基于理想格的两方隐私集合交集协议  被引量:2

Two-party privacy set intersection protocol based on ideal lattice

在线阅读下载全文

作  者:赵宗渠[1] 王书静 汤永利[1] 霍亚超 杨丽 Zhao Zongqu;Wang Shujing;Tang Yongli;Huo Yachao;Yang Li(School of Software,Henan Polytechnic University,Jiaozuo Henan 454000,China)

机构地区:[1]河南理工大学软件学院,河南焦作454000

出  处:《计算机应用研究》2023年第12期3795-3799,共5页Application Research of Computers

基  金:陕西省信息通信网络及安全重点实验室开放课题基金资助项目(ICNS-202006)。

摘  要:当前大多数现有的隐私集合交集(PSI)协议的安全性都是基于数论假设,而随着量子计算理论的发展,基于数论假设的PSI协议将变得不再安全。针对该问题,利用格上函数加密的函数策略解密特性,通过二进制分解将参与方元素设计成符合LWE加法同态的向量形式,提出了一种基于理想格的半诚实安全的两方PSI协议。安全性方面,使用基于环上错误学习问题(RLWE)的函数加密系统来构造PSI协议,实现了抗量子的安全性。效率方面,协议的通信复杂度为O(w+v),与参与方元素成正比,保证了较高的通信效率;并且利用理想格,减小了公钥的大小,提高了存储效率,降低了通信成本。Nowadays,the security of most existing PSI protocols are based on number theoretic assumptions,and with the development of quantum computing theory,these PSI protocols will become insecure.In order to solve this problem,this paper proposed a two-party PSI protocol based on ideal lattice in semi-honest model by using the decrypted features of function encryption on lattice and designing the party elements into vector forms conforming to LWE additive homomorphisms through binary decomposition.In terms of security,the PSI protocol achieves quantum-resistant security by using a function cryptographic system based on the ring learning with errors(RLWE).In terms of efficiency,the communication complexity of the proposed protocol is O(w+v)and proportional to the party elements,which ensures higher communication efficiency.And the use of ideal lattice reduces the size of the public key,which improves storage efficiency and reduces communication costs.

关 键 词:隐私集合交集 量子攻击 函数加密 理想格 错误学习问题 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象