On Constructing One-Way Permutations from Indistinguishability Obfuscation

Gilad Asharov; Gil Segev

doi:10.1007/s00145-017-9268-6

On Constructing One-Way Permutations from Indistinguishability Obfuscation

Gilad Asharov, Gil Segev

Research output: Contribution to journal › Article › peer-review

4 Scopus citations

Abstract

We prove that there is no black-box construction of a one-way permutation family from a one-way function and an indistinguishability obfuscator for the class of all oracle-aided circuits, where the construction is “domain invariant” (i.e., where each permutation may have its own domain, but these domains are independent of the underlying building blocks). Following the framework of Asharov and Segev (FOCS ’15), by considering indistinguishability obfuscation for oracle-aided circuits we capture the common techniques that have been used so far in constructions based on indistinguishability obfuscation. These include, in particular, non-black-box techniques such as the punctured programming approach of Sahai and Waters (STOC ’14) and its variants, as well as sub-exponential security assumptions. For example, we fully capture the construction of a trapdoor permutation family from a one-way function and an indistinguishability obfuscator due to Bitansky, Paneth, and Wichs (TCC ’16). Their construction is not domain invariant, and our result shows that this, somewhat undesirable property, is unavoidable using the common techniques. In fact, we observe that constructions which are not domain invariant circumvent all known negative results for constructing one-way permutations based on one-way functions, starting with Rudich’s seminal work (PhD thesis ’88). We revisit this classic and fundamental problem and resolve this somewhat surprising gap by ruling out all such black-box constructions—even those that are not domain invariant.

Original language	English
Pages (from-to)	698-736
Number of pages	39
Journal	Journal of Cryptology
Volume	31
Issue number	3
Early online date	15 Sep 2017
DOIs	https://doi.org/10.1007/s00145-017-9268-6
State	Published - 1 Jul 2018
Externally published	Yes

Bibliographical note

Publisher Copyright:
© 2017, International Association for Cryptologic Research.

Funding

‡ Supported by the European Union’s 7th Framework Program (FP7) via a Marie Curie Career Integration Grant (Grant No. 618094), by the European Union’s Horizon 2020 Framework Program (H2020) via an ERC Grant (Grant No. 714253), by the Israel Science Foundation (Grant No. 483/13), by the Israeli Centers of Research Excellence (I-CORE) Program (Center No. 4/11), by the US-Israel Binational Science Foundation (Grant No. 2014632), and by a Google Faculty Research Award. † Currently supported by a Junior Fellow award from the Simons Foundation. This work was completed while the author was a post-doctoral researcher at the Hebrew University’s School of Computer Science and Engineering, and supported by the Israeli Centers of Research Excellence (I-CORE) Program (Center No. 4/11).

Funders	Funder number
European Union’s 7th Framework Program
US-Israel Binational Science Foundation	2014632
Simons Foundation
Google
Horizon 2020 Framework Programme	714253
European Commission
Israel Science Foundation	483/13
Seventh Framework Programme	618094
Israeli Centers for Research Excellence	4/11

Keywords

Black-box separations
Indistinguishability obfuscation
Lower bounds
One-way permutations

Access to Document

10.1007/s00145-017-9268-6

Cite this

@article{2776754a4f9a401a8d1828d757408edd,

title = "On Constructing One-Way Permutations from Indistinguishability Obfuscation",

abstract = "We prove that there is no black-box construction of a one-way permutation family from a one-way function and an indistinguishability obfuscator for the class of all oracle-aided circuits, where the construction is “domain invariant” (i.e., where each permutation may have its own domain, but these domains are independent of the underlying building blocks). Following the framework of Asharov and Segev (FOCS {\textquoteright}15), by considering indistinguishability obfuscation for oracle-aided circuits we capture the common techniques that have been used so far in constructions based on indistinguishability obfuscation. These include, in particular, non-black-box techniques such as the punctured programming approach of Sahai and Waters (STOC {\textquoteright}14) and its variants, as well as sub-exponential security assumptions. For example, we fully capture the construction of a trapdoor permutation family from a one-way function and an indistinguishability obfuscator due to Bitansky, Paneth, and Wichs (TCC {\textquoteright}16). Their construction is not domain invariant, and our result shows that this, somewhat undesirable property, is unavoidable using the common techniques. In fact, we observe that constructions which are not domain invariant circumvent all known negative results for constructing one-way permutations based on one-way functions, starting with Rudich{\textquoteright}s seminal work (PhD thesis {\textquoteright}88). We revisit this classic and fundamental problem and resolve this somewhat surprising gap by ruling out all such black-box constructions—even those that are not domain invariant.",

keywords = "Black-box separations, Indistinguishability obfuscation, Lower bounds, One-way permutations",

author = "Gilad Asharov and Gil Segev",

note = "Publisher Copyright: {\textcopyright} 2017, International Association for Cryptologic Research.",

year = "2018",

month = jul,

day = "1",

doi = "10.1007/s00145-017-9268-6",

language = "אנגלית",

volume = "31",

pages = "698--736",

journal = "Journal of Cryptology",

issn = "0933-2790",

publisher = "Springer New York",

number = "3",

}

TY - JOUR

T1 - On Constructing One-Way Permutations from Indistinguishability Obfuscation

AU - Asharov, Gilad

AU - Segev, Gil

PY - 2018/7/1

Y1 - 2018/7/1

N2 - We prove that there is no black-box construction of a one-way permutation family from a one-way function and an indistinguishability obfuscator for the class of all oracle-aided circuits, where the construction is “domain invariant” (i.e., where each permutation may have its own domain, but these domains are independent of the underlying building blocks). Following the framework of Asharov and Segev (FOCS ’15), by considering indistinguishability obfuscation for oracle-aided circuits we capture the common techniques that have been used so far in constructions based on indistinguishability obfuscation. These include, in particular, non-black-box techniques such as the punctured programming approach of Sahai and Waters (STOC ’14) and its variants, as well as sub-exponential security assumptions. For example, we fully capture the construction of a trapdoor permutation family from a one-way function and an indistinguishability obfuscator due to Bitansky, Paneth, and Wichs (TCC ’16). Their construction is not domain invariant, and our result shows that this, somewhat undesirable property, is unavoidable using the common techniques. In fact, we observe that constructions which are not domain invariant circumvent all known negative results for constructing one-way permutations based on one-way functions, starting with Rudich’s seminal work (PhD thesis ’88). We revisit this classic and fundamental problem and resolve this somewhat surprising gap by ruling out all such black-box constructions—even those that are not domain invariant.

AB - We prove that there is no black-box construction of a one-way permutation family from a one-way function and an indistinguishability obfuscator for the class of all oracle-aided circuits, where the construction is “domain invariant” (i.e., where each permutation may have its own domain, but these domains are independent of the underlying building blocks). Following the framework of Asharov and Segev (FOCS ’15), by considering indistinguishability obfuscation for oracle-aided circuits we capture the common techniques that have been used so far in constructions based on indistinguishability obfuscation. These include, in particular, non-black-box techniques such as the punctured programming approach of Sahai and Waters (STOC ’14) and its variants, as well as sub-exponential security assumptions. For example, we fully capture the construction of a trapdoor permutation family from a one-way function and an indistinguishability obfuscator due to Bitansky, Paneth, and Wichs (TCC ’16). Their construction is not domain invariant, and our result shows that this, somewhat undesirable property, is unavoidable using the common techniques. In fact, we observe that constructions which are not domain invariant circumvent all known negative results for constructing one-way permutations based on one-way functions, starting with Rudich’s seminal work (PhD thesis ’88). We revisit this classic and fundamental problem and resolve this somewhat surprising gap by ruling out all such black-box constructions—even those that are not domain invariant.

KW - Black-box separations

KW - Indistinguishability obfuscation

KW - Lower bounds

KW - One-way permutations

UR - https://www.scopus.com/pages/publications/85029490081

U2 - 10.1007/s00145-017-9268-6

DO - 10.1007/s00145-017-9268-6

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:85029490081

SN - 0933-2790

VL - 31

SP - 698

EP - 736

JO - Journal of Cryptology

JF - Journal of Cryptology

IS - 3

ER -

On Constructing One-Way Permutations from Indistinguishability Obfuscation

Abstract

Bibliographical note

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Cite this