Non-malleable Extractors with Shorter Seeds and Their Applications

Motivated by the problem of how to communicate over a public channel with an active adversary, Dodis and Wichs (STOC' 09) introduced the notion of a non-malleable extractor. A non-malleable extractor nmExt : {0, 1}(n) x{0, 1}(d) -> {0, 1}(m) takes two inputs, a weakly-random W and a uniformly random seed S, and outputs a string which is nearly uniform, given S as well as nmExt(W, A(S)), for an arbitrary function A with A(S) not equal S. In this paper, by developing the combination and permutation techniques, we improve the error estimation of the extractor of Raz (STOC' 05), which plays an extremely important role in the constraints of the non-malleable extractor parameters including seed length. Then we present improved explicit construction of non-malleable extractors. Though our construction is the same as that given by Cohen, Raz and Segev (CCC' 12), the parameters are improved. More precisely, we construct an explicit (1016, 1/2)-non-malleable extractor nmExt : {0, 1}(n) x {0, 1}(d) -> {0, 1} with n = 2(10) and seed length d = 19, while Cohen et al. showed that the seed length is no less than 46/63 + 66. Therefore, our method beats the condition "2.01 . log n <= d <= n" proposed by Cohen et al., since d is just 1.9 . log n in our construction. We also improve the parameters of the general explicit construction given by Cohen et al. Finally, we give their applications to privacy amplification.