Embedded SFE: Offloading Server and Network Using Hardware Tokens

Järvinen, Kimmo; Kolesnikov, Vladimir; Sadeghi, Ahmad-Reza; Schneider, Thomas

doi:10.1007/978-3-642-14577-3_17

Cited by 34 publications

(42 citation statements)

References 25 publications

(34 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Further, evaluating garbled circuits (our main application) involves transferring them (megabytes or gigabytes of data, especially in the malicious model) to the client. In large-scale deployment of SFE (e.g., by banks and service providers), these communication costs cannot be afforded; fortunately, they can be avoided by generating circuits from a seed by the server-issued token [20]. This solution requires reliance on tamper-proof/tamper-resistant tokens, forces their use, fits well with our setting, and further justifies it.…”

Section: Introductionmentioning

confidence: 52%

Truly Efficient String Oblivious Transfer Using Resettable Tamper-Proof Tokens

Kolesnikov¹

2010

Theory of Cryptography

Self Cite

View full text Add to dashboard Cite

Abstract. SFE requires expensive public key operations for each input bit of the function. This cost can be avoided by using tamper-proof hardware. However, all known efficient techniques require the hardware to have long-term secure storage and to be resistant to reset or duplication attacks. This is due to the intrinsic use of counters or erasures. Known techniques that use resettable tokens rely on expensive primitives, such as generic concurrent ZK, and are out of reach of practice.We propose a truly efficient String Oblivious Transfer (OT) technique relying on resettable (actually, stateless) tamper-proof token. Our protocols require between 6 and 27 symmetric key operations, depending on the model. Our OT is secure against covert sender and malicious receiver, and is sequentially composable.If the token is semi-honest (e.g. if it is provided by a trusted entity, but adversarily initialized), then our protocol is secure against malicious adversaries in concurrent execution setting.Only one party is required to provide the token, which makes it appropriate for typical asymmetric client-server scenarios (banking, TV, etc.)

show abstract

Section: Introductionmentioning

confidence: 52%

Truly Efficient String Oblivious Transfer Using Resettable Tamper-Proof Tokens

Kolesnikov¹

2010

Theory of Cryptography

Self Cite

View full text Add to dashboard Cite

show abstract

“…The authors propose to use a tamper-proof hardware token which generates GCs in a setup phase that are afterwards evaluated in parallel by the cloud. The token receives the description of a boolean circuit and generates the corresponding GC using a constant amount of memory (using the protocol of [22]). The hardware token is integrated into the infrastructure of the cloud service provider either in form of a Smartcard provided by the client, or as a cryptographic co-processor.…”

Section: Architectures For Secure Cloud Computingmentioning

confidence: 99%

“…For each 2-input non-XOR gate the garbled table has size ≈ 4t bits, where t is the symmetric security parameter (e.g., t = 128); creation of the garbled table requires 4 invocations of a cryptographic hash function (e.g., SHA-256) and evaluation needs 1 invocation. As shown in [22], generation of GCs requires only a constant amount of memory (independent of the size of the evaluated function) and only symmetric cryptographic operations (e.g., SHA-256). The implementation results of [31] show that evaluation of GCs can be performed efficiently on today's hardware: GC evaluation of the reasonably large AES functionality (22,546 XOR; 11,334 non-XOR gates) took 2s on a single core of an Intel Core 2 Duo with 3.0 GHz.…”

Section: Garbled Circuits (Gc)mentioning

confidence: 99%

Twin Clouds: Secure Cloud Computing with Low Latency

Bugiel

Nürnberger

Sadeghi

et al. 2011

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Cloud computing promises a cost effective enabling technology to outsource storage and massively parallel computations. However, existing approaches for provably secure outsourcing of data and arbitrary computations are either based on tamper-proof hardware or fully homomorphic encryption. The former approaches are not scaleable, while the latter ones are currently not efficient enough to be used in practice.We propose an architecture and protocols that accumulate slow secure computations over time and provide the possibility to query them in parallel on demand by leveraging the benefits of cloud computing. In our approach, the user communicates with a resource-constrained Trusted Cloud (either a private cloud or built from multiple secure hardware modules) which encrypts algorithms and data to be stored and later on queried in the powerful but untrusted Commodity Cloud. We split our protocols such that the Trusted Cloud performs security-critical precomputations in the setup phase, while the Commodity Cloud computes the time-critical query in parallel under encryption in the query phase.

show abstract

“…(In particular, parties can create the tamper-proof tokens themselves rather than obtain them from a trusted provider as in [34], and there is no assumption regarding what code a malicious party puts in a token it creates.) Secure hardware may also potentially result in more efficient protocols; indeed, it has been suggested for improving efficiency in other settings (e.g., [18,14,15,6,31,38,42,23]). In addition to introducing the model, Katz showed that tamper-proof hardware tokens can be used for universally composable computation of arbitrary functions under additional cryptographic assumptions.…”

Section: Introductionmentioning

confidence: 99%

(Efficient) Universally Composable Oblivious Transfer Using a Minimal Number of Stateless Tokens

et al. 2018

View full text Add to dashboard Cite

We continue the line of work initiated by Katz (Eurocrypt 2007) on using tamper-proof hardware tokens for universally composable secure computation. As our main result, we show an oblivious-transfer (OT) protocol in which two parties each create and transfer a single, stateless token and can then run an unbounded number of OTs. We also show a more efficient protocol, based only on standard symmetric-key primitives (block ciphers and collision-resistant hash functions), that can be used if a bounded number of OTs suffice.Motivated by this result, we investigate the number of stateless tokens needed for universally composable OT. We prove that our protocol is optimal in this regard for constructions making black-box use of the tokens (in a sense we define). We also show that nonblack-box techniques can be used to obtain a construction using only a single stateless token.

show abstract

Embedded SFE: Offloading Server and Network Using Hardware Tokens

Cited by 34 publications

References 25 publications

Truly Efficient String Oblivious Transfer Using Resettable Tamper-Proof Tokens

Truly Efficient String Oblivious Transfer Using Resettable Tamper-Proof Tokens

Twin Clouds: Secure Cloud Computing with Low Latency

(Efficient) Universally Composable Oblivious Transfer Using a Minimal Number of Stateless Tokens

Contact Info

Product

Resources

About