realization. We address potential experimental errors and their correction, offering analytical expressions to facilitate the analysis of the required quantum resources. Technically, we achieve simulation security for QOT through an equivocal and relaxed-extractable quantum bit commitment.

Quantum Physics

YANG Wei,HUANG Liu-sheng,LUO Yong-long,CHEN Guo-liang

DOI: https://doi.org/10.3321/j.issn:0372-2112.2007.08.024

2007-01-01

Abstract:As a basic protocol of Secure Multi-party Computation,Oblivious Transfer(OT) is of significant research and application value.Most of previous oblivious transfer protocols in classical environment rely either on public-key cryptography or on additional computational assumptions which will be very vulnerable under quantum mechanics.Based on the characteristics of Bell States,a new quantum oblivious transfer protocol is proposed in this paper.The correctness and security of the protocol are analyzed and proved.The protocol is secure in the presence of noise on the channel and a potential eavesdropper.Comparing with oblivious transfer protocols in classical computational environment,the protocol in this paper is superior in security,soundness and wire-tapping detecting.

Ailin Chen,Shaoyuan Yu,Xinyi Yang,Ding Huang,Yongjun Ren

DOI: https://doi.org/10.1016/j.heliyon.2024.e28117

IF: 3.776

2024-03-26

Heliyon

Abstract:With the swift advancement of cloud computing and the Internet of Things (IoT), to address the issue of massive data storage, IoT devices opt to offload their data to cloud servers so as to alleviate the pressure of resident storage and computation. However, storing local data in an outsourced database is bound to face the danger of tampering. To handle the above problem, a verifiable database (VDB), which was initially suggested in 2011, has garnered sustained interest from researchers. The concept of VDB enables resource-limited clients to securely outsource extremely large databases to untrusted servers, where users can retrieve database records and modify them by allocating new values, and any attempts at tampering will be detected. This paper provides a systematic summary of VDB. First, a definition of VDB is given, along with correctness and security proofs. And the VDB based on commitment constructions is introduced separately, mainly divided into vector commitments and polynomial commitments. Then VDB schemes based on delegated polynomial functions are introduced, mainly in combination with Merkle trees and forward-secure symmetric searchable encryption. We then classify the current VDB schemes relying on four different assumptions. Besides, we classify the established VDB schemes built upon two different groups. Finally, we introduce the applications and future development of VDB. To our knowledge, this is the first VDB review paper to date.

Bo Mi,Darong Huang,Shaohua Wan,Libo Mi,Jianqiu Cao

DOI: https://doi.org/10.1109/access.2018.2846798

IF: 3.9

2018-01-01

IEEE Access

Abstract:Oblivious transfer (OT) is the most fundamental process in cryptosystems and serves as the basic building block for implementing protocols, such as the secure multi-party computation and the fair electronic contract. However, since most implementations of the Internet of Things are time-sensitive, existing works that are based on traditional public cryptosystems are not efficient or secure under quantum machine attacks. In this paper, we argued that the fastest known 1-out-of-n oblivious transfer (OTn1) protocol, which was proposed by Chou, cannot achieve semantic security and is time-consuming due to exponent arithmetic of large parameters. Utilizing NTRUEncrypt and OT extension, we devised a one-round post-quantum secure OTn1 protocol that is also proved to be active and adaptively secure under the universal composability framework. Compared with Chou's protocol, the computational overheads of our scheme are approximately 6 and 1.7 times smaller on the sender and receiver sides, in line with the standard security level.

Aydin Abadi,Yvo Desmedt

2024-08-25

Abstract:Oblivious Transfer (OT) is a fundamental cryptographic protocol with applications in secure Multi-Party Computation, Federated Learning, and Private Set Intersection. With the advent of quantum computing, it is crucial to develop unconditionally secure core primitives like OT to ensure their continued security in the post-quantum era. Despite over four decades since OT's introduction, the literature has predominantly relied on computational assumptions, except in cases using unconventional methods like noisy channels or a fully trusted party. Introducing "Supersonic OT", a highly efficient and unconditionally secure OT scheme that avoids public-key-based primitives, we offer an alternative to traditional approaches. Supersonic OT enables a receiver to obtain a response of size O(1). Its simple (yet non-trivial) design facilitates easy security analysis and implementation. The protocol employs a basic secret-sharing scheme, controlled swaps, the one-time pad, and a third-party helper who may be corrupted by a semi-honest adversary. Our implementation and runtime analysis indicate that a single instance of Supersonic OT completes in 0.35 milliseconds, making it up to 2000 times faster than the state-of-the-art base OT.

Cryptography and Security,Databases,Machine Learning

Zengpeng Li,Chunguang Ma,Minghao Zhao,Chang Choi

DOI: https://doi.org/10.1080/02533839.2018.1537809

2019-01-01

Abstract:Cloud computing is a promising paradigm to provide flexible and reliable services. Nevertheless, concern and anxiety about data security and tenants' privacy are still a major barrier for the popularity of cloud computing. Oblivious transfer (OT) is a cryptographic primitive that enables a client to selectively retrieve data in a privacy-preserving manner. It can be used to construct high-level protocols enabling applications in the cloud-computing paradigm. Technically, it has been proven that OT protocols can be constructed using a CPA-secure public-key encryption scheme. Along these lines, Peikert et al. formulated a dual-mode cryptosystem on which they constructed a single-bit OT scheme. Obviously, it has deficiencies in performance, which makes it unqualified for use in cloud-computing scenarios. This paper aims at providing an efficient multi-bit OT scheme for secure cloud applications. We first propose a multi-bit dual-mode cryptosystem based on the learning with errors (LWE) problem. Based on this multi-bit dual-mode cryptosystem, we construct a multi-bit OT. We present details of the OT construction together with security analysis of our scheme, and finally provide an example of how it can be used in specific application scenarios.

Paul Schmitt,Anne Edmundson,Nick Feamster

DOI: https://doi.org/10.1145/3340301.3341128

2018-12-12

Abstract:Virtually every Internet communication typically involves a Domain Name System (DNS) lookup for the destination server that the client wants to communicate with. Operators of DNS recursive resolvers---the machines that receive a client's query for a domain name and resolve it to a corresponding IP address---can learn significant information about client activity. Past work, for example, indicates that DNS queries reveal information ranging from web browsing activity to the types of devices that a user has in their home. Recognizing the privacy vulnerabilities associated with DNS queries, various third parties have created alternate DNS services that obscure a user's DNS queries from his or her Internet service provider. Yet, these systems merely transfer trust to a different third party. We argue that no single party ought to be able to associate DNS queries with a client IP address that issues those queries. To this end, we present Oblivious DNS (ODNS), which introduces an additional layer of obfuscation between clients and their queries. To do so, ODNS uses its own authoritative namespace; the authoritative servers for the ODNS namespace act as recursive resolvers for the DNS queries that they receive, but they never see the IP addresses for the clients that initiated these queries. We present an initial deployment of ODNS; our experiments show that ODNS introduces minimal performance overhead, both for individual queries and for web page loads. We design ODNS to be compatible with existing DNS protocols and infrastructure, and we are actively working on an open standard with the IETF.

Networking and Internet Architecture

Wei Yang,Liusheng Huang,Yifei Yao,Zhili Chen

DOI: https://doi.org/10.1109/FGCN.2007.189

2007-01-01

Abstract:Oblivious transfer is an interesting cryptographic task in which one party Alice aims to transfer one of her two bits to the other party Bob, with the assurance that he can choose freely his bit, but is not able to obtain the two bits simultaneously. Bob on the other hand wants to be sure that Alice should not be capable of inferring what bit he has chosen. Quantum oblivious transfer (QOT) scheme outperforms its classical counterpart for its higher security and eavesdropping detecting ability. In this paper, we present a new and novel QOT protocol based on tripartite entangled states, which can be proven to be secure against any quantum attacking strategy allowed by physical laws.