Cryptology ePrint Archive: Report 2014/447

Faster Private Set Intersection based on OT Extension

Benny Pinkas and Thomas Schneider and Michael Zohner

Abstract: Private set intersection (PSI) allows two parties to compute the intersection of their sets without revealing any information about items that are not in the intersection. It is one of the best studied applications of secure computation and many PSI protocols have been proposed. However, the variety of existing PSI protocols makes it difficult to identify the solution that performs best in a respective scenario, especially since they were not all implemented and compared in the same setting. In this work, we give an overview on existing PSI protocols that are secure against semi-honest adversaries. We take advantage of the most recent efficiency improvements in OT extension to propose significant optimizations to previous PSI protocols and to suggest a new PSI protocol whose runtime is superior to that of existing protocols. We compare the performance of the protocols both theoretically and experimentally, by implementing all protocols on the same platform, and give recommendations on which protocol to use in a particular setting.

Category / Keywords: cryptographic protocols / private set intersection, oblivious transfer, implementation

Original Publication (with major differences): USENIX Security Symposium 2014

Date: received 10 Jun 2014, last revised 28 Jul 2014

Contact author: michael zohner at ec-spride de

Available format(s): PDF | BibTeX Citation

Note: Added acknowledgement

Version: 20140728:094039 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]