Paper 2009/591

Embedded SFE: Offloading Server and Network using Hardware Tokens

Kimmo Järvinen, Vladimir Kolesnikov, Ahmad-Reza Sadeghi, and Thomas Schneider


We consider Secure Function Evaluation (SFE) in the client-server setting where the server issues a secure token to the client. The token is not trusted by the client and is not a trusted third party. We show how to take advantage of the token to drastically reduce the communication complexity of SFE and computation load of the server. Our main contribution is the detailed consideration of design decisions, optimizations, and trade-offs, associated with the setting and its strict hardware requirements for practical deployment. In particular, we model the token as a computationally weak device with small constant-size memory and limit communication between client and server. We consider semi-honest, covert, and malicious adversaries. We show the feasibility of our protocols based on a FPGA implementation.

Available format(s)
Publication info
Published elsewhere. Full version of FC 2010 paper.
Garbled CircuitsHardware TokenFPGA Implementation
Contact author(s)
thomas schneider @ trust rub de
2013-04-08: last of 2 revisions
2009-12-04: received
See all versions
Short URL
Creative Commons Attribution


      author = {Kimmo Järvinen and Vladimir Kolesnikov and Ahmad-Reza Sadeghi and Thomas Schneider},
      title = {Embedded SFE: Offloading Server and Network using Hardware Tokens},
      howpublished = {Cryptology ePrint Archive, Paper 2009/591},
      year = {2009},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.