## Fully Key-Homomorphic Encryption, Arithmetic Circuit ABE and Compact Garbled Circuits

Speaker: Sergey Gorbunov , MIT

Date: Friday, May 02, 2014

Time: 10:30 AM to 12:00 PM Note: all times are in the Eastern Time Zone

Public: Yes

Location: 32-G449

Event Type:

Room Description:

Host: Vinod Vaikuntanathan, CIS, TOC, CSAIL, MIT

Contact: Holly A Jones, hjones01@csail.mit.edu

Relevant URL: http://toc.csail.mit.edu/node/566

Speaker URL: None

Speaker Photo:
None

Reminders to: cis-seminars@csail.mit.edu, seminars@csail.mit.edu

Reminder Subject: TALK: Fully Key-Homomorphic Encryption, Arithmetic Circuit ABE and Compact Garbled Circuits

We construct the first (key-policy) attribute-based encryption (ABE)
system with short secret keys: the size of keys in our system depends
only on the depth of the policy circuit, not its size. Our constructions
extend naturally to arithmetic circuits with arbitrary fan-in gates
thereby further reducing the circuit depth. Building on this ABE system
we obtain the first reusable circuit garbling scheme that produces
garbled circuits whose size is the same as the original circuit
plus an additive $poly(k,d)$ bits, where $k$ is the security parameter
and $d$ is the circuit depth. All previous constructions incurred a
multiplicative $poly(k)$ blowup.

We construct our attribute-based system using a new mechanism we call
fully key-homomorphic encryption which is a public-key system that
lets anyone translate a ciphertext encrypted under a public-key
$\vec{pk}=(pk_1,...,pk_n)$ into a ciphertext encrypted under
the public-key $(f(\vec{pk}),f)$ of the same plaintext, for any
efficiently computable $f$. We show that this mechanism gives an ABE
with short keys. Security of our construction relies on the subexponential
hardness of the learning with errors problem.

We also present a second (key-policy) ABE, using multilinear maps,
with short ciphertexts: an encryption to an attribute vector $\vec{x}$
is the size of $\vec{x}$ plus $poly(k,d)$ additional bits. This gives a
reusable circuit garbling scheme where the garbled input is short.

Joint work with Dan Boneh, Craig Gentry, Shai Halevi, Valeria
Nikolaenko, Gil Segev, Vinod Vaikuntanathan, and Dhinakaran Vinayagamurthy

Research Areas:

Impact Areas:

See other events that are part of the Cryptography and Information Security Seminar Seminars Fall 2013 / Spring 2014.

Created by Holly A Jones at Friday, April 25, 2014 at 10:13 AM.