Secure Two-Party Computation with Low Communication

Ivan Damgård, Sebastian Faust, C. Hazay

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review


We propose a 2-party UC-secure protocol that can compute any function securely. The protocol requires only two messages, communication that is poly-logarithmic in the size of the circuit description of the function, and the workload for one of the parties is also only poly-logarithmic in the size of the circuit. This implies, for instance, delegatable computation that requires no expensive off-line phase and remains secure even if the server learns whether the client accepts its results. To achieve this, we define two new notions of extractable hash functions, propose an instantiation based on the knowledge of exponent in an RSA group, and build succinct zero-knowledge arguments in the CRS model.
Original languageAmerican English
Title of host publicationTCC
StatePublished - 2012

Bibliographical note

Place of conference:Italy


Dive into the research topics of 'Secure Two-Party Computation with Low Communication'. Together they form a unique fingerprint.

Cite this