GaloisInc / swanky

A suite of rust libraries for secure multi-party computation
MIT License
270 stars 57 forks source link

Questions about ocelot choices #16

Open dnat112 opened 2 years ago

dnat112 commented 2 years ago

I'm to understand the rational for ocelot's implementation choices.

Is there any reason why ocelot does not implement the IKNP OT Extension?

Why does ocelot implement two OT extensions that use Chou-Orlandi as the base OT (as listed in swanky/ocelot/src/ot/mod.rs ) but none that use Naor-Pinkas as the base OT?

Thank you!

themighty1 commented 2 years ago

@dnat112 , ocelot imlements KOS15 OT extension which is IKNP+malicious security.

To answer your second question, maybe because Chou-Orlandi is maliciously secure and thus is given preference over the semi-honest Naor-Pinkas.