Leakage-Resilient Coin Tossing

  • Elette Boyle
  • Shafi Goldwasser
  • Yael Tauman Kalai
Conference paper

DOI: 10.1007/978-3-642-24100-0_16

Part of the Lecture Notes in Computer Science book series (LNCS, volume 6950)
Cite this paper as:
Boyle E., Goldwasser S., Kalai Y.T. (2011) Leakage-Resilient Coin Tossing. In: Peleg D. (eds) Distributed Computing. DISC 2011. Lecture Notes in Computer Science, vol 6950. Springer, Berlin, Heidelberg

Abstract

The ability to collectively toss a common coin among n parties in the presence of faults is an important primitive in the arsenal of randomized distributed protocols. In the case of dishonest majority, it was shown to be impossible to achieve less than \(\frac{1}{r}\) bias in O(r) rounds (Cleve STOC ’86). In the case of honest majority, in contrast, unconditionally secure O(1)-round protocols for generating common unbiased coins follow from general completeness theorems on multi-party secure protocols in the secure channels model (e.g., BGW, CCD STOC ’88).

However, in the O(1)-round protocols with honest majority, parties generate and hold secret values which are assumed to be perfectly hidden from malicious parties: an assumption which is crucial to proving the resulting common coin is unbiased. This assumption unfortunately does not seem to hold in practice, as attackers can launch side-channel attacks on the local state of honest parties and leak information on their secrets.

In this work, we present an O(1)-round protocol for collectively generating an unbiased common coin, in the presence of leakage on the local state of the honest parties. We tolerate \(t \le (\frac{1}{3} - \epsilon) n\) computationally-unbounded Byzantine faults and in addition a Ω(1)-fraction leakage on each (honest) party’s secret state. Our results hold in the memory leakage model (of Akavia, Goldwasser, Vaikuntanathan ’08) adapted to the distributed setting.

Additional contributions of our work are the tools we introduce to achieve the collective coin toss: a procedure for disjoint committee election, and leakage-resilient verifiable secret sharing.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Elette Boyle
    • 1
  • Shafi Goldwasser
    • 1
    • 2
  • Yael Tauman Kalai
    • 3
  1. 1.MITCambridgeUSA
  2. 2.Weizmann Institute of ScienceRehovotIsrael
  3. 3.Micorosft Research New EnglandCambridgeUSA

Personalised recommendations