On the (im)possibility of obfuscating programs

Barak, Boaz; Goldreich, Oded; Impagliazzo, Russell; Rudich, Steven; Sahai, Amit; Vadhan, Salil; Yang, Ke

doi:10.1145/2160158.2160159

Cited by 357 publications

(35 citation statements)

References 47 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Due to its diverse and far reaching applications, program obfuscation has been long considered as a holy grail of cryptography. However, hopes of attaining highly secure obfuscation were diminished in 2011 by an impossibility proof [14] (note, however that weaker security notions are attainable [115]). The situation is completely different in the quantum case, since the proof technique is not applicable (essentially due to the nocloning theorem).…”

Section: Conclusion and Open Problemsmentioning

confidence: 99%

Quantum cryptography beyond quantum key distribution

Broadbent

Schaffner

2015

Des. Codes Cryptogr.

187

112

View full text Add to dashboard Cite

Quantum cryptography is the art and science of exploiting quantum mechanical effects in order to perform cryptographic tasks. While the most well-known example of this discipline is quantum key distribution (QKD), there exist many other applications such as quantum money, randomness generation, secure two-and multi-party computation and delegated quantum computation. Quantum cryptography also studies the limitations and challenges resulting from quantum adversaries-including the impossibility of quantum bit commitment, the difficulty of quantum rewinding and the definition of quantum security models for classical primitives. In this review article, aimed primarily at cryptographers unfamiliar with the quantum world, we survey the area of theoretical quantum cryptography, with an emphasis on the constructions and limitations beyond the realm of QKD.

show abstract

Section: Conclusion and Open Problemsmentioning

confidence: 99%

Quantum cryptography beyond quantum key distribution

Broadbent

Schaffner

2015

Des. Codes Cryptogr.

187

112

View full text Add to dashboard Cite

show abstract

“…Indistinguishability Obfuscation (iO) was proposed in [1,2]. Informally, it requires that the obfuscations of two distinct but equal-sized programs, which implement identical functionality, are computationally indistinguishable.…”

Section: Indistinguishability Obfuscation (Io) and Puncturable Prfsmentioning

confidence: 99%

Simulation-Based Selective Opening CCA Security for PKE from Key Encapsulation Mechanisms

Liu

Paterson

2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. We study simulation-based, selective opening security against chosen-ciphertext attacks (SIM-SO-CCA security) for public key encryption (PKE). In a selective opening, chosen-ciphertext attack (SO-CCA), an adversary has access to a decryption oracle, sees a vector of ciphertexts, adaptively chooses to open some of them, and obtains the corresponding plaintexts and random coins used in the creation of the ciphertexts. The SIM-SO-CCA notion captures the security of unopened ciphertexts with respect to probabilistic polynomial-time (ppt) SO-CCA adversaries in a semantic way: what a ppt SO-CCA adversary can compute can also be simulated by a ppt simulator with access only to the opened messages. Building on techniques used to achieve weak deniable encryption and non-committing encryption, Fehr et al. (Eurocrypt 2010) presented an approach to constructing SIM-SO-CCA secure PKE from extended hash proof systems (EHPSs), collision-resistant hash functions and an information-theoretic primitive called Cross Authentication Codes (XACs). We generalize their approach by introducing a special type of Key Encapsulation Mechanism (KEM) and using it to build SIM-SO-CCA secure PKE. We investigate what properties are needed from the KEM to achieve SIM-SO-CCA security. We also give three instantiations of our construction. The first uses hash proof systems, the second relies on the n-Linear assumption, and the third uses indistinguishability obfuscation (iO) in combination with extracting, puncturable Pseudo-Random Functions in a similar way to Sahai and Waters (STOC 2014). Our results establish the existence of SIM-SO-CCA secure PKE assuming only the existence of one-way functions and iO. This result further highlights the simplicity and power of iO in constructing different cryptographic primitives.

show abstract

“…Let C (the counterfeiter) be a quantum circuit of size poly (n) that takes k public as input 11 and does the following:…”

Section: Cryptographymentioning

confidence: 99%

“…10 We indulge in slight abuse of notation, since if Sign is randomized then the signature need not be a function of k private and x. 11 Actually, for our security proofs, it suffices to consider a weaker attack model, in which C only receives k public at the same time as it receives w 1 , . .…”

Section: Cryptographymentioning

confidence: 99%