David and Goliath commitments: UC computation for asymmetric parties using tamper-proof hardware

Authors:
Tal Moran;Gil Segev
Affiliations:
Department of Computer Science and Applied Mathematics, Weizmann Institute of Science, Rehovot, Israel;Department of Computer Science and Applied Mathematics, Weizmann Institute of Science, Rehovot, Israel
Venue:
EUROCRYPT'08 Proceedings of the theory and applications of cryptographic techniques 27th annual international conference on Advances in cryptology
Year:
2008

Citing 15
Cited 19

Untraceable off-line cash in wallet with observers

CRYPTO '93 Proceedings of the 13th annual international cryptology conference on Advances in cryptology
Improved privacy in wallets with observers

EUROCRYPT '93 Workshop on the theory and application of cryptographic techniques on Advances in cryptology
A Parallel Repetition Theorem

SIAM Journal on Computing
Universally composable two-party and multi-party secure computation

STOC '02 Proceedings of the thiry-fourth annual ACM symposium on Theory of computing
Wallet Databases with Observers

CRYPTO '92 Proceedings of the 12th Annual International Cryptology Conference on Advances in Cryptology
Universally Composable Security: A New Paradigm for Cryptographic Protocols

FOCS '01 Proceedings of the 42nd IEEE symposium on Foundations of Computer Science
Extremal Graph Theory

Extremal Graph Theory
Universally Composable Protocols with Relaxed Set-Up Assumptions

FOCS '04 Proceedings of the 45th Annual IEEE Symposium on Foundations of Computer Science
On the Limitations of Universally Composable Two-Party Computation Without Set-Up Assumptions

Journal of Cryptology
Achieving oblivious transfer using weakened security assumptions

SFCS '88 Proceedings of the 29th Annual Symposium on Foundations of Computer Science
Efficient cryptographic protocols based on noisy channels

EUROCRYPT'97 Proceedings of the 16th annual international conference on Theory and application of cryptographic techniques
On the (im)possibility of basing oblivious transfer and bit commitment on weakened security assumptions

EUROCRYPT'99 Proceedings of the 17th international conference on Theory and application of cryptographic techniques
Universally composable security with global setup

TCC'07 Proceedings of the 4th conference on Theory of cryptography
Cryptography in the multi-string model

CRYPTO'07 Proceedings of the 27th annual international cryptology conference on Advances in cryptology
Basing cryptographic protocols on tamper-evident seals

ICALP'05 Proceedings of the 32nd international conference on Automata, Languages and Programming

One-Time Programs

CRYPTO 2008 Proceedings of the 28th Annual conference on Cryptology: Advances in Cryptology
Universally Composable Multiparty Computation with Partially Isolated Parties

TCC '09 Proceedings of the 6th Theory of Cryptography Conference on Theory of Cryptography
Improving Cut-and-Choose in Verifiable Encryption and Fair Exchange Protocols Using Trusted Computing Technology

Proceedings of the 23rd Annual IFIP WG 11.3 Working Conference on Data and Applications Security XXIII
Memory Leakage-Resilient Encryption Based on Physically Unclonable Functions

ASIACRYPT '09 Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Interactive locking, zero-knowledge PCPs, and unconditional cryptography

CRYPTO'10 Proceedings of the 30th annual conference on Advances in cryptology
Eperio: mitigating technical complexity in cryptographic election verification

EVT/WOTE'10 Proceedings of the 2010 international conference on Electronic voting technology/workshop on trustworthy elections
Secure set intersection with untrusted hardware tokens

CT-RSA'11 Proceedings of the 11th international conference on Topics in cryptology: CT-RSA 2011
Unconditional and composable security using a single stateful tamper-proof hardware token

TCC'11 Proceedings of the 8th conference on Theory of cryptography
Bringing people of different beliefs together to do UC

TCC'11 Proceedings of the 8th conference on Theory of cryptography
Secure outsourced computation

AFRICACRYPT'11 Proceedings of the 4th international conference on Progress in cryptology in Africa
On obfuscating programs with tamper-proof hardware

Inscrypt'10 Proceedings of the 6th international conference on Information security and cryptology
Physically uncloneable functions in the universal composition framework

CRYPTO'11 Proceedings of the 31st annual conference on Advances in cryptology
Leakage-resilient zero knowledge

CRYPTO'11 Proceedings of the 31st annual conference on Advances in cryptology
Founding cryptography on tamper-proof hardware tokens

TCC'10 Proceedings of the 7th international conference on Theory of Cryptography
Embedded SFE: offloading server and network using hardware tokens

FC'10 Proceedings of the 14th international conference on Financial Cryptography and Data Security
BiTR: built-in tamper resilience

ASIACRYPT'11 Proceedings of the 17th international conference on The Theory and Application of Cryptology and Information Security
On efficient zero-knowledge PCPs

TCC'12 Proceedings of the 9th international conference on Theory of Cryptography
Several weak bit-commitments using seal-once tamper-evident devices

ProvSec'12 Proceedings of the 6th international conference on Provable Security
Languages with efficient zero-knowledge PCPs are in SZK

TCC'13 Proceedings of the 10th theory of cryptography conference on Theory of Cryptography

Quantified Score

Hi-index	0.00

Visualization

Abstract

Designing secure protocols in the Universal Composability (UC) framework confers many advantages. In particular, it allows the protocols to be securely used as building blocks in more complex protocols, and assists in understanding their security properties. Unfortunately, most existing models in which universally composable computation is possible (for useful functionalities) require a trusted setup stage. Recently, Katz [Eurocrypt '07] proposed an alternative to the trusted setup assumption: tamper-proof hardware. Instead of trusting a third party to correctly generate the setup information, each party can create its own hardware tokens, which it sends to the other parties. Each party is only required to trust that its own tokens are tamper-proof. Katz designed a UC commitment protocol that requires both parties to generate hardware tokens. In addition, his protocol relies on a specific number-theoretic assumption. In this paper, we construct UC commitment protocols for "David" and "Goliath": we only require a single party (Goliath) to be capable of generating tokens. We construct a version of the protocol that is secure for computationally unbounded parties, and a more efficient version that makes computational assumptions only about David (we require only the existence of a one-way function). Our protocols are simple enough to be performed by hand on David's side. These properties may allow such protocols to be used in situations which are inherently asymmetric in real-life, especially those involving individuals versus large organizations. Classic examples include voting protocols (voters versus "the government") and protocols involving private medical data (patients versus insurance-agencies or hospitals).