Candidate iO from Homomorphic Encryption Schemes

Zvika Brakerski, Nico Doettling, Sanjam Garg, Giulio Malavolta

Research output: Contribution to journalArticlepeer-review

Abstract

We propose a new approach to construct general-purpose indistinguishability obfuscation (iO). Our construction is obtained via a new intermediate primitive that we call split fully homomorphic encryption (split FHE), which we show to be sufficient for constructing iO. Specifically, split FHE is FHE where decryption takes the following two-step syntactic form: (i) a secret decryption step that uses the secret key and produces a hint which is (asymptotically) shorter than the length of the encrypted message, and (ii) a public decryption step that only requires the ciphertext and the previously generated hint (and not the entire secret key) and recovers the encrypted message. In terms of security, the hints for a set of ciphertexts should not allow one to violate semantic security for any other ciphertexts. Next, we show a generic candidate construction of split FHE based on three building blocks: (i) A standard FHE scheme with linear decrypt-and-multiply (which can be instantiated with essentially all LWE-based constructions), (ii) a linearly homomorphic encryption scheme with short decryption hints (such as the Damgard-Jurik encryption scheme, based on the DCR problem), and (iii) a cryptographic hash function (which can be based on a variety of standard assumptions). Our approach is heuristic in the sense that our construction is not provably secure and makes implicit assumptions about the interplay between these underlying primitives. We show evidence that this construction is secure by providing an argument in an appropriately defined oracle model. We view our construction as a big departure from the state-of-the-art constructions, and it is in fact quite simple.
Original languageEnglish
Article number27
Number of pages41
JournalJournal of Cryptology
Volume36
Issue number3
DOIs
StatePublished - 8 Jun 2023

All Science Journal Classification (ASJC) codes

  • Software
  • Applied Mathematics
  • Computer Science Applications

Fingerprint

Dive into the research topics of 'Candidate iO from Homomorphic Encryption Schemes'. Together they form a unique fingerprint.

Cite this