can we beat the square root bound for ecdlp over f p 2
play

Can we Beat the Square Root Bound for ECDLP over F p 2 via - PowerPoint PPT Presentation

Oct 20, 2022 •263 likes •801 views

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? NutMiC 2019 , Paris Claire Delaplace Alexander May Elliptic Curve O y 4 K : Field of characteristic = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x 2 2 4 2

  1. Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? NutMiC 2019 , Paris Claire Delaplace Alexander May

  2. Elliptic Curve O y 4 K : Field of characteristic � = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x − 2 2 4 − 2 − 4 2

  3. Elliptic Curve O y 4 K : Field of characteristic � = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x − 2 2 4 ( E ( K ) , +) : Abelian group − 2 P = ( x, y ) Q = ( x ′ , y ′ ) − 4 Group Law • 2 P = ( x d , y d ) • P + Q = ( x s , y s ) � y − y ′ � 3 x 2 + a � 2 � 2 x d = − 2 x x s = − x − x ′ 2 y x − x ′ y d = y + 3 x 2 + a y s = y + y − y ′ x − x ′ ( x s − x ) ( x d − x ) 2 y 2

  4. Elliptic Curve Discrete Logarithm Problem F q : Finite field with q elements Order of a point The order r of a point P ∈ E ( F q ) is the smallest integer > 0 s.t. rP = O ECDLP Given P, Q ∈ E ( F q ) s.t. P of order r = O ( q ) , Q ∈ � P � Find k ∈ N such that kP = Q . 3

  5. Elliptic Curve Discrete Logarithm Problem F p 2 : Finite field with p 2 elements Order of a point The order r of a point P ∈ E ( F p 2 ) is the smallest integer > 0 s.t. rP = O p 2 -ECDLP � p 2 � Given P, Q ∈ E ( F p 2 ) s.t. P of order r = O , Q ∈ � P � Find k ∈ N such that kP = Q . This paper : F p 2 , p prime. 3

  6. Overview Previous algorithms �� � • Pollard Rho: T = ˜ = ˜ O p 2 O ( p ) � � • [Gaudry09]: T = ˜ p 2 − 2 = ˜ O O ( p ) 2 4

  7. Overview Previous algorithms �� � • Pollard Rho: T = ˜ = ˜ O p 2 O ( p ) � � • [Gaudry09]: T = ˜ p 2 − 2 = ˜ O O ( p ) 2 Question Is there an algorithm for p 2 -ECDLP with runtime o ( p ) ? 4

  8. Overview Previous algorithms �� � • Pollard Rho: T = ˜ = ˜ O p 2 O ( p ) � � • [Gaudry09]: T = ˜ p 2 − 2 = ˜ O O ( p ) 2 Question Is there an algorithm for p 2 -ECDLP with runtime o ( p ) ? Our work... � p 1 . 314 � • gives a new algorithm with runtime T = O • may lead to a o ( p ) algorithm if improved 4

  9. Core Idea: Representation Technique • Introduced by [H-GJ10] for the subset-sum problem • In our case : k can be decomposed as k = k 1 + k 2 log( p ) log( p ) log( p ) 2 2 k 1 = In base 2 k 2 = in ≈ p different ways 5

  10. Core Idea: Representation Technique • Introduced by [H-GJ10] for the subset-sum problem • In our case : k can be decomposed as k = k 1 + k 2 log( p ) log( p ) log( p ) 2 2 k 1 = In base 2 k 2 = in ≈ p different ways Find a needle in a haystack ֒ → Find any needle among p 5

  11. Core Idea: Representation Technique • Introduced by [H-GJ10] for the subset-sum problem • In our case : k can be decomposed as k = k 1 + k 2 log( p ) log( p ) log( p ) 2 2 k 1 = In base 2 k 2 = in ≈ p different ways Find a needle in a haystack ֒ → Find any needle among p 5

  12. General Idea k 1 = k 2 = 3 3 k 1 P Q − k 2 P ≈ p ≈ p 2 2 L L ′ p representations k 1 P = Q − k 2 P = ⇒ k = k 1 + k 2 6

  13. General Idea k 1 = k 2 = 1 1 Q − k 2 P k 1 P ≈ p ≈ p 2 2 L L ′ 1 representation k 1 P = Q − k 2 P = ⇒ k = k 1 + k 2 6

  14. General Idea k 1 = k 2 = 1 1 Q − k 2 P k 1 P ≈ p ≈ p 2 2 L L ′ 1 representation k 1 P = Q − k 2 P = ⇒ k = k 1 + k 2 ∀ ( x, y ) ∈ L (resp. L ′ ) x ∈ F p 6

  15. How to Proceed Splitting k 1 and k 2 k 1 = k 11 + k 12 k 2 = k 21 + k 22 log( p ) log( p ) k 11 = k 21 = k 12 = k 22 = 1 1 4 log p 4 log p 7

  16. How to Proceed Splitting k 1 and k 2 k 1 = k 11 + k 12 k 2 = k 21 + k 22 log( p ) log( p ) k 11 = k 21 = k 12 = k 22 = 1 1 4 log p 4 log p • L : list of all P 1 = ( k 11 + k 12 ) P = ( x, y ) , x ∈ F p • L ′ : list of all P 2 = Q − ( k 21 + k 22 ) P = ( x ′ , y ′ ) , x ′ ∈ F p 7

  17. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = k 11 P k 12 P Q − k 21 P − k 22 P 8

  18. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = 3 3 3 3 k 11 P k 12 P Q − k 21 P − k 22 P p p p p 4 4 4 4 3 T ≈ p 4 8

  19. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = k 11 P k 12 P Q − k 21 P − k 22 P Join Join ( x, y ) ( x ′ , y ′ ) x ′ ∈ F p x ∈ F p 3 4 + T Join T ≈ p 8

  20. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = k 11 P k 12 P Q − k 21 P − k 22 P Join Join ( x, y ) ( x ′ , y ′ ) x ′ ∈ F p x ∈ F p T ≈ T Join 8

  21. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = k 11 P k 12 P Q − k 21 P − k 22 P Join Join ( x, y ) ( x ′ , y ′ ) 1 1 p x ′ ∈ F p p 2 2 x ∈ F p ( k 11 + k 12 ) P = Q − ( k 21 + k 22 ) P 1 T ≈ T Join + p 2 8

  22. A 4 -List Algorithm k 11 = k 12 = k 21 = k 22 = k 11 P k 12 P Q − k 21 P − k 22 P Join Join ( x, y ) ( x ′ , y ′ ) x ′ ∈ F p x ∈ F p ( k 11 + k 12 ) P = Q − ( k 21 + k 22 ) P T ≈ T Join 8

  23. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p 9

  24. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p Group law : ( x 1 − x 2 ) 2 ( x 1 + x 2 + x ) − y 2 1 − y 2 2 = − 2 y 1 y 2 9

  25. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p Group law : ( x 1 − x 2 ) 2 ( x 1 + x 2 + x ) − y 2 1 − y 2 2 = − 2 y 1 y 2 9

  26. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p Weierstraß : (( x 1 − x 2 ) 2 ( x 1 + x 2 + x ) − f ( x 1 ) 2 − f ( x 2 ) 2 ) 2 − 4 f ( x 1 ) f ( x 2 ) = 0 9

  27. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv Weierstraß : (( x 1 − x 2 ) 2 ( x 1 + x 2 + x ) − f ( x 1 ) 2 − f ( x 2 ) 2 ) 2 +4 f ( x 1 ) f ( x 2 ) = 0 9

  28. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv g 0 ( u 1 , v 1 , u 2 , v 2 , u, v ) + α g 1 ( u 1 , v 1 , u 2 , v 2 , u, v ) = 0 9

  29. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv g 0 ( u 1 , v 1 , u 2 , v 2 , u, 0) + α g 1 ( u 1 , v 1 , u 2 , v 2 , u, 0) = 0 9

  30. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv g ′ 0 ( u 1 , v 1 , u 2 , v 2 , u ) + α g ′ 1 ( u 1 , v 1 , u 2 , v 2 , u ) = 0 9

  31. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv g ′ 0 ( u 1 , v 1 , u 2 , v 2 , u ) + α g ′ 1 ( u 1 , v 2 , u 1 , v 2 , u ) = 0 � �� � � �� � =0 =0 = ⇒ We can eliminate u 9

  32. Computing the Join P 1 = ( x 1 , y 1 ) , P 2 = ( x 2 , y 2 ) Check if ( x, y ) = P 1 + P 2 satisfy x ∈ F p x 1 = u 1 + αv 1 , x 2 = u 2 + αv 2 x = u + αv f ( u 1 , v 1 , u 2 , v 2 ) = 0 9

  33. The Zero-Join Problem ZJ-Problem Given • A polynomial f ∈ F p [ X 1 , . . . X 4 ] , deg( f ) constant p s.t. | A || B | = p 3 / 2 • Two lists A , B of points ( u i , v i ) (resp. ( u j , v j ) ) in F 2 Compute the list C of all points ( u i , v i , u j , v j ) s.t. f ( u i , v i , u j , v j ) = 0 10

  34. The Zero-Join Problem ZJ-Problem Given • A polynomial f ∈ F p [ X 1 , . . . X 4 ] , deg( f ) constant p s.t. | A || B | = p 3 / 2 • Two lists A , B of points ( u i , v i ) (resp. ( u j , v j ) ) in F 2 Compute the list C of all points ( u i , v i , u j , v j ) s.t. f ( u i , v i , u j , v j ) = 0 How to solve this? � p 3 / 2 � • Naive algorithm O ( | A || B | ) = O • Can we do better? • Can we solve this in o ( p ) ? 10

  35. The Zero-Join Problem ZJ-Problem Given • A polynomial f ∈ F p [ X 1 , . . . X 4 ] , deg( f ) constant p s.t. | A || B | = p 3 / 2 • Two lists A , B of points ( u i , v i ) (resp. ( u j , v j ) ) in F 2 Compute the list C of all points ( u i , v i , u j , v j ) s.t. f ( u i , v i , u j , v j ) = 0 How to solve this? � p 3 / 2 � • Naive algorithm O ( | A || B | ) = O • Can we do better? Yes! • Can we solve this in o ( p ) ? We don’t know yet... 10

  36. Sub-quadratic algorithm for the ZJ-problem ( u i , v i ) ( u j , v j ) All ( u i , v i , u j , v j ) s.t. f ( u i , v i , u j , v j ) = 0 11

  37. Sub-quadratic algorithm for the ZJ-problem f i = f ( u i , v i , X, Y ) ( u j , v j ) All ( f i , ( u j , v j )) s.t. f i ( u j , v j ) = 0 11

  38. Sub-quadratic algorithm for the ZJ-problem × f i = f ( u i , v i , X, Y ) ( u j , v j ) × All ( f i , ( u j , v j )) s.t. f i ( u j , v j ) = 0 11

  39. Sub-quadratic algorithm for the ZJ-problem × f i = f ( u i , v i , X, Y ) ( u j , v j ) All ( f i , ( u j , v j )) s.t. f i ( u j , v j ) = 0 11

  40. Sub-quadratic algorithm for the ZJ-problem F = � i f i ∀ ( u j , v j ) s.t. F ( u j , v j ) = 0 , find f i s.t f i ( u j , v j ) = 0 11

  41. Sub-quadratic algorithm for the ZJ-problem f i ∀ ( u j , v j ) s.t. F ( u j , v j ) = 0 , find f i s.t f i ( u j , v j ) = 0 11

  42. Complexity analysis • Start with √ p polynomials f i ( X, Y ) and p points ( u j , v j ) 12

  43. Complexity analysis • Start with √ p polynomials f i ( X, Y ) and p points ( u j , v j ) • Compute F = � T = ˜ i f i O ( p ) 12

Recommend

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy Claire Delaplace Alexander May Elliptic Curve O y 4 K : Field of characteristic = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x 2 2 4 2

847 views • 53 slides
Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of

Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of

Quantum Mechanics Quantum Logic Alternative Quantum . . . Square Root of Not: . . . Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of Not Is . . . Why Factoring Large . . . Fuzzy and Quantum

381 views • 17 slides
5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard

5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard

5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard a real number is To help the calculation of represented as : 1 2 the representation of R must be changed into = 1

167 views • 4 slides
Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d

Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d

Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d Approximations: ! z 1 , ! z 2 , , ! z N R d x i ! ! N 1 2 Root Mean Square error = y i 2 z N i = 1 PCA based predic>on Data: !

766 views • 17 slides
Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The

Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The

Institut de Physique du Globe de Paris & Universit Pierre et Marie Curie (Paris VI) Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The Square Root Variable Metric Algorithm for Least-Squares

316 views • 13 slides
Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris

Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris

Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris Hinds School of Engineering ARM Design Center Cardiff University Cambridge WALES, UK UK Key points New high-performance radix-4 SRT square

589 views • 26 slides
The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation

The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation

The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation Joseph Salmon http://josephsalmon.eu IMAG, Univ. Montpellier, CNRS Series of works with: Quentin Bertrand (INRIA) Mathurin Massias (University of

881 views • 61 slides
Applied Cryptography December 2017 ECDLP is the problem of finding an ECC user's secret key,

Applied Cryptography December 2017 ECDLP is the problem of finding an ECC user's secret key,

Applied Cryptography December 2017 ECDLP is the problem of finding an ECC user's secret key, given the user's public key. Unfortunately, there is a gap between ECDLP difficulty and ECC security.There are many attacks that break

527 views • 18 slides
Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of

Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of

Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of Statistics and Genetics Institute University of Florida June 12th, 2020 Statistical Learning Seminar Outline of the talk 1. Multivariate response

1.3k views • 86 slides
The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for

The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for

The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for Computer Science and Control, Hungarian Academy of Sciences (MTA SZTAKI) Budapest, Hungary Dagstuhl Seminar 16221: Algorithms for Optimization

1.19k views • 107 slides
JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) & (Root

JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) & (Root

JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) & (Root mean square values) by A.J.Hobson 13.2.1 Mean values 13.2.2 Root mean square values UNIT 13.2 - INTEGRATION APPLICATIONS 2 MEAN & ROOT MEAN

326 views • 6 slides
Towards an Evolved Lower Bound for the Most Circular Partition of a Square Claudia Obermaier

Towards an Evolved Lower Bound for the Most Circular Partition of a Square Claudia Obermaier

Towards an Evolved Lower Bound for the Most Circular Partition of a Square Claudia Obermaier Markus Wagner {obermaie,wagnermar}@uni-koblenz.de Circular Polygons Circular Polygons d scc Aspect ratio diameter(smallest circumscribing circle)

438 views • 21 slides
Beat by Beat: Classifying Cardiac Arrhythmias with Recurrent Neural Networks Patrick Schwab,

Beat by Beat: Classifying Cardiac Arrhythmias with Recurrent Neural Networks Patrick Schwab,

Normal Beat Atrial Fibrillation Other Arrhythmia Beat by Beat: Classifying Cardiac Arrhythmias with Recurrent Neural Networks Patrick Schwab, Gaetano C. Scebba, Jia Zhang, Marco Delai and Walter Karlen Mobile Health Systems Lab Institute for

603 views • 20 slides
GRASS VALLEY CHP Beat 31 Beat 31 is SR-49 starting at the Bear River (Nevada / Placer County

GRASS VALLEY CHP Beat 31 Beat 31 is SR-49 starting at the Bear River (Nevada / Placer County

GRASS VALLEY CHP Beat 31 Beat 31 is SR-49 starting at the Bear River (Nevada / Placer County line) to the south and extending north to mile post marker 13.16 at the beginning of the Golden Center Freeway Beat 31 2016 A Primary Collision

382 views • 9 slides
Extending the square root method to account for model noise in the ensemble Kalman filter Patrick

Extending the square root method to account for model noise in the ensemble Kalman filter Patrick

Extending the square root method to account for model noise in the ensemble Kalman filter Patrick Nima Raanes , 1 , 2 , Alberto Carrassi 1 , and Laurent Bertino 1 1 Nansen Environmental and Remote Sensing Center 2 Mathematical Institute,

659 views • 46 slides
Vdashneg, Diversity and Square Root Board Inc Initial Design and Intent of the Framework

Vdashneg, Diversity and Square Root Board Inc Initial Design and Intent of the Framework

Vdashneg, Diversity and Square Root Board Inc Initial Design and Intent of the Framework Architecture Interaction among teams. Interaction among teams. Testing Experience Plurals Demo RMI Service Create Start Game

449 views • 14 slides
Formal Verification of a State-of-the-Art Integer Square Root Guillaume Melquiond Rapha el

Formal Verification of a State-of-the-Art Integer Square Root Guillaume Melquiond Rapha el

Introduction Fixed-point Proof Conclusion Formal Verification of a State-of-the-Art Integer Square Root Guillaume Melquiond Rapha el Rieu-Helft Inria, TrustInSoft, Universit e Paris-Saclay June 11th, 2019 Melquiond, Rieu-Helft

766 views • 44 slides
Lecture 8: approximating the square root linear search l = ["The Strokes", "Bon

Lecture 8: approximating the square root linear search l = ["The Strokes", "Bon

Lecture 8: approximating the square root linear search l = ["The Strokes", "Bon Iver", "Arcade Fire", "The Black Keys", "Pixies", "The White Stripes", "Neutral Milk Hotel",

199 views • 5 slides
Bisection Method For Finding Roots Root of function f: Value x such that f(x)=0 Many

Bisection Method For Finding Roots Root of function f: Value x such that f(x)=0 Many

Bisection Method For Finding Roots Root of function f: Value x such that f(x)=0 Many problems can be expressed as finding roots, e.g. square root of w is the same as root of f(x) = x 2 w Requirement: Need to be able to

421 views • 25 slides
Calibrate p values by taking the square root Rutgers Foundations of Probability Seminar

Calibrate p values by taking the square root Rutgers Foundations of Probability Seminar

Calibrate p values by taking the square root Rutgers Foundations of Probability Seminar September 12, 2016 Glenn Shafer 1. Significance levels and p values 2. Game theoretic probability 3. The dynamic nature of game theoretic testing

625 views • 51 slides
Computing the Matrix Square Root in a Matrix Group Nick Higham Department of Mathematics The

Computing the Matrix Square Root in a Matrix Group Nick Higham Department of Mathematics The

Computing the Matrix Square Root in a Matrix Group Nick Higham Department of Mathematics The Victoria University of Manchester higham@ma.man.ac.uk http://www.ma.man.ac.uk/~higham/ Joint work with Niloufer Mackey, D. Steven Mackey, and

507 views • 25 slides
Programming for Business Computing Graphical User Interface Ling-Chieh Kung Department of

Programming for Business Computing Graphical User Interface Ling-Chieh Kung Department of

Basic concepts Example 1: A simple square root calculator Example 2: A scatter plot plotter Example 1B: A cool square root calculator Programming for Business Computing Graphical User Interface Ling-Chieh Kung Department of Information

587 views • 54 slides
Beat the Street Torbay 19 th September 31 st October Beat the Street turns your whole area

Beat the Street Torbay 19 th September 31 st October Beat the Street turns your whole area

Beat the Street Torbay 19 th September 31 st October Beat the Street turns your whole area into a walking and cycling game for the next 6 weeks! Everyone can play! Parents, grandparents, carers, friends neighbours, brothers,

386 views • 17 slides
Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao

Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao

Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao Wang Mariana Raykova Adri Gascn Jack Doerner Jonathan Katz David Evans oblivc.org/sqoram Secure multi-party computation applications Set

504 views • 25 slides

More recommend