Presentation is loading. Please wait.

Presentation is loading. Please wait.

Public Key Encryption that Allows PIR Queries Dan Boneh 、 Eyal Kushilevitz 、 Rafail Ostrovsky and William E. Skeith Crypto 2007.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Public Key Encryption that Allows PIR Queries Dan Boneh 、 Eyal Kushilevitz 、 Rafail Ostrovsky and William E. Skeith Crypto 2007."— Presentation transcript:

1 Public Key Encryption that Allows PIR Queries Dan Boneh 、 Eyal Kushilevitz 、 Rafail Ostrovsky and William E. Skeith Crypto 2007

2 Private Information Retrieval (PIR) x=x 1,x 2,..., x n {0,1} n SERVER i {1,…n} xixi USER ij ? 7 4 3 n

3 PIR allows a user to retrieve an item from a server in possession of a database without revealing which item she is retrieving. existing PIR solutions –retrieving a (plain or encrypted) record of the database by address –search by keyword in a non-encrypted data

4 Query Answer

5 Outline Introduction Tools: –Bloom Filter –Modifying Encrypted Data in a Communication Efficient Way Definition Main Construction

6 Introduction Interesting in: –communication-efficient –complete privacy. Technique: –Receiver: creates a public key. –Sender: message M is accompanied by an “encoded” list of keywords.

7 Bloom Filters Basic idea: h 1 (a) h 2 (a) h 3 (a) h k (a) T0 11 1 1 … … … … … 23456m … 011 Suppose

8 Bloom Filters (cont.) What to store : –certain element is in a set – value which are associated to the element in the set. Definition. As same to above. But together with a collection of sets,,where. Then to insert a pair (a, v) into this structure, v is added to for all. The set of values associated with is simply.

9 h 1 (a 1 ) h 2 (a 2 ) h k (a k ) Insert (a 1, v 1 ) then (a 2, v 2 ) … check V1V1 V1 B1B1 B2B2 B3B3 BmBm ……. V 1, V 2 V1V1 V2V2 V3V3 V 2, V 3 V 1, V 3 h 1 (a 1 ) h 2 (a 2 ) h k (a k ) ……. {V 1, V 2 } {V 1 } {V 1, V 3 } ∩ ∩ || V1V1

10 Modifying Encrypted Data in a Communication Efficient Way Based on group homomorphic encryption with communication O(√n). Technique : – : database (not encrypted) –(i*,j*): the position of particular element –α: the value we want to add. –v, w: two vector of length √n where –Here δ kl = 1 when k=l and 0 otherwise –Then

11 Modifying Encrypted Data in a Communication Efficient Way (cont.) Parameters: –(K, E, D): a CPA-secure public-key encryption – : an array of ciphertexts which is held by a party S. –Define F(X, Y, Z)=X+YZ. By our assumption, there exists some such that

12 Modifying Encrypted Data in a Communication Efficient Way (cont.) Protocol: Modify U,S (l, α) where l and α are private input to U. 1.U compute i *, j * as the coordinates of l (i.e., i * and j * are quotient and remainder of l/n, respectively) 2.U sends to S where all values are encrypted under A public. 3.S computes for all, and replaces each c ij with the corresponding resulting ciphertext.

13 Definition Parameters: –X: message sending parties. –Y: message receiving party. –S: server/storage provider. Definition 1:probabilistic polynomial time algorithms and protocols: –KeyGen(1 S ) –Send X,S (M, K, A public ) –Retrieve Y,S (w, A private )

14 Main Construction S maintains in its storage space encryptions of the buffers, denote these encryptions For, we defined KeyGen(k) :Run K(1 s ), generate A public and A private.

15 Send X,S (M, K, A public ) Storage ProviderSender Message Buffer Bloom Filter Buffer ρ ρ γ copies of the address ρ ρ ρ ρ ρ Modify X,S (x, α)

16 Retrieve Y,S (w, A private ) ReceiverStorage Provider PIR Query Message Buffer Bloom Filter Buffer PIR Query Modify y,S (x, α)

Download ppt "Public Key Encryption that Allows PIR Queries Dan Boneh 、 Eyal Kushilevitz 、 Rafail Ostrovsky and William E. Skeith Crypto 2007."

Similar presentations

Constant-Round Private Database Queries Nenad Dedic and Payman Mohassel Boston UniversityUC Davis.

Constant-Round Private Database Queries Nenad Dedic and Payman Mohassel Boston UniversityUC Davis.
Hash Functions A hash function takes data of arbitrary size and returns a value in a fixed range. If you compute the hash of the same data at different.

Hash Functions A hash function takes data of arbitrary size and returns a value in a fixed range. If you compute the hash of the same data at different.
Multi-Query Computationally-Private Information Retrieval with Constant Communication Rate Jens Groth, University College London Aggelos Kiayias, University.

Multi-Query Computationally-Private Information Retrieval with Constant Communication Rate Jens Groth, University College London Aggelos Kiayias, University.
Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,

Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,
Improved Efficiency for Private Stable Matching Matthew Franklin, Mark Gondree, and Payman Mohassel University of California, Davis 02/07/07 - Session.

Improved Efficiency for Private Stable Matching Matthew Franklin, Mark Gondree, and Payman Mohassel University of California, Davis 02/07/07 - Session.
CS555Topic 241 Cryptography CS 555 Topic 24: Secure Function Evaluation.

CS555Topic 241 Cryptography CS 555 Topic 24: Secure Function Evaluation.
Lecture 15 Private Information Retrieval Stefan Dziembowski www.dziembowski.net MIM UW 25.01.13ver 1.0.

Lecture 15 Private Information Retrieval Stefan Dziembowski MIM UW ver 1.0.
Peer-to-Peer Distributed Search. Peer-to-Peer Networks A pure peer-to-peer network is a collection of nodes or peers that: 1.Are autonomous: participants.

Peer-to-Peer Distributed Search. Peer-to-Peer Networks A pure peer-to-peer network is a collection of nodes or peers that: 1.Are autonomous: participants.
1 Introduction to Computability Theory Lecture15: Reductions Prof. Amos Israeli.

1 Introduction to Computability Theory Lecture15: Reductions Prof. Amos Israeli.
1 Introduction to Computability Theory Lecture12: Reductions Prof. Amos Israeli.

1 Introduction to Computability Theory Lecture12: Reductions Prof. Amos Israeli.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
YSLInformation Security -- Public-Key Cryptography1 Elliptic Curve Cryptography (ECC) For the same length of keys, faster than RSA For the same degree.

YSLInformation Security -- Public-Key Cryptography1 Elliptic Curve Cryptography (ECC) For the same length of keys, faster than RSA For the same degree.
How to compile searching software so that it is impossible to reverse-engineer. (Private Keyword Search on Streaming Data)

How to compile searching software so that it is impossible to reverse-engineer. (Private Keyword Search on Streaming Data)
Public Key Encryption That Allows PIR Queries Dan Boneh, Eyal Kushilevitz, Rafail Ostrovsky, William E. Skeith III Presenter: 紀汶承.

Public Key Encryption That Allows PIR Queries Dan Boneh, Eyal Kushilevitz, Rafail Ostrovsky, William E. Skeith III Presenter: 紀汶承.
BTrees & Bitmap Indexes

BTrees & Bitmap Indexes
1 Efficient Conjunctive Keyword-Searchable Encryption,2007 Author: Eun-Kyung Ryu and Tsuyoshi Takagi Presenter: 顏志龍.

1 Efficient Conjunctive Keyword-Searchable Encryption,2007 Author: Eun-Kyung Ryu and Tsuyoshi Takagi Presenter: 顏志龍.
Private Information Retrieval Benny Chor, Oded Goldreich, Eyal Kushilevitz and Madhu Sudan Journal of ACM Vol.45 No6. 1998 Reporter : Chen, Chun-Hua Date.

Private Information Retrieval Benny Chor, Oded Goldreich, Eyal Kushilevitz and Madhu Sudan Journal of ACM Vol.45 No Reporter : Chen, Chun-Hua Date.
Elliptic Curve. p2. Outline EC over Z p EC over GF(2 n )

Elliptic Curve. p2. Outline EC over Z p EC over GF(2 n )
Identity Based Encryption

Identity Based Encryption
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

Similar presentations

Ads by Google