Abstract
Oblivious pseudorandom functions (OPRFs) are an important primitive in privacy-preserving cryptographic protocols. The growing interest in OPRFs, both in theory and practice, has led to the development of numerous constructions and variations. However, most of these constructions rely on classical assumptions. Potential future quantum attacks may limit the practicality of those OPRFs for real-world applications.
To close this gap, we introduce Leap, a novel OPRF based on heuristic lattice assumptions. Fundamentally, Leap builds upon the Spring [BBL+15] pseudorandom function (PRF), which relies on the learning with rounding assumption, and integrates techniques from multi-party computation, specifically Oblivious Transfer (OT) and Oblivious Linear Evaluation (OLE). With this combination of oblivious protocols, we construct an OPRF that evaluates in less than a millisecond on a modern computer.
Efficiency-wise, our prototype implementation achieves computation times of just 11 s for the client and 750 s for the server, excluding some base OT preprocessing overhead. Moreover, Leap requires an online communication cost of 23 kB per evaluation, where the client only has to send around 380 bytes online. To demonstrate the practical applicability of Leap, we present an efficient private set intersection (PSI) protocol built on top of Leap. This application highlights Leap’s potential for integration into various privacy-preserving applications: We can compute an unbalanced set intersection with set sizes of 2^24 and 2^15 in under a minute of online time and just over two minutes overall.
To close this gap, we introduce Leap, a novel OPRF based on heuristic lattice assumptions. Fundamentally, Leap builds upon the Spring [BBL+15] pseudorandom function (PRF), which relies on the learning with rounding assumption, and integrates techniques from multi-party computation, specifically Oblivious Transfer (OT) and Oblivious Linear Evaluation (OLE). With this combination of oblivious protocols, we construct an OPRF that evaluates in less than a millisecond on a modern computer.
Efficiency-wise, our prototype implementation achieves computation times of just 11 s for the client and 750 s for the server, excluding some base OT preprocessing overhead. Moreover, Leap requires an online communication cost of 23 kB per evaluation, where the client only has to send around 380 bytes online. To demonstrate the practical applicability of Leap, we present an efficient private set intersection (PSI) protocol built on top of Leap. This application highlights Leap’s potential for integration into various privacy-preserving applications: We can compute an unbalanced set intersection with set sizes of 2^24 and 2^15 in under a minute of online time and just over two minutes overall.
| Originalsprache | Englisch |
|---|---|
| Titel | Advances in Cryptology – EUROCRYPT 2025 |
| Untertitel | 44th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Madrid, Spain, May 4–8, 2025, Proceedings, Part VII |
| Band | 15607 |
| Auflage | 1 |
| ISBN (elektronisch) | 978-3-031-91098-2 |
| DOIs | |
| Publikationsstatus | Veröffentlicht - 28 Apr. 2025 |
| Veranstaltung | 44th Annual International Conference on the Theory and Applications of Cryptographic Techniques - EUROCRYPT 2025 Affiliated Events - Madrid, Spanien Dauer: 4 Mai 2025 → 8 Mai 2025 https://eurocrypt.iacr.org/2025/ |
Publikationsreihe
| Name | Lecture Notes in Computer Science |
|---|---|
| Herausgeber (Verlag) | Springer, Cham |
| Band | 15607 |
| ISSN (Print) | 0302-9743 |
| ISSN (elektronisch) | 1611-3349 |
Konferenz
| Konferenz | 44th Annual International Conference on the Theory and Applications of Cryptographic Techniques - EUROCRYPT 2025 Affiliated Events |
|---|---|
| Land/Gebiet | Spanien |
| Stadt | Madrid |
| Zeitraum | 4/05/25 → 8/05/25 |
| Internetadresse |
Research Field
- Cyber Security