J. Mueller-Quade,H. Imai

DOI: https://doi.org/10.48550/arXiv.cs/0011004

2000-12-03

Abstract:In this short note we want to introduce {\em anonymous oblivious transfer} a new cryptographic primitive which can be proven to be strictly more powerful than oblivious transfer. We show that all functions can be robustly realized by multi party protocols with {\em anonymous oblivious transfer}. No assumption about possible collusions of cheaters or disruptors have to be made. Furthermore we shortly discuss how to realize anonymous oblivious transfer with oblivious broadcast or by quantum cryptography. The protocol of anonymous oblivious transfer was inspired by a quantum protocol: the anonymous quantum channel.

Cryptography and Security

Bingsheng Zhang

DOI: https://doi.org/10.1007/978-3-642-24316-5_6

2011-01-01

Abstract:During an adaptive oblivious transfer (OT), a sender has n private documents, and a receiver can adaptively fetch k documents from them such that the sender learns nothing about the receiver’s selection and the receiver learns nothing more than those k documents. Most recent fully simulatable adaptive OT schemes are based on so-called “assisted decryption” or “blind decryption”. In this paper, we revisit another technique, “blind permute-decryption”, for designing adaptive OT. We propose an efficient generic fully simulatable oblivious transfer framework with statistical receiver’s privacy that based on “blind permute-decryption” together with three concrete installations. The first one is based on Elgamal, so the corresponding OT is secure under classical DDH assumption. The second one is based on Paillier, so the corresponding OT is secure under Decisional n-th Residuosity assumption. Besides, we introduce an extended zero-knowledge proof framework with several applications.

Yang Wei,Liusheng Huang,Qiyan Wang

2006-01-01

WSEAS TRANSACTIONS ON COMPUTERS

Abstract:In an Oblivious Transfer (OT) protocol, Alice has two messages and is willing to send one of them to Bob, with the guarantee that no information about another message will be obtained. Moreover, Bob can freely choose his message and wants to ensure that Alice can obtain no information about which of her message he has picked. A 1-out-of-n OT is the natural extension of normal OT to the case of n messages. The security achieved by previous constructions for this primitive is not desirable. In this paper, we present a new quantum 1-out-of-n Oblivious Transfer scheme, which is unconditionally secure for both participants. We also give a scheme for a related cryptographic task, i.e. All-or-Nothing Disclosure of Secrets (ANDOS), utilizing our new quantum OT protocol.

Bo Mi,Darong Huang,Shaohua Wan,Libo Mi,Jianqiu Cao

DOI: https://doi.org/10.1109/access.2018.2846798

IF: 3.9

2018-01-01

IEEE Access

Abstract:Oblivious transfer (OT) is the most fundamental process in cryptosystems and serves as the basic building block for implementing protocols, such as the secure multi-party computation and the fair electronic contract. However, since most implementations of the Internet of Things are time-sensitive, existing works that are based on traditional public cryptosystems are not efficient or secure under quantum machine attacks. In this paper, we argued that the fastest known 1-out-of-n oblivious transfer (OTn1) protocol, which was proposed by Chou, cannot achieve semantic security and is time-consuming due to exponent arithmetic of large parameters. Utilizing NTRUEncrypt and OT extension, we devised a one-round post-quantum secure OTn1 protocol that is also proved to be active and adaptively secure under the universal composability framework. Compared with Chou's protocol, the computational overheads of our scheme are approximately 6 and 1.7 times smaller on the sender and receiver sides, in line with the standard security level.

Fangguo Zhang,Xingwen Zhao,Xiaofeng Chen

DOI: https://doi.org/10.1007/978-3-642-10838-9_11

2009-01-01

Abstract:The adaptive oblivious transfer is a variant of oblivious transfer. To the best of our knowledge, the existing adaptive oblivious transfer schemes are all constructed in the setting of public key infrastructure. In this paper, we first introduce the notion of ID-based adaptive oblivious transfer. We also show that a generic construction of ID-based adaptive oblivious transfer can be obtained if there exists an ID-based unique blind signature. Another main contribution in this paper is that we propose a provable secure round-optimal ID-based unique blind signature scheme and the resulting ID-based adaptive oblivious transfer scheme.

Qinglong Wang,Jintai Ding

DOI: https://doi.org/10.1080/01611194.2014.915261

2014-01-01

Cryptologia

Abstract:Abstract In this article, the authors cryptanalyze a k-out-of-n oblivious transfer protocol proposed in [12]. Their protocol is one of the most efficient k-out-of-n oblivious transfer protocols and is directly built from a 1-out-of-n oblivious transfer protocol. However, their analysis shows that the proposed k-out-of-n oblivious transfer protocol is insecure, though the primitive 1-out-of-n oblivious transfer protocol is secure. The weakness is that with high probability the receiver in their protocol can get all n secret messages encrypted by the sender. Finally, they fix the serious flaw and introduce an improved k-out-of-n oblivious transfer protocol without increasing any cost.

Sven Laur,Jan Willemson,Bingsheng Zhang

DOI: https://doi.org/10.1007/978-3-642-24861-0_18

2011-01-01

Abstract:Most of the multi-party computation frameworks can be viewed as oblivious databases where data is stored and processed in a secret-shared form. However, data manipulation in such databases can be slow and cumbersome without dedicated protocols for certain database operations. In this paper, we provide efficient protocols for oblivious selection, filtering and shuffle essential tools in privacy-preserving data analysis. As the first contribution, we present a 1-out-of-n oblivious transfer protocol with 0(log log n) rounds, which achieves optimal communication and time complexity and works over any ring Z(N). Secondly, we show how to construct round-efficient shuffle protocols with optimal asymptotic computation complexity and provide several optimizations.

Run-hua SHI,Hong ZHONG,Jie CUI,Yan XU,Shun ZHANG,Liu-sheng HUANG

DOI: https://doi.org/10.3969/j.issn.0372-2112.2014.11.022

2014-01-01

Abstract:Oblivious Transfer (OT) protocol is a fundamental building block for Secure Multiparty Computation and finds critically important applications in protecting privacy in various settings .Nevertheless ,existing OT protocols do not include the pro-cedure to conduct the statistical analysis in a cooperative environment .Here ,a new OT protocol is proposed with a cooperative sta-tistical analysis by pursuing secure multiparty computation of the sum ,adopting the homomorphic encryption scheme ,and using a clever coding method .Specifically ,the sender can calculate the total number of each message sent privately within a given period . Theoretical analysis indicates that the new protocol allows for secure and efficient transfer of private messages in an oblivious way and shows great promise for practical applications in Electronic Commerce ,Healthcare Management and other secure systems as well .

Zhao Shengnan,Jiang Han,Wei Xiaochao,Ke Junming,Zhao Minghao

DOI: https://doi.org/10.7544/issn1000-1239.2017.20170463

2017-01-01

Journal of Computer Research and Development

Abstract:Oblivious transfer (OT ) is a cryptographic primitive used for choice information hiding for the receiver .As a basic tool for high-level multi-party cryptographic protocol construction ,it plays an important role in numerous specific applications .In the k-out-of-n OT (OT k n ) ,the receiver acquires k selections among the n choice in an oblivious manner .Generally ,the construction of the OT kn involves lots of group exponential operations ,which brings a heavy burden for embedded devices with limited computational capabilities . With the proliferation of cloud computing ,it is feasible to implement complex cryptographic primitives with the support of powerful computing recourse and high-speed dedicated network provided by the cloud service provider (CSP) .In this paper ,we propose a service-assisted k-out-of-n OT protocol in single server architecture ,which outsources the vast majority of exponentiation operations to the cloud . This scheme is constructed with secret sharing and other fundamental public-key primitives ,and it achieves provable security on none-collusion semi-honest model under the decisional Diffie-Hellamn (DDH) hard problem ;meanwhile it ensures data privacy against the cloud server .Besides ,a detailed description of scheme construction and security proof is presented in the context .As a basic cryptographic primitive in cloud environment ,the single server-added oblivious transfer protocol will play an important role in designs of general cloud-assisted multi-party computation protocol as well as developments of secure and efficient cloud service software .

Jianchang Lai,Yi Mu,Fuchun Guo,Rongmao Chen,Sha Ma

DOI: https://doi.org/10.1016/j.tcs.2017.12.019

IF: 1.002

2018-01-01

Theoretical Computer Science

Abstract:In this paper, we propose a two-round k-out-of-n oblivious transfer scheme with the minimum communication cost. In our proposed scheme, the messages sent by the receiver R to the sender S consist of only three elements, which is independent of n and k, while the messages from S to R are (n+1) elements when the sender holds n secrets. Our scheme features a nice property of universal parameter, where the system parameter can be used by all senders and receivers. The proposed k-out-of-n oblivious transfer scheme is the most efficient two-round scheme in terms of the number of messages transferred between two communicating parties in known constructions. The scheme preserves the privacy of receiver's choice and sender's security.

Bingsheng Zhang,Helger Lipmaa,Cong Wang,Kui Ren

DOI: https://doi.org/10.1007/978-3-642-39884-1_8

2013-01-01

Abstract:During an adaptive k-out-of-N oblivious transfer (OT), a sender has N private documents, and a receiver wants to adaptively fetch k documents from them such that the sender learns nothing about the receiver’s selection and the receiver learns nothing more than those chosen documents. Many fully simulatable and universally composable adaptive OT schemes have been proposed, but those schemes typically require \(\mathcal{O}(N)\) communication in the initialization phase, which yields \(\mathcal{O}(N)\) overall communication. On the other hand, in some applications, the receiver just needs to fetch a small number of documents, so the initialization cost dominates in the entire protocol, especially for 1-out-of-N OT. We propose the first fully simulatable adaptive OT with sublinear communication under the DDH assumption in the plain model. Our scheme has \(\mathcal{O}(N^{1/2})\) communication in both the initialization phase and each transfer phase. It achieves better (amortized) overall communication complexity compared to existing schemes when \(k=\mathcal{O}(N^{1/2})\).

Zhao Chun-ming,Li Xin-guo

2007-01-01

Abstract:Hidden authentication oblivious transfer based on k-out-of-n oblivious transfer and hidden credentials is proposed which solved the problem that standard certificated-based access control to oblivious transfer may exposure some sensitive information of the receiver. The scheme proposed has the property that only the receiver who has the required attribute credentials can open the message it chooses and the receiver need not provide to the sender any credentials. The sender can not decide whether the receiver can open the messages or not and the sender can not know which messages that the receiver acquires also. The security in the random oracle model is proved under the BDH assumption and the CT-CDH assumption.

YANG Wei,HUANG Liu-sheng,LUO Yong-long,CHEN Guo-liang

DOI: https://doi.org/10.3321/j.issn:0372-2112.2007.08.024

2007-01-01

Abstract:As a basic protocol of Secure Multi-party Computation,Oblivious Transfer(OT) is of significant research and application value.Most of previous oblivious transfer protocols in classical environment rely either on public-key cryptography or on additional computational assumptions which will be very vulnerable under quantum mechanics.Based on the characteristics of Bell States,a new quantum oblivious transfer protocol is proposed in this paper.The correctness and security of the protocol are analyzed and proved.The protocol is secure in the presence of noise on the channel and a potential eavesdropper.Comparing with oblivious transfer protocols in classical computational environment,the protocol in this paper is superior in security,soundness and wire-tapping detecting.

J. Mueller-Quade,H. Imai

DOI: https://doi.org/10.48550/arXiv.cs/0101020

2001-06-23

Abstract:With oblivious transfer multiparty protocols become possible even in the presence of a faulty majority. But all known protocols can be aborted by just one disruptor. This paper presents more robust solutions for multiparty protocols with oblivious transfer. This additional robustness against disruptors weakens the security of the protocol and the guarantee that the result is correct. We can observe a trade off between robustness against disruption and security and correctness. We give an application to quantum multiparty protocols. These allow the implementation of oblivious transfer and the protocols of this paper relative to temporary assumptions, i.e., the security increases after the termination of the protocol.

Cryptography and Security

Bo Mi,Darong Huang,Shaohua Wan,Yu Hu,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1016/j.compeleceng.2019.01.021

IF: 4.152

2019-01-01

Computers & Electrical Engineering

Abstract:Security is a key concern in any loT deployment, particularly if we have to take into consideration future attacks facilitated by the use of quantum computers. Therefore, in this paper, we present a post-quantum lightweight 1-out-n oblivious transfer (OT) protocol, based on the NTRU cryptographic primitive. Compared to the OT scheme proposed by Chou and Orlandi in LATINCRYPT 2015, our protocol is more suitable for deployment in heterogeneous and distributed environment, due to the reusability of encoded data set. Findings from the performance evaluation indicate that the proposed protocol outperforms that of Chou and Orlandi [13] protocol, in terms of computation and communication costs. (C) 2019 Elsevier Ltd. All rights reserved.

Zhao Chun-ming,Li Xin-guo

2006-01-01

Abstract:ased on Schnorr (Elgamal) signature and (string) oblivious transfer, an enhanced oblivious transfer protocol is proposed which solved the access control problem for an oblivious transfer protocol. The protocol proposed has the property: the only receiver who has the signature issued by the central authority can open the message which he chose; the sender can not decide whether the receiver has the signature or not. That is the identity of the receiver can not be confirmed after the protocol. Under the Decisional Diffie-Hellman(DDH) assumption the proposed scheme has provable security.

Zhide Chen,Tianming Bu,Hong Zhu

DOI: https://doi.org/10.48550/arXiv.quant-ph/0401057

2004-08-29

Abstract:This paper has been withdrawn.

Quantum Physics

Jing Li,Xiong Li,Licheng Wang,Debiao He,Xinxin Niu

DOI: https://doi.org/10.1007/978-3-319-49106-6_90

2017-01-01

Abstract:In this paper, we propose 1-out-of-n oblivious transfer protocol by using the group of matrices over group ring Z(q)[S-m]. The security of the proposal is on the basis of factorization problems of non-commutative algebraic structures. Meanwhile, some new intractable assumptions are defined based on the group factorization problem (GFP). Subsequently, we present a simpler 1-out-of-n oblivious transfer construction for underlying non-commutative group. Furthermore, to achieve the oblivious transfer for more challenged messages, an efficient k-out-of-n oblivious transfer protocol with fewer public parameters is designed based on the newly defined hard assumptions.

Chuan Zhao,Han Jiang,Xiaochao Wei,Qiuliang Xu,Minghao Zhao

DOI: https://doi.org/10.1109/trustcom.2015.398

2015-01-01

Abstract:Oblivious transfer is a fundamental tool in cryptographic protocols, especially in secure two-party computation. In TCC 2011, Lindell and Pinkas proposed a variant called cut-and-choose oblivious transfer, which did a great job in solving the selective failure attack in secure two-party computation protocols based on cut-and-choose paradigm. In this paper, we present a new primitive called cut-and-choose bilateral oblivious transfer. As an extension to cut-and-choose oblivious transfer, in addition to overcoming the selective failure attack, this primitive also makes a contribution to reducing the round number of the protocols that invoke it. This is very important in the scenarios where interactions between parties are limited. Besides, the application of this primitive in the outer protocols enables us to present a more modular and clean high-level description of the protocol framework. Furthermore, we believe that the new primitive is of independent research interest itself and could be useful in many cut-and-choose scenarios. Based on homomorphic encryption, we construct an efficient instantiation of this primitive in malicious model, and present a formal rigorous proof of its security under ideal/real simulation paradigm.

Anuj Kumar Yadav,Preetam Kumar

DOI: https://doi.org/10.1109/lcomm.2022.3156704

IF: 3.5529

2022-01-01

IEEE Communications Letters

Abstract:Oblivious Transfer (OT) is a broadly studied cryptographic primitive which involves two mutually distrustful users who wish to interact with each other in order to transfer messages in an oblivious manner. Noise is an important resource to realize information-theoretically secure cryptographic protocols including oblivious transfer. However, oftentimes these noisy channels may be poorly characterized and the complete channel characteristics might be unknown to both users. Such channels are studied in the literature through the lens of compound channels. We study 1-out-of-2 oblivious transfer over a compound binary erasure channel (compound-BEC) and characterize the oblivious transfer capacity of compound-BEC. Our OT capacity characterization involves a general alphabet compound-DMC converse, subsequently specialized to compound-BEC along with an optimal and computationally-efficient achievability scheme for honest-but-curious users.

telecommunications