adaptive garbled ram from adaptive garbled ram from
play

Adaptive Garbled RAM from Adaptive Garbled RAM from Laconic - PowerPoint PPT Presentation

Nov 03, 2022 •118 likes •323 views

Adaptive Garbled RAM from Adaptive Garbled RAM from Laconic Oblivious Transfer Sanjam Garg Sanjam Garg Rafail Ostrovsky Rafail Ostrovsky Akshayaram Srinivasan Akshayaram Srinivasan UC Berkeley UCLA UC Berkeley Crypto 2018 Garbled RAM

  1. Adaptive Garbled RAM from Adaptive Garbled RAM from Laconic Oblivious Transfer Sanjam Garg Sanjam Garg Rafail Ostrovsky Rafail Ostrovsky Akshayaram Srinivasan Akshayaram Srinivasan UC Berkeley UCLA UC Berkeley Crypto 2018

  2. Garbled RAM Lu-Ostrovsky 13 Selective Security Long line of work [LO13, GHLOW14, GLOS15, GLO15, LO17]

  3. Adaptive Garbled RAM [Canetti-Chen-Holmgren-Raykova16, Ananth-Chen-Chung-Lin-Lin16] Can we construct Adaptive Garbled RAM from standard Can we construct Adaptive Garbled RAM from standard assumptions? Prior constructions were either in the random oracle model [BHR12] or based on indistinguishability obfuscation [CCHR16, ACCLL16]

  4. Why is Adaptive GRAM important? Motivated by the study of Adaptive Garbled Circuits [BHR12,BGG+14,HJO+16,JW16,JKK+17,JSW17,G S 18] Applications: One-time programs[GKR08], Online-offline 2PC[LR14], Verifiable Computation[GGP10], Adaptive Compact FE[AS16]

  5. Our Results

  6. Adaptive GRAM from Laconic OT Theorem: There exists a construction of Adaptive GRAM from Laconic Oblivious Transfer. Corollary [CDG+16,DG17,BLSV18,DGHM18]: There exists a construction of Adaptive GRAM based on CDH/Factoring/LWE. construction of Adaptive GRAM based on CDH/Factoring/LWE.

  7. Rest of the talk • Starting Point: Adaptive Garbled Circuits [Garg- S 18] • Challenges in Extending to the RAM setting • How to overcome the challenges?

  8. Adaptive Garbled Circuits [Garg-S 18]

  9. Alternate View of a Boolean Circuit

  10. Garbling Step Circuits Access the database via Laconic OT

  11. Updatable Laconic Oblivious Transfer [Cho-Dottling-Garg-Gupta-Miao-Polychroniadou 17] Database D Theorem[CDG+16,DG17,BLSV18,DGHM18]: Assuming CDH/Factoring/LWE, there exists a construction of updatable laconic OT.

  12. Using Laconic OT to access the database

  13. Challenges in the RAM setting Challenge-1: How to Challenge-1: How to protect the database? Access the database via Laconic OT Challenge-2: How to protect the access pattern? In the adaptive setting, more sophisticated tools are In the adaptive setting, more sophisticated tools are needed. In the selective setting [GHLOW14], transforming from unprotected memory access to full security is done via a ORAM scheme and symmetric encryption.

  14. Protecting the Database

  15. Prior Approaches: Location based Encryption Access the database via Laconic OT

  16. [GS18]- Hybrid Argument Real World: Hyb 1: K K K K K K K K Circularity assumptions. Hyb 2: Puncturing affects efficiency. Puncturing affects efficiency. Hyb 3: Hyb 3: . . . Ideal World:

  17. Our Approach: Timed Encryption Theorem: There is a construction of timed Encryption from one-way functions.

  18. Using Timed Encryption Access the database via Laconic OT

  19. Revisiting the Hybrid Argument Real World: Hyb 1: k[2] k[4] k[5] k[6] k[7] k[8] k[1] k[3] Ideal World:

  20. Conclusion • We give a construction of Adaptive Garbled RAM from CDH/Factoring/LWE. CDH/Factoring/LWE. • We obtain the first O(1) round malicious MPC for RAM programs in the persistent setting from standard assumptions. • Open question: Can we remove public-key assumptions? Thank you! https://eprint.iacr.org/2018/549

Recommend

Practical Garbled Circuit Optimizations Mike Rosulek Collaborators: David Evans / Vlad Kolesnikov

Practical Garbled Circuit Optimizations Mike Rosulek Collaborators: David Evans / Vlad Kolesnikov

Practical Garbled Circuit Optimizations Mike Rosulek Collaborators: David Evans / Vlad Kolesnikov / Payman Mohassel / Samee Zahur Garbled circuit framework [Yao86] Garbled circuit framework [Yao86] 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 1 1

2.19k views • 160 slides
Hashing Garbled Circuits for Free Xiong Fan, Chaya Ganesh and Vladimir Kolesnikov Motivation

Hashing Garbled Circuits for Free Xiong Fan, Chaya Ganesh and Vladimir Kolesnikov Motivation

Hashing Garbled Circuits for Free Xiong Fan, Chaya Ganesh and Vladimir Kolesnikov Motivation Garbled circuits (GC) main technique for secure computation Motivation Garbled circuits (GC) main technique for secure computation Primitive in

2k views • 188 slides
Stronger Security for Reusable Garbled Circuits, General Definitions and Attacks Shweta Agrawal

Stronger Security for Reusable Garbled Circuits, General Definitions and Attacks Shweta Agrawal

Stronger Security for Reusable Garbled Circuits, General Definitions and Attacks Shweta Agrawal IIT Madras Garbled Circuits (Yao 86) Garble Circuit C: Garble(C; R) Encode Input x: Encode(x; R) Decode: ( ) = ( ) C x C x

884 views • 23 slides
Multiple Access garbled garbled what if the moderator what if the moderator s connection

Multiple Access garbled garbled what if the moderator what if the moderator s connection

What is it all about? Some simple solutions Consider an audioconference where Consider an audioconference where Use a moderator Use a moderator if one person speaks, all can hear if one person speaks, all can hear a speaker must

451 views • 10 slides
On Garbled Circuits Ignacio Navarro Imperial College London Department of Computing Supervisor:

On Garbled Circuits Ignacio Navarro Imperial College London Department of Computing Supervisor:

On Garbled Circuits Ignacio Navarro Imperial College London Department of Computing Supervisor: Mahdi Cheraghchi June 2018 Abstract A very useful cryptographic tool is to allow distrusting parties to jointly compute a function revealing the

1.03k views • 84 slides
k -Round Multiparty Computation from k -Round Oblivious Transfer via Garbled Interactive Circuits

k -Round Multiparty Computation from k -Round Oblivious Transfer via Garbled Interactive Circuits

k -Round Multiparty Computation from k -Round Oblivious Transfer via Garbled Interactive Circuits Fabrice Benhamouda Huijia (Rachel) Lin IBM Research / Columbia University, US University of California, Santa Barbara, US Eurocrypt 2018, May 1,

1.03k views • 85 slides
SFE: Yaos Garbled Circuit Oblivious Transfer IDEAL World Pick one out of two, without

SFE: Yaos Garbled Circuit Oblivious Transfer IDEAL World Pick one out of two, without

SFE: Yaos Garbled Circuit Oblivious Transfer IDEAL World Pick one out of two, without revealing which Intuitive property: OT transfer partial A:up, B:down A up I need just information All 2 of one them! But cant

432 views • 20 slides
Structured Encryption Seny Kamara Microsoft Research Lei Wei University of North Carolina

Structured Encryption Seny Kamara Microsoft Research Lei Wei University of North Carolina

Garbled Circuits via Structured Encryption Seny Kamara Microsoft Research Lei Wei University of North Carolina Garbled Circuits Fundamental cryptographic primitive Possess many useful properties Homomorphic Functional General-purpose

918 views • 23 slides
From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov convinced me that direct adaptive control can be robust Dimitri Peaucelle FRontiers of ADaptive and nonlinear CONtrol (FRADCON 2018) ECC Workshop,

628 views • 19 slides
FREE IF : HOW TO OMIT INACTIVE BRANCHES AND IMPLEMENT S-UNIVERSAL GARBLED CIRCUIT ALMOST FOR

FREE IF : HOW TO OMIT INACTIVE BRANCHES AND IMPLEMENT S-UNIVERSAL GARBLED CIRCUIT ALMOST FOR

FREE IF : HOW TO OMIT INACTIVE BRANCHES AND IMPLEMENT S-UNIVERSAL GARBLED CIRCUIT ALMOST FOR FREE V L A D KO L E S N I KO V G E O R G I A T E C H HIGH-LEVEL OVERVIEW OF THE RESULT f 1 (x,y) f 2 (x,y) f 3 (x,y) f 30 (x,y) c Sel In GC,

559 views • 18 slides
Parents interpretations of report cards: Garbled in transmission? Dr. Darryl Hunter Faculty of

Parents interpretations of report cards: Garbled in transmission? Dr. Darryl Hunter Faculty of

Parents interpretations of report cards: Garbled in transmission? Dr. Darryl Hunter Faculty of Education Department of Policy Studies University of Alberta Report card marks: Why important? Report card notations are important representations

557 views • 26 slides
Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F proto proto iface iface Secure (and correct) if: s.t. output of is distributed Env Env identically in REAL IDEAL REAL and

1.28k views • 126 slides
Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F proto proto iface iface Secure (and correct) if: s.t. output of is distributed Env Env identically in REAL IDEAL REAL and

1.33k views • 102 slides
Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D.

Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D.

Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D. Cytel Inc. Adaptive Designs Adaptive designs are defined as: changes in design or analyses guided by examination of the accumulated

1.11k views • 64 slides
Yaos Garbled Circuits Recent Directions and Implementations Pete Snyder Outline 1. Context

Yaos Garbled Circuits Recent Directions and Implementations Pete Snyder Outline 1. Context

Yaos Garbled Circuits Recent Directions and Implementations Pete Snyder Outline 1. Context 2. Security definitions 3. Oblivious transfer 4. Yaos original protocol 5. Security improvements 6. Performance improvements 7.

1.05k views • 73 slides
Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition

Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition

Neural Nets for Adaptive Filter and Adaptive Pattern Recognition Brian Young Article Context Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition Adaptive Filters Min. Disturb. and LMS

976 views • 23 slides
Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive Submodularity Ratio Kaito Fujii (UTokyo) & Shinsaku Sakaue (NTT) The 36th I nternational Conference on Machine Learning Jun. 12, 2019 Application: I n fl

955 views • 30 slides
Computation Using Garbled Circuits Yan Huang David Evans Jonathan Katz Lior Malka

Computation Using Garbled Circuits Yan Huang David Evans Jonathan Katz Lior Malka

Faster Secure Two-Party Computation Using Garbled Circuits Yan Huang David Evans Jonathan Katz Lior Malka www.MightBeEvil.com Secure Two-Party Computation Bobs Genome: ACTG Alices Genome: ACTG Markers (~1000): *0,1, , 0+

588 views • 30 slides
THE ADAPTIVE COOKING PROGRAM LONDON, ONTARIO What Is Adaptive Cooking? Consideration Of:

THE ADAPTIVE COOKING PROGRAM LONDON, ONTARIO What Is Adaptive Cooking? Consideration Of:

THE ADAPTIVE COOKING PROGRAM LONDON, ONTARIO What Is Adaptive Cooking? Consideration Of: Disability Age Cognitive Function Financial Status Living Situation Disabilities Sight Varying degrees of dependence Low

524 views • 16 slides
Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin

Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin

Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin Holmgren, Mariana Raykova DIMACS workshop MIT Media Lab June 8~10, 2016 1 : June 11, 2016, Boston, heavy snow. 2 : June 11, 2016, Boston, heavy

1.28k views • 115 slides
DFW Experience With Rhythm Adaptive Signal Control Rhythm Adaptive Signal Control April 13 2012

DFW Experience With Rhythm Adaptive Signal Control Rhythm Adaptive Signal Control April 13 2012

DFW Experience With Rhythm Adaptive Signal Control Rhythm Adaptive Signal Control April 13 2012 Michael Pacelli, City of Grapevine Paul Luedtke, HDR Engineering, Inc. John Black, City of Richardson What is it? The InSync adaptive system

538 views • 33 slides
Adaptive Design of a Unidirectional Adaptive Design of a Unidirectional Source in a Duct Source

Adaptive Design of a Unidirectional Adaptive Design of a Unidirectional Source in a Duct Source

ISMA23 - International Conference on Noise and Vibration Engineering HELSINKI UNIVERSITY OF TECHNOLOGY Sept. 16-18, 1998, Leuven, Belgium Adaptive Design of a Unidirectional Adaptive Design of a Unidirectional Source in a Duct Source in a

566 views • 21 slides
Adaptive Control Chapter 14: Adaptive regulation Rejection of unknown disturbances 1

Adaptive Control Chapter 14: Adaptive regulation Rejection of unknown disturbances 1

Adaptive Control Chapter 14: Adaptive regulation Rejection of unknown disturbances 1 Adaptive Control Landau, Lozano, MSaad, Karimi Chapter 14: Adaptive regulation Rejection of unknown disturbances 2 Adaptive Control

500 views • 38 slides
1 Quote clearly justifies the need for adaptive interventions and highlights the fact that there

1 Quote clearly justifies the need for adaptive interventions and highlights the fact that there

In this module, well talk about an experimental design that lets us develop effective adaptive interventions, called a sequential multiple assignment randomized trial, or SMART. 1 Quote clearly justifies the need for adaptive interventions

813 views • 39 slides

More recommend