Laconic PSI on Authenticated Inputs and Applications
摘要
A common issue with using secure computation in practice is that its security does not place any restrictions on what an adversary can use as input in the protocol. In this work, we focus on the practically-motivated setting of (two-message, labeled) private set intersection (PSI), and advocate for a clean and versatile solution to this problem: PSI on authenticated inputs. Our central contributions are summarized as follows. We also explore various optimizations to our basic protocol, including reducing the receiver’s concrete run time, and a tradeoff between crs size and message size.