International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Extending Oblivious Transfers Efficiently - How to get Robustness Almost for Free

Authors:
Jesper Buus Nielsen
Download:
URL: http://eprint.iacr.org/2007/215
Search ePrint
Search Google
Abstract: At Crypto 2003 Ishai et al. gave a protocol which given a small number of (possibly extremely inefficient) oblivious transfers implements an essentially unbounded number of oblivious transfers for an additional overhead, per oblivious transfer, of computing and sending only two hash values. This highly efficient protocol is however only passive secure. To get active security, except with probability $2^{-m}$, the protocol had to suffer an additional overhead of a factor $1+m$. We introduce a new approach to adding robustness. For practical security parameters this approach allows to add robustness while suffering only a small constant overhead over the passive secure protocol. As an example we can generate one million oblivious transfers with security $2^{-42}$ with an amortized cost of just $9$ hash values per oblivious transfer.
BibTeX
@misc{eprint-2007-13496,
  title={Extending Oblivious Transfers Efficiently - How to get Robustness Almost for Free},
  booktitle={IACR Eprint archive},
  keywords={cryptographic protocols / oblivious transfer},
  url={http://eprint.iacr.org/2007/215},
  note={ buus@daimi.au.dk 13705 received 6 Jun 2007, last revised 11 Jul 2007},
  author={Jesper Buus Nielsen},
  year=2007
}