How to garble arithmetic circuits

Benny Applebaum; Yuval Ishai; Eyal Kushilevitz

doi:10.1137/120875193

How to garble arithmetic circuits

Benny Applebaum, Yuval Ishai, Eyal Kushilevitz

Tel Aviv University, Technion - Israel Institute of Technology

Research output: Contribution to journal › Article › peer-review

Abstract

Yao's garbled circuit construction transforms a boolean circuit C : {0, 1}n →{0, 1}m into a "garbled circuit" Ĉ along with n pairs of k-bit keys, one for each input bit, such that Ĉ together with the n keys corresponding to an input x reveal C(x) and no additional information about x. The garbled circuit construction is a central tool for constant-round secure computation and has several other applications. Motivated by these applications, we suggest an efficient arithmetic variant of Yao's original construction. Our construction transforms an arithmetic circuit C : Zn → Zm over integers from a bounded (but possibly exponential) range into a garbled circuit Ĉ along with n affine functions Li : Z → Zk such that °C together with the n integer vectors Li(xi) reveal C(x) and no additional information about x. The security of our construction relies on the intractability of the learning with errors problem.

Original language	English
Pages (from-to)	905-929
Number of pages	25
Journal	SIAM Journal on Computing
Volume	43
Issue number	2
DOIs	https://doi.org/10.1137/120875193
State	Published - 2014

Keywords

Arithmetic circuits
Cryptography
Garbled circuits
Secure multiparty computation

All Science Journal Classification (ASJC) codes

General Computer Science
General Mathematics

Access to Document

10.1137/120875193

Cite this

@article{8516f9fdbeaa4e83a38a19d0beb3b676,

title = "How to garble arithmetic circuits",

abstract = "Yao's garbled circuit construction transforms a boolean circuit C : {0, 1}n →{0, 1}m into a {"}garbled circuit{"} Ĉ along with n pairs of k-bit keys, one for each input bit, such that Ĉ together with the n keys corresponding to an input x reveal C(x) and no additional information about x. The garbled circuit construction is a central tool for constant-round secure computation and has several other applications. Motivated by these applications, we suggest an efficient arithmetic variant of Yao's original construction. Our construction transforms an arithmetic circuit C : Zn → Zm over integers from a bounded (but possibly exponential) range into a garbled circuit Ĉ along with n affine functions Li : Z → Zk such that °C together with the n integer vectors Li(xi) reveal C(x) and no additional information about x. The security of our construction relies on the intractability of the learning with errors problem.",

keywords = "Arithmetic circuits, Cryptography, Garbled circuits, Secure multiparty computation",

author = "Benny Applebaum and Yuval Ishai and Eyal Kushilevitz",

year = "2014",

doi = "10.1137/120875193",

language = "الإنجليزيّة",

volume = "43",

pages = "905--929",

journal = "SIAM Journal on Computing",

issn = "0097-5397",

publisher = "Society for Industrial and Applied Mathematics Publications",

number = "2",

}

TY - JOUR

T1 - How to garble arithmetic circuits

AU - Applebaum, Benny

AU - Ishai, Yuval

AU - Kushilevitz, Eyal

PY - 2014

Y1 - 2014

N2 - Yao's garbled circuit construction transforms a boolean circuit C : {0, 1}n →{0, 1}m into a "garbled circuit" Ĉ along with n pairs of k-bit keys, one for each input bit, such that Ĉ together with the n keys corresponding to an input x reveal C(x) and no additional information about x. The garbled circuit construction is a central tool for constant-round secure computation and has several other applications. Motivated by these applications, we suggest an efficient arithmetic variant of Yao's original construction. Our construction transforms an arithmetic circuit C : Zn → Zm over integers from a bounded (but possibly exponential) range into a garbled circuit Ĉ along with n affine functions Li : Z → Zk such that °C together with the n integer vectors Li(xi) reveal C(x) and no additional information about x. The security of our construction relies on the intractability of the learning with errors problem.

AB - Yao's garbled circuit construction transforms a boolean circuit C : {0, 1}n →{0, 1}m into a "garbled circuit" Ĉ along with n pairs of k-bit keys, one for each input bit, such that Ĉ together with the n keys corresponding to an input x reveal C(x) and no additional information about x. The garbled circuit construction is a central tool for constant-round secure computation and has several other applications. Motivated by these applications, we suggest an efficient arithmetic variant of Yao's original construction. Our construction transforms an arithmetic circuit C : Zn → Zm over integers from a bounded (but possibly exponential) range into a garbled circuit Ĉ along with n affine functions Li : Z → Zk such that °C together with the n integer vectors Li(xi) reveal C(x) and no additional information about x. The security of our construction relies on the intractability of the learning with errors problem.

KW - Arithmetic circuits

KW - Cryptography

KW - Garbled circuits

KW - Secure multiparty computation

UR - http://www.scopus.com/inward/record.url?scp=84899630038&partnerID=8YFLogxK

U2 - 10.1137/120875193

DO - 10.1137/120875193

M3 - مقالة

SN - 0097-5397

VL - 43

SP - 905

EP - 929

JO - SIAM Journal on Computing

JF - SIAM Journal on Computing

IS - 2

ER -

How to garble arithmetic circuits

Abstract

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this