fair secure computation or how can i gain strategic
play

Fair Secure Computation (or how can I gain strategic advantage by - PowerPoint PPT Presentation

Feb 08, 2024 •143 likes •429 views

Rump Session 2016 Fair Secure Computation (or how can I gain strategic advantage by breaking fairness) Alptekin Kp Ko University Fair Secure Computation ALPTEKN KP Assistant Professor of Computer Science and Engineering

  1. Rump Session 2016 Fair Secure Computation (or how can I gain strategic advantage by breaking fairness) Alptekin Küpçü Koç University

  2. Fair Secure Computation ALPTEKİN KÜPÇÜ Assistant Professor of Computer Science and Engineering

  3. Secure Multi-Party Computation X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 2

  4. Secure Multi-Party Computation X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 3

  5. Secure Multi-Party Computation Y 1 Y 2 Y 3 Y 4 Y 5 Y 6 12 May 2016 Alptekin Küpçü - Koç University 4

  6. Secure Multi-Party Computation Y 3 12 May 2016 Alptekin Küpçü - Koç University 5

  7. SMPC in a Corporate Setting I OWN Y 3 YOU 12 May 2016 Alptekin Küpçü - Koç University 6

  8. Ideal World X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 7

  9. Ideal World Y 1 Y 2 Y 3 Y 4 Y 5 Y 6 12 May 2016 Alptekin Küpçü - Koç University 8

  10. Real World X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 9

  11. Simulator X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 10

  12. Fairness Impossible in General  Assume a trusted Arbiter is available  Only trusted for fairness, not security  May collude with players  Should not learn input/output  Optimistically employed  Must be efficient (otherwise bottleneck) 12 May 2016 Alptekin Küpçü - Koç University 11

  13. Fairness Impossible in General  Assume a trusted Arbiter is available  Only trusted for fairness, not security  May collude with players  Should not learn input/output  Optimistically employed  Must be efficient (otherwise bottleneck)  Ideal TTP Real Arbiter 12 May 2016 Alptekin Küpçü - Koç University 12

  14. Fair and Secure Computation  Fairness extentions and Arbiter resolutions must be simulated 12 May 2016 Alptekin Küpçü - Koç University 13

  15. Simulating Fairness X 1 X 2 SECURE 2PC SIMULATION FAIRNESS ARGUMENT 12 May 2016 Alptekin Küpçü - Koç University 14

  16. Simulating Fairness X 1 X 2 SECURE and FAIR 2PC SIMULATION 12 May 2016 Alptekin Küpçü - Koç University 15

  17. Fair and Secure Computation  Fairness extentions and Arbiter resolutions must be simulated  Otherwise the protocol may be insecure! 12 May 2016 Alptekin Küpçü - Koç University 16

  18. Fair and Secure Computation  Fairness extentions and Arbiter resolutions must be simulated  Otherwise the protocol may be insecure!  Simulator may contact only when fairness is guaranteed 12 May 2016 Alptekin Küpçü - Koç University 17

  19. Simulator X 1 X 2 X 3 X 4 X 5 X 6 12 May 2016 Alptekin Küpçü - Koç University 18

  20. Ideal World Y 1 Y 2 Y 3 Y 4 Y 5 Y 6 12 May 2016 Alptekin Küpçü - Koç University 19

  21. Real World 12 May 2016 Alptekin Küpçü - Koç University 20

  22. Fair and Secure Computation  Fairness extentions and Arbiter resolutions must be simulated  Otherwise the protocol may be insecure!  Simulator may contact only when fairness is guaranteed  Otherwise real and ideal world outputs are distinguishable 12 May 2016 Alptekin Küpçü - Koç University 21

  23. Fair and Secure Computation  Fairness extentions and Arbiter resolutions must be simulated  Otherwise the protocol may be insecure!  Simulator may contact only when fairness is guaranteed  Otherwise real and ideal world outputs are distinguishable  Arbiter cannot harm security 12 May 2016 Alptekin Küpçü - Koç University 22

  24. Our Solutions # Participants # Rounds # Messages 2 O(1) O(1) n O(1) O(n^2)  OPTIMAL asymptotic performance  Cut-and-choose or zero-knowledge  Malicious or covert  2PC or MPC 12 May 2016 Alptekin Küpçü - Koç University 23

  25. Comparison  Compared to related works, we provide  Optimal asymptotic performance  Constant round (not gradual release)  No broadcast  Arbiter load independent of the circuit size  Do not require an external payment mechanism  In a competitive corporate setting, how can one value some output that is unknown beforehand?  Full simulation proofs  Arbiter cannot harm security  Also proven via simulation  Only fairness is lost if Arbiter colludes with malicious parties 12 May 2016 Alptekin Küpçü - Koç University 24

  26. Our Papers  Reading  Kılınç and Küpçü, CT -RSA 2015, Optimally Efficient Multi-Party Fair Exchange and Fair Secure Multi-Party Computation  Kılınç and Küpçü, FC 2016, Efficiently Making Secure Two-Party Computation Fair  Küpçü and Mohassel, FC 2016, Fast Optimistically Fair Cut-and-Choose 2PC  Funding Acknowlegements  TÜBİTAK, the Scientific and Technological Research Council of TURKEY  COST Action IC1306 Cryptoaction 12 May 2016 Alptekin Küpçü - Koç University 25

  27. ALPTEKİN KÜPÇÜ Assistant Professor of Computer Science and Engineering http://crypto.ku.edu.tr

Recommend

Secure computation With material from Matthew Green, Elaine Shi, CS Unplugged, others Secure

Secure computation With material from Matthew Green, Elaine Shi, CS Unplugged, others Secure

https://2.bp.blogspot.com/-Q_39kDXs93c/UOecpSOTX5I/AAAAAAAAA2k/WaIfMiKzQOw/s1600/eniac1+%281%29.jpg Secure computation With material from Matthew Green, Elaine Shi, CS Unplugged, others Secure computation Zero-knowledge proofs

465 views • 33 slides
MULTIPARTY COMPUTATION WITH REPUTATION SYSTEMS Gilad Asharov Yehuda Lindell Hila Hila Za Zaro

MULTIPARTY COMPUTATION WITH REPUTATION SYSTEMS Gilad Asharov Yehuda Lindell Hila Hila Za Zaro

FAIR AND EFFICIENT SECURE MULTIPARTY COMPUTATION WITH REPUTATION SYSTEMS Gilad Asharov Yehuda Lindell Hila Hila Za Zaro rosim Asiacry acrypt pt 2013 2013 Secure Multi-Party Computation A set of parties who dont trust each other

794 views • 36 slides
Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a computationally weak client to outsource its computation to an untrusted server. = () Main security concerns: 1. Correctness:

377 views • 4 slides
Round-Optimal Secure Multiparty Computation with Honest Majority Prabhanjan Ananth Arka Rai

Round-Optimal Secure Multiparty Computation with Honest Majority Prabhanjan Ananth Arka Rai

Round-Optimal Secure Multiparty Computation with Honest Majority Prabhanjan Ananth Arka Rai Choudhuri Aarushi Goel Abhishek Jain CRYPTO 2018 Secure Multiparty Computation ! # ! $ ! " ! % Secure Multiparty Computation Securely compute

1.18k views • 102 slides
Information-gain Computation Anthony Di Franco (un)Natural Computation Spring 2017 What? Work

Information-gain Computation Anthony Di Franco (un)Natural Computation Spring 2017 What? Work

Information-gain Computation Anthony Di Franco (un)Natural Computation Spring 2017 What? Work with Turing-complete model class, not TMs directly. Prolog-like language: recursive compositions of joint spaces of (discrete) variation Measure

306 views • 16 slides
Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine

Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine

Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine Cryptography in the RAM Model Workshop, Cambridge, MA, June 2016 AC15: Sky Faber, S.J. , Sotirios Kentros, Boyang Wei New Work: S.J. , Boyang Wei Secure

595 views • 23 slides
Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology

Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology

Background Secure Computation Security Model Generic Protocol Applications Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology gkreitz@kth.se October 4 2012 Gunnar Kreitz Secure Multi-Party Computation

1.28k views • 59 slides
Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.) Samuel Ranellucci (Unbound Tech) Xiao Wang (MIT & Boston U.) Secure Computation 4 parties each hold private data. They wish to compute C(x 1

414 views • 24 slides
Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation Computation How to Run Sublinear Algorithms in a Distributed Algorithms in a Distributed Setting Elette Boyle Shafi Goldwasser Stefano Tessaro

1.01k views • 36 slides
The Exact Round Complexity of Secure Computation Antigoni Polychroniadou (Aarhus University)

The Exact Round Complexity of Secure Computation Antigoni Polychroniadou (Aarhus University)

The Exact Round Complexity of Secure Computation Antigoni Polychroniadou (Aarhus University) joint work with Sanjam Garg, Pratyay Mukherjee (UC Berkeley), Omkant Pandey (Drexel University) Background: Secure Multi-Party Computation x 1 f(x 1 ,

750 views • 54 slides
Non-Interactive Secure Computation from One-Way Functions Saikrishna Badrinarayanan Abhishek

Non-Interactive Secure Computation from One-Way Functions Saikrishna Badrinarayanan Abhishek

Non-Interactive Secure Computation from One-Way Functions Saikrishna Badrinarayanan Abhishek Jain (UCLA) (JHU) Rafail Ostrovsky Ivan Visconti (UCLA) (University of Salerno) Secure Two Party Computation Function f Input x Input y P 2 P 1

443 views • 21 slides
Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit

Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit

Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit Sahai UCLA Secure Multiparty Computation A set of mutually distrustful parties (n) wish to compute a joint function of their private inputs

309 views • 16 slides
Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the

Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the

Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the University of Texas, Austin for providing these slides. slide 1 Motivation General framework for describing computation between parties who do not

1.03k views • 35 slides
Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F proto proto iface iface Secure (and correct) if: s.t. output of is distributed Env Env identically in REAL IDEAL REAL and

1.28k views • 126 slides
Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F

Secure 2-Party Computation Lecture 14 Yao s Garbled Circuit RECALL SIM-Secure MPC F F proto proto iface iface Secure (and correct) if: s.t. output of is distributed Env Env identically in REAL IDEAL REAL and

1.33k views • 102 slides
Advanced Tools from Modern Cryptography Lecture 7 Secure 2-Party Computation: Yao s

Advanced Tools from Modern Cryptography Lecture 7 Secure 2-Party Computation: Yao s

Advanced Tools from Modern Cryptography Lecture 7 Secure 2-Party Computation: Yao s Garbled Circuit Recall MPC without Honest-Majority Plan (Still sticking with passive corruption): Two protocols, that are secure computationally The

449 views • 15 slides
2-party secure computation Problem: Two parties, Alice and Bob, with private inputs, a and b ,

2-party secure computation Problem: Two parties, Alice and Bob, with private inputs, a and b ,

1 International Conference on Practice and Theory of Public-Key Cryptography (PKC) 2020 Mon Z a: fast maliciously-secure 2-party computation on the ring 2 k Dario Catalano 1 , Mario Di Raimondo 1 , Dario Fiore 2 and Irene Giacomelli 3 1

504 views • 25 slides
Techniques for Efficient Secure Computation Based on Yaos Protocol Yehuda Lindell Bar-Ilan

Techniques for Efficient Secure Computation Based on Yaos Protocol Yehuda Lindell Bar-Ilan

Techniques for Efficient Secure Computation Based on Yaos Protocol Yehuda Lindell Bar-Ilan University, Israel PKC 2013 Yehuda Lindell Techniques for Efficient Secure Computation 28/2/2013 1 / 39 Secure Computation Background A set of

689 views • 39 slides
SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve Hemenway Hastings Noble Zdancewic University of Pennsylvania 1 / 20 Secure Multi-party Computation (MPC) Compute an arbitrary function among

1.13k views • 36 slides
Practical Secure Two-Party Computation and Applications Thomas Schneider Estonian Winter School

Practical Secure Two-Party Computation and Applications Thomas Schneider Estonian Winter School

Practical Secure Two-Party Computation and Applications Thomas Schneider Estonian Winter School in Computer Science 2016 Overview Lecture 1: Introduction to Secure Two-Party Computation Lecture 2: Private Set Intersection Lecture 3: Tools

935 views • 67 slides
General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve Hemenway Hastings Noble Zdancewic University of Pennsylvania 1 / 26 Secure multi-party computation (MPC) MPC allows a group of mutually

882 views • 51 slides
Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

CS573 Data Privacy and Security Cryptographic Primitives and Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric Encryption Public Key Encryption Secure Multiparty Computation Problem and

779 views • 47 slides
Hiding the Input Size in Secure Two-Party Computation Yehuda Lindell , Kobbi Nissim, Claudio

Hiding the Input Size in Secure Two-Party Computation Yehuda Lindell , Kobbi Nissim, Claudio

Hiding the Input Size in Secure Two-Party Computation Yehuda Lindell , Kobbi Nissim, Claudio Orlandi (or a more privacy Privacy on sensitive social network) My friends should only see our common friends Secure Computation 8dx2rru3d0fW2TS y

520 views • 36 slides
Constant-Overhead Secure Computation using Preprocessing Ivan Damgrd, Sarah Zakarias Aarhus

Constant-Overhead Secure Computation using Preprocessing Ivan Damgrd, Sarah Zakarias Aarhus

Constant-Overhead Secure Computation using Preprocessing Ivan Damgrd, Sarah Zakarias Aarhus University, Denmark Multiparty Computation Goal: Compute circuit UC-securely Unlike previous talk: I Interested in d i complexity of protocol

462 views • 21 slides

More recommend