Abstract
An adaptive k-out-of-N Priced Oblivious Transfer (POT) scheme is a two-party protocol between a vendor and a buyer. The vendor sells a set of messages m1, . . . ,mN with prices p1, . . . , pN . In each transfer phase i = 1, . . . , k, the buyer chooses a selection value σi ∈ {1, . . . ,N} and interacts with the vendor to buy message m σi in such a way that the vendor does not learn σ i and the buyer does not get any information about the other messages.
We present a POT scheme secure under pairing-related assumptions in the standard model. Our scheme is universally composable and thus, unlike previous results, preserves security when it is executed with multiple protocol instances that run concurrently in an adversarially controlled way. Furthermore, after an initialization phase of complexity O(N), each transfer phase is optimal in terms of rounds of communication and it has constant computational and communication cost. To achieve these properties, we design the first efficient non-interactive proof of knowledge that a value lies in a given interval we are aware of.
We present a POT scheme secure under pairing-related assumptions in the standard model. Our scheme is universally composable and thus, unlike previous results, preserves security when it is executed with multiple protocol instances that run concurrently in an adversarially controlled way. Furthermore, after an initialization phase of complexity O(N), each transfer phase is optimal in terms of rounds of communication and it has constant computational and communication cost. To achieve these properties, we design the first efficient non-interactive proof of knowledge that a value lies in a given interval we are aware of.
Original language | English |
---|---|
Title of host publication | Pairing-Based Cryptography - Pairing 2009 |
Publisher | Springer |
Pages | 231-247 |
Number of pages | 17 |
ISBN (Electronic) | 978-3-642-03298-1 |
ISBN (Print) | 978-3-642-03297-4 |
DOIs | |
Publication status | Published - 2009 |
Event | 3rd International Conference on Pairing-based Cryptography - Stanford University, Stanford, United States Duration: 12 Aug 2009 → 14 Aug 2009 http://cseweb.ucsd.edu/conferences/pairing09/ |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Volume | 5671 |
Conference
Conference | 3rd International Conference on Pairing-based Cryptography |
---|---|
Abbreviated title | Pairing 2009 |
Country/Territory | United States |
City | Stanford |
Period | 12/08/09 → 14/08/09 |
Internet address |