Oblivious TLS via Multi-party Computation

Damiano Abram; Ivan Damgård; Peter Scholl; Sven Trieflinger

doi:10.1007/978-3-030-75539-3_3

Oblivious TLS via Multi-party Computation

Damiano Abram, Ivan Damgård, Peter Scholl, Sven Trieflinger

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In this paper, we describe Oblivious TLS: an MPC protocol that we prove UC secure against a majority of actively corrupted parties. The protocol securely implements TLS 1.3. Thus, any party P who runs TLS can communicate securely with a set of servers running Oblivious TLS; P does not need to modify anything, or even be aware that MPC is used.

Applications of this include communication between servers who offer MPC services and clients, to allow the clients to easily and securely provide inputs or receive outputs. Also, an organization could use Oblivious TLS to improve in-house security while seamlessly connecting to external parties.

Our protocol runs in the preprocessing model, and we did a preliminary non-optimized implementation of the on-line phase. In this version, the hand-shake completes in about 1 s. Based on implementation results from other work, performance of the record protocol using the standard AES-GCM can be expected to achieve an online throughput of about 3 MB/s.

Original language	English
Title of host publication	Topics in Cryptology – CT-RSA 2021
Editors	Kenneth Patterson
Place of Publication	Cham
Publisher	Springer
Pages	51-74
ISBN (Electronic)	9783030755393
ISBN (Print)	9783030755386
DOIs	https://doi.org/10.1007/978-3-030-75539-3_3
Publication status	Published - 11 May 2021
Externally published	Yes

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	12704
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Access to Document

10.1007/978-3-030-75539-3_3

Cite this

@inproceedings{2cd1f82a94d74feca6db2c1a91957aec,

title = "Oblivious TLS via Multi-party Computation",

abstract = "In this paper, we describe Oblivious TLS: an MPC protocol that we prove UC secure against a majority of actively corrupted parties. The protocol securely implements TLS 1.3. Thus, any party P who runs TLS can communicate securely with a set of servers running Oblivious TLS; P does not need to modify anything, or even be aware that MPC is used. Applications of this include communication between servers who offer MPC services and clients, to allow the clients to easily and securely provide inputs or receive outputs. Also, an organization could use Oblivious TLS to improve in-house security while seamlessly connecting to external parties. Our protocol runs in the preprocessing model, and we did a preliminary non-optimized implementation of the on-line phase. In this version, the hand-shake completes in about 1 s. Based on implementation results from other work, performance of the record protocol using the standard AES-GCM can be expected to achieve an online throughput of about 3 MB/s.",

author = "Damiano Abram and Ivan Damg{\aa}rd and Peter Scholl and Sven Trieflinger",

year = "2021",

month = may,

day = "11",

doi = "10.1007/978-3-030-75539-3\_3",

language = "English",

isbn = "9783030755386",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "51--74",

editor = "Kenneth Patterson",

booktitle = "Topics in Cryptology – CT-RSA 2021",

address = "United Kingdom",

}

TY - GEN

T1 - Oblivious TLS via Multi-party Computation

AU - Abram, Damiano

AU - Damgård, Ivan

AU - Scholl, Peter

AU - Trieflinger, Sven

PY - 2021/5/11

Y1 - 2021/5/11

N2 - In this paper, we describe Oblivious TLS: an MPC protocol that we prove UC secure against a majority of actively corrupted parties. The protocol securely implements TLS 1.3. Thus, any party P who runs TLS can communicate securely with a set of servers running Oblivious TLS; P does not need to modify anything, or even be aware that MPC is used. Applications of this include communication between servers who offer MPC services and clients, to allow the clients to easily and securely provide inputs or receive outputs. Also, an organization could use Oblivious TLS to improve in-house security while seamlessly connecting to external parties. Our protocol runs in the preprocessing model, and we did a preliminary non-optimized implementation of the on-line phase. In this version, the hand-shake completes in about 1 s. Based on implementation results from other work, performance of the record protocol using the standard AES-GCM can be expected to achieve an online throughput of about 3 MB/s.

AB - In this paper, we describe Oblivious TLS: an MPC protocol that we prove UC secure against a majority of actively corrupted parties. The protocol securely implements TLS 1.3. Thus, any party P who runs TLS can communicate securely with a set of servers running Oblivious TLS; P does not need to modify anything, or even be aware that MPC is used. Applications of this include communication between servers who offer MPC services and clients, to allow the clients to easily and securely provide inputs or receive outputs. Also, an organization could use Oblivious TLS to improve in-house security while seamlessly connecting to external parties. Our protocol runs in the preprocessing model, and we did a preliminary non-optimized implementation of the on-line phase. In this version, the hand-shake completes in about 1 s. Based on implementation results from other work, performance of the record protocol using the standard AES-GCM can be expected to achieve an online throughput of about 3 MB/s.

UR - http://dx.doi.org/10.1007/978-3-030-75539-3_3

U2 - 10.1007/978-3-030-75539-3_3

DO - 10.1007/978-3-030-75539-3_3

M3 - Conference contribution

SN - 9783030755386

T3 - Lecture Notes in Computer Science

SP - 51

EP - 74

BT - Topics in Cryptology – CT-RSA 2021

A2 - Patterson, Kenneth

PB - Springer

CY - Cham

ER -

Oblivious TLS via Multi-party Computation

Abstract

Publication series

Access to Document

Other files and links

Fingerprint

Cite this