ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2017, Vol. 54 ›› Issue (10): 2215-2223.doi: 10.7544/issn1000-1239.2017.20170463

• 信息安全 • 上一篇    下一篇

一个单服务器辅助的高效n取k茫然传输协议

赵圣楠1,蒋瀚1,魏晓超2,柯俊明1,赵明昊1   

  1. 1(山东大学计算机科学与技术学院 济南 250101); 2(山东师范大学信息科学与工程学院 济南 250358) (yucheng_zhao@163.com)
  • 出版日期: 2017-10-01
  • 基金资助: 
    国家自然科学基金项目(61572294);国家自然科学基金青年科学基金项目(61602287);国家自然科学基金重点项目(61632020);山东大学基本科研业务费专项资金项目(2017JC019)

An Efficient Single Server-Aided k-out-of-n Oblivious Transfer Protocol

Zhao Shengnan1, Jiang Han1, Wei Xiaochao2, Ke Junming1, Zhao Minghao1   

  1. 1(School of Computer Science and Technology, Shandong University, Jinan 250101); 2(School of Information Science and Engineering, Shandong Normal University, Jinan 250358)
  • Online: 2017-10-01

摘要: 茫然传输(oblivious transfer, OT)是一种用于隐藏数据接收者选择信息的密码学原语,作为构建高层多方密码协议的基本工具,在诸多具体问题中都有着重要应用.在k-out-of-n OT(OT\+k\-n)中,接收者能够以茫然的方式,在n个数据中有选择地取得其中的k个.通常OT\+k\-n的构造需要大量的群指数操作,对于计算能力受限的嵌入式设备而言依然是极大的负担.随着云计算的发展,可以利用云服务提供商的计算能力和高速专属网络来辅助复杂密码原语的实现.在此提出了一个高效单服务器辅助的n取k茫然传输协议,将主要群指数操作外包给云服务器来实现.该方案利用秘密分享等基础密码学原语构建,其安全性基于判定性Diffie-Hellamn(decisional Diffie-Hellamn, DDH)困难问题,在非合谋半诚实模型下可证明安全,同时可以保证云服务器的数据隐私性,给出该方案的具体描述及其详细的安全性证明.作为云环境下的一种基础密码学原语,所提出的云服务器辅助的茫然传输协议,在设计云辅助的通用安全计算协议及构建高效安全云服务应用软件等方面将起到重要作用.

关键词: 茫然传输, 外包计算, 判定性Diffie-Hellamn假设, 半诚实模型, 安全多方计算

Abstract: Oblivious transfer (OT) is a cryptographic primitive used for choice information hiding for the receiver. As a basic tool for high-level multi-party cryptographic protocol construction, it plays an important role in numerous specific applications. In the k-out-of-n OT(OT\+k\-n), the receiver acquires k selections among the n choice in an oblivious manner. Generally, the construction of the OT\+k\-n involves lots of group exponential operations, which brings a heavy burden for embedded devices with limited computational capabilities. With the proliferation of cloud computing, it is feasible to implement complex cryptographic primitives with the support of powerful computing recourse and high-speed dedicated network provided by the cloud service provider (CSP). In this paper, we propose a service-assisted k-out-of-n OT protocol in single server architecture, which outsources the vast majority of exponentiation operations to the cloud. This scheme is constructed with secret sharing and other fundamental public-key primitives, and it achieves provable security on none-collusion semi-honest model under the decisional Diffie-Hellamn (DDH) hard problem; meanwhile it ensures data privacy against the cloud server. Besides, a detailed description of scheme construction and security proof is presented in the context. As a basic cryptographic primitive in cloud environment, the single server-added oblivious transfer protocol will play an important role in designs of general cloud-assisted multi-party computation protocol as well as developments of secure and efficient cloud service software.

Key words: oblivious transfer (OT), outsourcing computing, decisional Diffie-Hellamn (DDH) assumption, semi-honest model, secure multi-party computation

中图分类号: