Abstract
Oblivious transfer (OT) is an important primitive in cryptography. In chosen one-out-of-two string OT, a sender offers two strings, one of which the other party, called the receiver, can choose to read, not learning any information about the other string. The sender on the other hand does not obtain any information about the receiver’s choice. We consider the problem of reducing this primitive to OT for single bits. Previous attempts to doing this were based on self-intersecting codes. We present a new technique for the same task, based on so-called privacy amplification. It is shown that our method has two important advantages over the previous approaches. First, it is more efficient in terms of the number of required realizations of bit OT, and second, the technique even allows for reducing string OT to (apparently) much weaker primitives. An example of such a primitive is universal OT, where the receiver can adaptively choose what type of information he wants to obtain about the two bits sent by the sender subject to the only constraint that some, possibly very small, uncertainty must remain about the pair of bits.
Article PDF
Similar content being viewed by others
Author information
Authors and Affiliations
Corresponding authors
Additional information
Communicated by Cynthia Dwork
Rights and permissions
About this article
Cite this article
Brassard, G., Crépeau, C. & Wolf, S. Oblivious Transfers and Privacy Amplification. J Cryptology 16, 219–237 (2003). https://doi.org/10.1007/s00145-002-0146-4
Received:
Revised:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s00145-002-0146-4