a survey of verifiable delegation of computations
play

A Survey of Verifiable Delegation of Computations Rosario Gennaro - PowerPoint PPT Presentation

Mar 30, 2023 •120 likes •937 views

A Survey of Verifiable Delegation of Computations Rosario Gennaro The City College of New York rosario@cs.ccny.cuny.edu CANS 2013, Paraty, Brasil November 22, 2013 Outline Motivation Verifiable Computation Memory Delegation Conclusion

  1. A Survey of Verifiable Delegation of Computations Rosario Gennaro The City College of New York rosario@cs.ccny.cuny.edu CANS 2013, Paraty, Brasil November 22, 2013

  2. Outline Motivation Verifiable Computation Memory Delegation Conclusion Talk Outline Motivation Cloud computing, Small Devices, Large Scale Computation Generic Results for Verifiable Computation Protocols that work for arbitrary computations Interactive Proofs Probabilistically Checkable Proofs "Muggles" Proofs Other Arithmetizations approaches (QSP) Implementations (Pinocchio, Snark-for-C) Delegation of Memory Homomorphic MACs Proofs of Retrievability Verifiable Keyword Search

  3. Outline Motivation Verifiable Computation Memory Delegation Conclusion Talk Outline Motivation Cloud computing, Small Devices, Large Scale Computation Generic Results for Verifiable Computation Protocols that work for arbitrary computations Interactive Proofs Probabilistically Checkable Proofs "Muggles" Proofs Other Arithmetizations approaches (QSP) Implementations (Pinocchio, Snark-for-C) Delegation of Memory Homomorphic MACs Proofs of Retrievability Verifiable Keyword Search

  4. Outline Motivation Verifiable Computation Memory Delegation Conclusion Talk Outline Motivation Cloud computing, Small Devices, Large Scale Computation Generic Results for Verifiable Computation Protocols that work for arbitrary computations Interactive Proofs Probabilistically Checkable Proofs "Muggles" Proofs Other Arithmetizations approaches (QSP) Implementations (Pinocchio, Snark-for-C) Delegation of Memory Homomorphic MACs Proofs of Retrievability Verifiable Keyword Search

  5. Outline Motivation Verifiable Computation Memory Delegation Conclusion Computing on Demand Cloud Computing Businesses buy computing power from a service provider Advantages No need to provision and maintain hardware Pay for what you need Easily and quickly scalable up or down Trust Issues Transfer possibly confidential data to computing service provider Trust computation is performed correctly without errors Malicious or benign

  6. Outline Motivation Verifiable Computation Memory Delegation Conclusion Computing on Demand Cloud Computing Businesses buy computing power from a service provider Advantages No need to provision and maintain hardware Pay for what you need Easily and quickly scalable up or down Trust Issues Transfer possibly confidential data to computing service provider Trust computation is performed correctly without errors Malicious or benign

  7. Outline Motivation Verifiable Computation Memory Delegation Conclusion Computing on Demand Cloud Computing Businesses buy computing power from a service provider Advantages No need to provision and maintain hardware Pay for what you need Easily and quickly scalable up or down Trust Issues Transfer possibly confidential data to computing service provider Trust computation is performed correctly without errors Malicious or benign

  8. Outline Motivation Verifiable Computation Memory Delegation Conclusion Small Devices Small devices outsourcing complex computing problems to larger servers Photo manipulations Cryptographic operations Same issues: Confidentiality of data Correctness of result

  9. Outline Motivation Verifiable Computation Memory Delegation Conclusion Small Devices Small devices outsourcing complex computing problems to larger servers Photo manipulations Cryptographic operations Same issues: Confidentiality of data Correctness of result

  10. Outline Motivation Verifiable Computation Memory Delegation Conclusion Large Scale Computations Network-based computations SETI@Home Folding@Home Users donate idle cycles Known problem: users return fake results without performing the computation Increases their ranking Needed a way to efficiently weed out bad results Currently use redundancy

  11. Outline Motivation Verifiable Computation Memory Delegation Conclusion Large Scale Computations Network-based computations SETI@Home Folding@Home Users donate idle cycles Known problem: users return fake results without performing the computation Increases their ranking Needed a way to efficiently weed out bad results Currently use redundancy

  12. Outline Motivation Verifiable Computation Memory Delegation Conclusion Large Scale Computations Network-based computations SETI@Home Folding@Home Users donate idle cycles Known problem: users return fake results without performing the computation Increases their ranking Needed a way to efficiently weed out bad results Currently use redundancy

  13. Outline Motivation Verifiable Computation Memory Delegation Conclusion Verifiable Computation The client sends a function F and an input x to the server The server returns y = F ( x ) and a proof Π that y is correct. Verifying Π should take less time than computing F .

  14. Outline Motivation Verifiable Computation Memory Delegation Conclusion Verifiable Computation The client sends a function F and an input x to the server The server returns y = F ( x ) and a proof Π that y is correct. Verifying Π should take less time than computing F .

  15. Outline Motivation Verifiable Computation Memory Delegation Conclusion Interactive Proofs (GMR,B) An all powerful Prover interacts with a poly-time Verifier Prover convinces Verifier of a statement she cannot decide on her own Probabilist guarantee All of PSPACE can be proven this way [LFKN,S] We want something different A scaled back version of this protocols for efficient computations A powerful but still efficient prover: its complexity should be as close as possible to the original computation A super-efficient Verifier: ideally linear time

  16. Outline Motivation Verifiable Computation Memory Delegation Conclusion Interactive Proofs (GMR,B) An all powerful Prover interacts with a poly-time Verifier Prover convinces Verifier of a statement she cannot decide on her own Probabilist guarantee All of PSPACE can be proven this way [LFKN,S] We want something different A scaled back version of this protocols for efficient computations A powerful but still efficient prover: its complexity should be as close as possible to the original computation A super-efficient Verifier: ideally linear time

  17. Outline Motivation Verifiable Computation Memory Delegation Conclusion Muggles Proofs (GKR) Poly-time Prover interacts with a quasi-linear Verifier Refines the proof that IP=PSPACE to efficient computations For a log-space uniform NC circuit of depth d Prover runs in poly ( n ) Verifier runs in O ( n + poly ( d )) Interactive ( O ( d · log n ) rounds) Unconditional Soundness

  18. Outline Motivation Verifiable Computation Memory Delegation Conclusion Muggles Proofs (GKR) Poly-time Prover interacts with a quasi-linear Verifier Refines the proof that IP=PSPACE to efficient computations For a log-space uniform NC circuit of depth d Prover runs in poly ( n ) Verifier runs in O ( n + poly ( d )) Interactive ( O ( d · log n ) rounds) Unconditional Soundness

  19. Outline Motivation Verifiable Computation Memory Delegation Conclusion Optimizations and Implementations (CMT,T) Prover can be implemented in O ( S log S ) Where S is the size of the circuit computing the function O ( S ) for circuits with a regular wiring pattern Implementation tests show that for the regular wiring pattern case the prover is less than 10x slower than simply computing the function. Protocol remains highly interactive Interaction can be removed via the Fiat-Shamir heuristic (random oracle model).

  20. Outline Motivation Verifiable Computation Memory Delegation Conclusion Optimizations and Implementations (CMT,T) Prover can be implemented in O ( S log S ) Where S is the size of the circuit computing the function O ( S ) for circuits with a regular wiring pattern Implementation tests show that for the regular wiring pattern case the prover is less than 10x slower than simply computing the function. Protocol remains highly interactive Interaction can be removed via the Fiat-Shamir heuristic (random oracle model).

  21. Outline Motivation Verifiable Computation Memory Delegation Conclusion Optimizations and Implementations (CMT,T) Prover can be implemented in O ( S log S ) Where S is the size of the circuit computing the function O ( S ) for circuits with a regular wiring pattern Implementation tests show that for the regular wiring pattern case the prover is less than 10x slower than simply computing the function. Protocol remains highly interactive Interaction can be removed via the Fiat-Shamir heuristic (random oracle model).

  22. Outline Motivation Verifiable Computation Memory Delegation Conclusion Probabilistically Checkable Proofs The IP=PSPACE result yielded a surprising consequence: any computation can be associated with a (very long) proof which can be queried in only a constant number of locations (...AMLSS, AS, ...) The Prover commits to this proof using a Merkle tree and then the Verifier queries it and verifies the openings (K) Note that now we have an argument with a computational soundness guarantee This protocol can also be made non-interactive using the random oracle (M) or strong extractability assumptions about the hash function used in the protocol (DL,BCCT,GLR) Main bottleneck: still the Prover’s complexity O ( S 1 . 5 )

Recommend

Delegation with (nearly) optimal time/space overhead Justin Holmgren Ron Rothblum MIT MIT

Delegation with (nearly) optimal time/space overhead Justin Holmgren Ron Rothblum MIT MIT

Delegation with (nearly) optimal time/space overhead Justin Holmgren Ron Rothblum MIT MIT Verifiable Computation Verifiable Computation Verifiable Computation M(x)=? M(x) = y Verifiable Computation M(x)=? , challenge , proof

1.73k views • 119 slides
Outsourcing of Storage and Computations Cloud Services Client Devices Input u Output F(u)

Outsourcing of Storage and Computations Cloud Services Client Devices Input u Output F(u)

T RUE S ET : Faster Verifiable Set Computations Ahmed E. Kosba , Dimitrios Papadopoulos , Charalampos Papamanthou Mahmoud F. Sayed , Elaine Shi , Nikos Triandopoulos University of Maryland, College Park Boston

949 views • 22 slides
Alex Bredariol Grilo joint work with Andrea Coladangelo, Stacey Jeffery and Thomas Vidick Why

Alex Bredariol Grilo joint work with Andrea Coladangelo, Stacey Jeffery and Thomas Vidick Why

Non-local games and verifiable delegation of quantum computation Alex Bredariol Grilo joint work with Andrea Coladangelo, Stacey Jeffery and Thomas Vidick Why verifiably delegate quantum computation? Non-local games and verifiable delegation of

835 views • 81 slides
DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the

DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the

DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the benefits of delegation. Define delegation, and identify its benefits and uses. Explain the basic methods involved in successful delegation. Explore the

1.79k views • 149 slides
Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation

Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation

Introduction Delegation operations in hierarchical RBAC Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation Jason Crampton Hemanth Khambhammettu semantics Conclusion Information Security

959 views • 57 slides
VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things

VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things

Confrence de lancement de l'ANR Ciao, Fvrier 2020, Bordeaux, France VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things down VERIFIABLE DELAY FUNCTIONS [Boneh, Bonneau, Bnz, Fisch 2018] A VDF is

616 views • 32 slides
Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of

Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of

Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of Virginia Why do these matter? Alternative consensus protocols Applications to public randomness generation Leader election Bitcoin Proof of Work

355 views • 19 slides
Embarrassingly Parallel Computations 3.2 1 Embarrassingly Parallel Computations A computation

Embarrassingly Parallel Computations 3.2 1 Embarrassingly Parallel Computations A computation

Parallel Techniques Embarrassingly Parallel Computations Partitioning and Divide-and-Conquer Strategies Pipelined Computations Synchronous Computations Asynchronous Computations Asynchronous Computations Strategies

378 views • 13 slides
Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+ Verifiable Resource Accoun9ng for Cloud Services) Vyas Sekar vNFO joint with Seyed Fayazbakhsh,

434 views • 28 slides
Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable

Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable

Leonard Lensink, Sjaak Smetsers and Marko van Eekelen Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable Java Code from Verified PVS Specifications Overview Motivation Code generation

544 views • 26 slides
Structuring Computations Structuring Computations Contents Jacobs Types06, 18/4/06

Structuring Computations Structuring Computations Contents Jacobs Types06, 18/4/06

FACULTY OF SCIENCE Bart Jacobs Structuring Computations Structuring Computations Contents Jacobs Types06, 18/4/06 p.1/52 Structuring Computations Contents I. Sneak preview VII. Hoare logic for JML II. Comonads VIII. Conclusions

1.79k views • 164 slides
The computations of acting agents and the agents acting in computations Philipp Hennig ICERM 5

The computations of acting agents and the agents acting in computations Philipp Hennig ICERM 5

The computations of acting agents and the agents acting in computations Philipp Hennig ICERM 5 June 2017 Research Group for Probabilistic Numerics Max Planck Institute for Intelligent Systems Tbingen, Germany Some of the presented work was

1.12k views • 76 slides
Unique Aggregate Signatures with Applications to Distributed Verifiable Random Functions

Unique Aggregate Signatures with Applications to Distributed Verifiable Random Functions

Unique Aggregate Signatures with Applications to Distributed Verifiable Random Functions Veronika Kuchta and Mark Manulis CANS 2013, Paraty, Brazil November 21, 2013 Overview Unique Signature Schemes Verifiable Random Functions Unique

420 views • 13 slides
Verifiable Delay Functions: How to Slow Things Down (Verifiably) Dan Boneh Stanford University

Verifiable Delay Functions: How to Slow Things Down (Verifiably) Dan Boneh Stanford University

NutMiC19, June, 2019 Verifiable Delay Functions: How to Slow Things Down (Verifiably) Dan Boneh Stanford University What is a VDF? (verifiable delay function) Intuition: a function X Y that (1) takes time T to evaluate, even with

694 views • 30 slides
Verifiable Security of Boneh-Franklin Identity-Based Encryption Federico Olmedo Gilles Barthe

Verifiable Security of Boneh-Franklin Identity-Based Encryption Federico Olmedo Gilles Barthe

Verifiable Security of Boneh-Franklin Identity-Based Encryption Federico Olmedo Gilles Barthe Santiago Zanella Bguelin IMDEA Software Institute, Madrid, Spain 5 th International Conference on Provable Security 2011.10.17 Verifiable Security

457 views • 41 slides
Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce

Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce

Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce Winstead, MSN, RN , FRE Mission Statement Mission Statement The mission of the North Carolina Board of Nursing is to protect the public by

388 views • 12 slides
Embarrassingly Parallel Computations Embarrassingly Parallel Computations A computation that

Embarrassingly Parallel Computations Embarrassingly Parallel Computations A computation that

Embarrassingly Parallel Computations Embarrassingly Parallel Computations A computation that can be divided into completely independent parts, each of which can be executed on a separate process(or) is called embarrassingly parallel. An

727 views • 58 slides
Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST

Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST

Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST BE LISTED AS AN ADDITIONAL INSURED ON ALL NURSE DELEGATION CONTRACTS EMERGENCY RULES NURSE DELEGATION Nurse Delegation Emergency Rules 1. Basic

309 views • 6 slides
Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European

Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European

Brussels, 26th May 2015 Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European democracy at risk? or European democracy at risk? Daniel Guguen Delineation between delegated and implementing acts?

61 views • 5 slides
DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda,

DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda,

DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda, The Gambia Delegation How do you delegate a subdomain? In principle straightforward: just insert NS records for the sub-domain, pointing

456 views • 29 slides
Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University

Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University

Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University Brown University . Yael Kalai Ran Raz. Microsoft Research Weizmann Inst. of Science . 1 Delegation

775 views • 22 slides
Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for

Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for

Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for securing digital information, transactions, and distributed computations Katz and Lindell 07 Authentication Verifiable elections

351 views • 20 slides
Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo

Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo

Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo Alberto) (FGV EPGE) (Collegio Carlo Alberto) University of Bonn - October 23rd, 2019 Introduction Delegation Delegation problems are

977 views • 39 slides
A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel

A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel

A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel Matranga Access Delegation in distributed environments SAML 2.0 Condition to Delegate Implementation Future plans Access Delegation in distributed

666 views • 18 slides

More recommend