- We define the notion of a differing-input obfuscator for Turing machines and give a construction for the same (without converting it to a circuit) with input-specific running times. More specifically, for each input, our obfuscated Turning machine takes time proportional to the running time of the Turing machine on that specific input rather than the machine's worst-case running time.
- We give a functional encryption scheme that allows for secret-keys to be associated with Turing machines, and thereby achieves input-specific running times. Further, we can equip our functional encryption scheme with delegation properties.
- We construct a multi-party non-interactive key exchange protocol with no trusted setup where all parties post only logarithmic-size messages. It is the first such scheme with such short messages. We similarly obtain a broadcast encryption system where the ciphertext overhead and secret-key size is constant (i.e. independent of the number of users), and the public key is logarithmic in the number of users.
All our constructions make inherent use of the power provided by differing-input obfuscation. It is not currently known how to construct systems with these properties from the weaker notion of indistinguishability obfuscation.
Category / Keywords: applications / Multilinear Maps, Obfuscation Date: received 24 Oct 2013, last revised 16 Jun 2014 Contact author: prabhanjan va at gmail com, dabo@cs stanford edu, sanjamg@gmail com, amitsahai@gmail com, mzhandry@stanford edu Available format(s): PDF | BibTeX Citation Version: 20140617:013344 (All versions of this report) Short URL: ia.cr/2013/689 Discussion forum: Show discussion | Start new discussion