Paper 2013/110
Full Characterization of Functions that Imply Fair Coin Tossing and Ramifications to Fairness
Gilad Asharov, Yehuda Lindell, and Tal Rabin
Abstract
It is well known that it is impossible for two parties to toss a coin fairly (Cleve, STOC 1986). This result implies that it is impossible to securely compute with fairness any function that can be used to toss a coin fairly. In this paper, we focus on the class of deterministic Boolean functions with finite domain, and we ask for which functions in this class is it possible to information-theoretically toss an unbiased coin, given a protocol for securely computing the function with fairness. We provide a \emph{complete characterization} of the functions in this class that imply and do not imply fair coin tossing. This characterization extends our knowledge of which functions cannot be securely computed with fairness. In addition, it provides a focus as to which functions may potentially be securely computed with fairness, since a function that cannot be used to fairly toss a coin is not ruled out by the impossibility result of Cleve (which is the \emph{only} known impossibility result for fairness). In addition to the above, we draw corollaries to the feasibility of achieving fairness in two possible fail-stop models.
Metadata
- Available format(s)
- Category
- Cryptographic protocols
- Publication info
- Published elsewhere. An extended abstract of this work appeared at TCC 2013. This is the full version.
- Keywords
- Fairnesscoin tossingsecure computationmalicious and fail-stop adversaries
- Contact author(s)
- asharog @ cs biu ac il
- History
- 2013-02-27: received
- Short URL
- https://ia.cr/2013/110
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2013/110, author = {Gilad Asharov and Yehuda Lindell and Tal Rabin}, title = {Full Characterization of Functions that Imply Fair Coin Tossing and Ramifications to Fairness}, howpublished = {Cryptology {ePrint} Archive, Paper 2013/110}, year = {2013}, url = {https://eprint.iacr.org/2013/110} }