cispa_all_2762.pdf (449.71 kB)

Two-Message Statistically Sender-Private OT from LWE

Download (449.71 kB)
conference contribution
posted on 2023-11-29, 18:09 authored by Zvika Brakerski, Nico DöttlingNico Döttling
: We construct a two-message oblivious transfer (OT) protocol without setup that guarantees statistical privacy for the sender even against malicious receivers. Receiver privacy is game based and relies on the hardness of learning with errors (LWE). This flavor of OT has been a central building block for minimizing the round complexity of witness indistinguishable and zero knowledge proof systems and multi-party computation protocols, as well as for achieving circuit privacy for homomorphic encryption in the malicious setting. Prior to this work, all candidates in the literature from standard assumptions relied on number theoretic assumptions and were thus insecure in the post-quantum setting. This work provides the first (presumed) post-quantum secure candidate and thus allows to instantiate the aforementioned applications in a post-quantum secure manner. Technically, we rely on the transference principle: Either a lattice or its dual must have short vectors. Short vectors, in turn, can be translated to information loss in encryption. Thus encrypting one message with respect to the lattice and one with respect to its dual guarantees that at least one of them will be statistically hidden.


Preferred Citation

Zvika Brakerski and Nico Döttling. Two-Message Statistically Sender-Private OT from LWE. In: Theory of Cryptography Conference (TCC). 2018.

Primary Research Area

  • Algorithmic Foundations and Cryptography

Name of Conference

Theory of Cryptography Conference (TCC)

Legacy Posted Date


Open Access Type

  • Unknown


@inproceedings{cispa_all_2762, title = "Two-Message Statistically Sender-Private OT from LWE", author = "Brakerski, Zvika and Döttling, Nico", booktitle="{Theory of Cryptography Conference (TCC)}", year="2018", }

Usage metrics


    No categories selected


    Ref. manager