Paper 2015/560

Generic Construction of UC-Secure Oblivious Transfer

Olivier Blazy, Université de Limoges, Xlim
Céline Chevalier, Université Panthéon Assas

We show how to construct a completely generic UC-secure oblivious transfer scheme from a collision-resistant chameleon hash scheme (CH) and a CCA encryption scheme accepting a smooth projective hash function (SPHF). Our work is based on the work of Abdalla et al. at Asiacrypt 2013, where the authors formalize the notion of SPHF-friendly commitments, i.e. accepting an SPHF on the language of valid commitments (to allow implicit decommitment), and show how to construct from them a UC-secure oblivious transfer in a generic way. But Abdalla et al. only gave a DDH-based construction of SPHF-friendly commitment schemes, furthermore highly relying on pairings. In this work, we show how to generically construct an SPHF-friendly commitment scheme from a collision-resistant CH scheme and an SPHF-friendly CCA encryption scheme. This allows us to propose an instantiation of our schemes based on the DDH, as efficient as that of Abdalla et al., but without requiring any pairing. Interestingly, our generic framework also allows us to propose an instantiation based on the learning with errors (LWE) assumption. For the record, we finally propose a last instantiation based on the decisional composite residuosity (DCR) assumption.

Note: Missing instantiations were added in this version, and some proofs are more detailed. (in particular for the DCR scheme) These are not "corrections"

Available format(s)
Public-key cryptography
Publication info
Published elsewhere. ACNS 2015
oblivious transfer smooth projective hashing generic UC
Contact author(s)
olivier blazy @ polytechnique edu
celine chevalier @ ens fr
2022-08-07: revised
2015-06-17: received
See all versions
Short URL
Creative Commons Attribution


      author = {Olivier Blazy and Céline Chevalier},
      title = {Generic Construction of UC-Secure Oblivious Transfer},
      howpublished = {Cryptology ePrint Archive, Paper 2015/560},
      year = {2015},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.