is practical
play

is Practical gnes Kiss Thomas Schneider TU Darmstadt Eurocrypt - PowerPoint PPT Presentation

Dec 28, 2022 β€’582 likes β€’1.25k views

Valiant s Universal Circuit is Practical gnes Kiss Thomas Schneider TU Darmstadt Eurocrypt 2016 May 11, 2016 Universal Circuit (UC) There is a Boolean circuit of size O log for which it holds that for any Boolean

  1. Valiant ’ s Universal Circuit is Practical Ágnes Kiss Thomas Schneider TU Darmstadt Eurocrypt 2016 May 11, 2016

  2. Universal Circuit (UC) There is a Boolean circuit 𝑉𝐷 of size O π‘œ log π‘œ for which it holds that for any Boolean function 𝑔 of size π‘œ 𝑉𝐷 can be made to compute 𝑔. Leslie G. Valiant 1976 𝑔 𝑉𝐷 2

  3. Universal Circuit (UC) There is a Boolean circuit 𝑉𝐷 of size O π‘œ log π‘œ for which it holds that for any Boolean function 𝑔 of size π‘œ there exists a programming π‘ž such that for any input 𝑦: 𝑉𝐷 π‘ž, 𝑦 = 𝑔 𝑦 . 𝑦 𝑦 π‘ž Leslie G. Valiant 1976 𝑔(𝑦) 𝑉𝐷(π‘ž, 𝑦) 2

  4. UC Applications Verifiable Program obfuscation computation Attribute-based Private function encryption evaluation 3

  5. Secure Function Evaluation 𝑔 𝑧 𝑦 𝑔(𝑦, 𝑧) 4

  6. Secure Function Evaluation 𝑧 𝑦 SFE 𝑔 𝑔(𝑦, 𝑧) 4

  7. Secure Function Evaluation 𝑧 𝑦 SFE 𝑔 𝑔(𝑦, 𝑧) 4

  8. Secure Function Evaluation SFE 𝑧 𝑦 𝑔 𝑔(𝑦, 𝑧) 4

  9. Secure Function Evaluation Boolean circuit 𝑧 𝑦 𝑔(𝑦, 𝑧) 𝐷 βžͺ Yao’s Garbled Circuit Protocol βžͺ Goldreich-Micali-Wigderson Protocol 4

  10. Private Function Evaluation PFE 𝑔 𝑦 𝑔(𝑦) 𝑔(𝑦) 5

  11. Private Function Evaluation PFE 𝐷 𝑣, 𝑀, 𝑙 𝑦 𝑔(𝑦) 𝑔(𝑦) 5

  12. Private Function Evaluation 𝑉𝐷 𝑣,𝑀,𝑙 π‘ž 𝑦 𝑉𝐷(π‘ž, 𝑦) 𝑉𝐷(π‘ž, 𝑦) 𝑔(𝑦) 𝑔(𝑦) 5

  13. PFE Applications Software diagnostics Medical diagnostics Private search Private databases queries 6

  14. UC Construction C (size: π‘œ = 𝑣 + 𝑀 + 𝑙 ) 7

  15. UC Construction C (size: π‘œ = 𝑣 + 𝑀 + 𝑙 ) UC Generation 7

  16. UC Construction C (size: π‘œ = 𝑣 + 𝑀 + 𝑙 ) UC Generation Programming bits p Universal Circuit UC 7

  17. Existing UC Constructions [Val76] [KS08] O(π‘œ log 2 π‘œ) O(π‘œ log π‘œ) Size O(π‘œ) O(π‘œ log π‘œ) Depth Implemented [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. [KS08] V. Kolesnikov, T. Schneider: A practical universal circuit construction and secure evaluation of private functions. In FC 2008 . 8

  18. Valiant’s UC Construction π‘œ G ENERATION Universal Graph UG Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. 9

  19. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Universal Graph UG Universal Circuit UC C [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. 9

  20. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Universal Circuit UC C G C [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. 9

  21. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. G C 9

  22. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. G C 9

  23. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. G C 9

  24. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. G C 9

  25. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. G C 9

  26. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Programming bits p Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. 9

  27. Valiant’s UC Construction C size ≀ π‘œ π‘œ P ROGRAMMING G ENERATION Graph G C Universal Graph UG Edge-embedding E Programming bits p Universal Circuit UC [Val76] L. G. Valiant: Universal circuits (preliminary report). In STOC 1976. 9

  28. Our Contributions Valiant’s universal circuit is practical. Refined size of UC compiler Embedding construction algorithm 10

  29. UG Embedding Algorithm P ROGRAMMING Graph G C Universal Graph UG Edge-embedding E 11

  30. Recursive UG Construction 𝑉𝐻 π‘œ 2 1 𝑉𝐻 𝑉𝐻 π‘œ 2 π‘œ 2 ... 12

  31. Recursive UG Construction 𝑉𝐻 π‘œ 2 1 𝑉𝐻 𝑉𝐻 π‘œ 2 π‘œ 2 11 𝑉𝐻 12 22 21 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 4 π‘œ 4 π‘œ 4 π‘œ 4 ... ... ... ... ... 12

  32. Recursive UG Construction 𝑉𝐻 π‘œ 2 1 𝑉𝐻 𝑉𝐻 π‘œ 2 π‘œ 2 11 𝑉𝐻 12 21 22 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 4 π‘œ 4 π‘œ 4 π‘œ 4 111 𝑉𝐻 221 𝑉𝐻 211 𝑉𝐻 121 𝑉𝐻 112 222 212 𝑉𝐻 122 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 12

  33. Recursive UG Construction 𝑉𝐻 π‘œ 2 1 𝑉𝐻 𝑉𝐻 π‘œ 2 π‘œ 2 11 𝑉𝐻 12 21 22 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 4 π‘œ 4 π‘œ 4 π‘œ 4 111 𝑉𝐻 221 𝑉𝐻 211 𝑉𝐻 121 𝑉𝐻 112 222 212 𝑉𝐻 122 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 12

  34. Edge-Embedding G C 13

  35. Edge-Embedding H 1 H 2 G C 13

  36. Edge-Embedding H 1 H 2 G C G 1 G 2 13

  37. Edge-Embedding H 1 H 2 G C G 1 G 2 H 11 H 12 H 21 H 22 13

  38. Edge-Embedding H 1 H 2 H 11 H 12 H 21 H 22 13

  39. Edge-Embedding H 1 H 2 H 11 H 12 H 21 H 22 G 11 G 12 G 21 G 22 13

  40. Edge-Embedding H 1 H 2 H 11 H 12 H 21 H 22 H 122 H 211 H 212 H 221 H 222 H 111 H 121 H 112 13

  41. Edge-Embedding H 1 H 2 H 11 H 12 H 21 H 22 H 122 H 211 H 212 H 221 H 222 H 111 H 121 H 112 13

  42. Edge-Embedding H 1 H 2 H 11 H 12 H 21 H 22 H 122 H 211 H 212 H 221 H 222 H 111 H 121 H 112 13

  43. Edge-Embedding G C H 1 H 2 H 11 H 12 H 21 H 22 H 122 H 211 H 212 H 221 H 222 H 111 H 121 H 112 14

  44. Recursive UG Construction 𝑉𝐻 π‘œ 2 1 𝑉𝐻 𝑉𝐻 π‘œ 2 π‘œ 2 11 𝑉𝐻 12 21 22 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 4 π‘œ 4 π‘œ 4 π‘œ 4 111 𝑉𝐻 221 𝑉𝐻 211 𝑉𝐻 121 𝑉𝐻 112 222 212 𝑉𝐻 122 𝑉𝐻 𝑉𝐻 𝑉𝐻 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 π‘œ 8 15

  45. Our Contributions Valiant’s universal circuit is practical. Embedding UC compiler Refined size of algorithm construction 16

  46. Size of Universal Graph Size of the universal graph Our upper bound Our lower bound Exact number of nodes π‘œβˆ’2 + 5 π‘œβˆ’2 𝐺 π‘œ = 2𝐺 , if π‘œ is even 2 2 π‘œβˆ’1 π‘œβˆ’3 + 5 π‘œβˆ’3 𝐺 π‘œ = 𝐺 + 𝐺 + 3 , if π‘œ is odd 2 2 2 Size of original graph 17

  47. Size of Universal Graph Size of the universal graph Our upper bound: 2.5π‘œ log 2 π‘œ βˆ’ 9π‘œ + 5 log 2 π‘œ + 10 Our lower bound : 2.5π‘œ log 2 π‘œ βˆ’ 4π‘œ + 2.5 log 2 π‘œ + 5 Exact number of nodes Size of original graph 17

  48. Deviation of Estimated Size and Exact Size Devination in percentage 2.5π‘œ log 2 π‘œ βˆ’ 6.5π‘œ + 3.75 log 2 π‘œ + 7.5 π‘œβˆ’2 + 5 π‘œβˆ’2 𝐺 π‘œ = 2𝐺 , if π‘œ is even 2 2 π‘œβˆ’1 π‘œβˆ’3 + 5 π‘œβˆ’3 𝐺 π‘œ = 𝐺 + 𝐺 + 3 , if π‘œ is odd 2 2 2 Size of original graph 18

  49. Size of the UC Constructions [KS08] Size of the universal circuit 2860 Number of gates 19

  50. Revised size of the UC Constructions Size of the universal circuit 2860 1070 Number of gates 19

  51. PFE Comparison – Symmetric-Key Operations [KS08] construction Valiant’s construction (revised) Symmetric-key operations [MS13] OT-based protocol 7 103 19 656 27 429 43 874 (DES) (AES) (MD5) (MULT32) 20

  52. PFE Comparison – Symmetric-Key Operations [KS08] construction Valiant’s construction (revised) Symmetric-key operations [MS13] OT-based protocol 7 103 19 656 27 429 43 874 (DES) (AES) (MD5) (MULT32) (size) [MS13]: P. Mohassel, S. S. Sadeghian. How to hide circuits in MPC an efficient framework for private function evaluation. In Eurocrypt 2013 . 20

  53. Our Contributions Valiant’s universal circuit is practical. Embedding Refined size of UC compiler algorithm construction 21

  54. UC Implementation 𝑔 SHDL C 0 [MNPS04] D. Malkhi, N. Nisan, B. Pinkas, Y. Sella. Fairplay-Secure Two-Party Computation System. In USENIX Security Symposium 2004 . 22

  55. UC Implementation C size ≀ π‘œ 𝑔 C 0 3 1 ID 2 1 2 3 22

  56. UC Implementation C size ≀ π‘œ 𝑔 C 0 Graph G C C G C 22

  57. UC Implementation π‘œ C size ≀ π‘œ 𝑔 C 0 Graph G C Universal Graph UG 22

  58. UC Implementation π‘œ C size ≀ π‘œ 𝑔 C 0 UC Compiler Graph G C Universal Graph UG Edge-embedding E 22

Recommend

Practical Experience with Practical Experience with Practical Experience with Practical

Practical Experience with Practical Experience with Practical Experience with Practical

Practical Experience with Practical Experience with Practical Experience with Practical Experience with performance monitoring performance monitoring performance monitoring performance monitoring Ryszard Jurga CERN openlab March 29, 2006

577 views β€’ 24 slides
ARDUINO & ELECTRONICS PRACTICAL PRACTICAL SESSION 1 Part of SmartProducts ARDUINO &

ARDUINO & ELECTRONICS PRACTICAL PRACTICAL SESSION 1 Part of SmartProducts ARDUINO &

ARDUINO & ELECTRONICS PRACTICAL PRACTICAL SESSION 1 Part of SmartProducts ARDUINO & ELECTRONICS PRACTICAL Fjodor van Slooten PRACTICAL SESSION 1 W241 (Horst-wing West) f.vanslooten@utwente.nl Goal: Become familiar with Electronics

437 views β€’ 18 slides
Practical Neuropsychology for the NZ setting; from Assessment Planning to Formulation of

Practical Neuropsychology for the NZ setting; from Assessment Planning to Formulation of

Practical Neuropsychology for the NZ setting; from Assessment Planning to Formulation of Practical Recommendations. Dr Susan Shaw Outline This workshop is based upon practical experience Includes what neuropsychologists in NZ do well,

747 views β€’ 36 slides
Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics Gotchas Indentation matters Mark Voorhies Practical Bioinformatics Clustering exercises Visualizing the distance matrix Mark Voorhies Practical

705 views β€’ 46 slides
Practical Bioinformatics Mark Voorhies 5/ 24/ 2013 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/ 24/ 2013 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/ 24/ 2013 Mark Voorhies Practical Bioinformatics Clustering exercises { Visualizing the distance matrix Mark Voorhies Practical Bioinformatics Scripting Cluster Running Cluster3 from the command line

401 views β€’ 7 slides
Practical Analog Filters Overview Types of practical filters Filter specifications

Practical Analog Filters Overview Types of practical filters Filter specifications

Practical Analog Filters Overview Types of practical filters Filter specifications Tradeoffs Many examples J. McNames Portland State University ECE 222 Practical Analog Filters Ver. 1.04 1 Ideal Filters Lowpass Highpass

643 views β€’ 48 slides
Practical Bioinformatics Mark Voorhies 5/26/2015 Mark Voorhies Practical Bioinformatics Habits

Practical Bioinformatics Mark Voorhies 5/26/2015 Mark Voorhies Practical Bioinformatics Habits

Practical Bioinformatics Mark Voorhies 5/26/2015 Mark Voorhies Practical Bioinformatics Habits are things you get for free, without requiring any special work. Cory Doctorow Advice to Writers, 4/5/2012 Mark Voorhies Practical

521 views β€’ 27 slides
Practical Bioinformatics Mark Voorhies 5/22/2015 Mark Voorhies Practical Bioinformatics PAM

Practical Bioinformatics Mark Voorhies 5/22/2015 Mark Voorhies Practical Bioinformatics PAM

Practical Bioinformatics Mark Voorhies 5/22/2015 Mark Voorhies Practical Bioinformatics PAM (Dayhoff) and BLOSUM matrices PAM1 matrix originally calculated from manual alignments of highly conserved sequences (myoglobin, cytochrome C, etc.)

979 views β€’ 71 slides
Curricular Practical Training (CPT) International Students Curricular Practical Training (CPT)

Curricular Practical Training (CPT) International Students Curricular Practical Training (CPT)

Curricular Practical Training (CPT) International Students Curricular Practical Training (CPT) Defined as employment which is an integral or important part of the students curriculum Today we will discuss: Rules and Regulations

82 views β€’ 7 slides
Office of International Engagement Optional Practical Training (OPT) Optional Practical

Office of International Engagement Optional Practical Training (OPT) Optional Practical

Office of International Engagement Optional Practical Training (OPT) Optional Practical Training A period in which undergraduate and graduate students with an F-1 or F-3 status who have completed or have been pursuing a degree for one full

479 views β€’ 14 slides
Practical Bioinformatics Mark Voorhies 4/16/2018 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 4/16/2018 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 4/16/2018 Mark Voorhies Practical Bioinformatics JavaTreeView link-out for ENSEMBL Mouse http://www.ensembl.org/Mus musculus/Gene/Summary?g=HEADER Mark Voorhies Practical Bioinformatics Science! Mark

767 views β€’ 20 slides
Practical Bioinformatics Mark Voorhies 5/23/2019 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/23/2019 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/23/2019 Mark Voorhies Practical Bioinformatics JavaTreeView link-out for ENSEMBL Mouse http://www.ensembl.org/Mus musculus/Gene/Summary?g=HEADER Mark Voorhies Practical Bioinformatics Science! Mark

330 views β€’ 13 slides
Practical examples using Adlib API Bert Degenhart Drenth Rui Mendes Practical examples using

Practical examples using Adlib API Bert Degenhart Drenth Rui Mendes Practical examples using

Practical examples using Adlib API Bert Degenhart Drenth Rui Mendes Practical examples using Adlib API Commands categories Search Write Select Lock Utilities Choosing the correct implementation jQuery plugin

670 views β€’ 51 slides
Practical Use of XML XML Practical Use of Rostislav Titov IT-AIS-EB (e-Business) Section CERN

Practical Use of XML XML Practical Use of Rostislav Titov IT-AIS-EB (e-Business) Section CERN

CERN European Organization for Nuclear Research IT Department e Business Section Practical Use of XML XML Practical Use of Rostislav Titov IT-AIS-EB (e-Business) Section CERN Geneva, Switzerland XML XML eXtensible Markup

474 views β€’ 36 slides
AngkorVR Advanced Practical Richard Schnpflug and Philipp Rettig Advanced Practical Tasks

AngkorVR Advanced Practical Richard Schnpflug and Philipp Rettig Advanced Practical Tasks

AngkorVR Advanced Practical Richard Schnpflug and Philipp Rettig Advanced Practical Tasks - Virtual exploration of the Angkor Wat temple complex - Based on Pheakdey Nguonphan 's Thesis called " Computer Modeling, Analysis and

309 views β€’ 30 slides
Practical Bioinformatics Mark Voorhies 5/21/2019 Mark Voorhies Practical Bioinformatics Change

Practical Bioinformatics Mark Voorhies 5/21/2019 Mark Voorhies Practical Bioinformatics Change

Practical Bioinformatics Mark Voorhies 5/21/2019 Mark Voorhies Practical Bioinformatics Change of Coordinates http://xkcd.com/123/ Mark Voorhies Practical Bioinformatics Principal Components Analysis (PCA) Is there a point of view that

264 views β€’ 11 slides
Trusting Trusting the Cloud with the Cloud with Practical Interact Practical Interactive ive

Trusting Trusting the Cloud with the Cloud with Practical Interact Practical Interactive ive

Trusting Trusting the Cloud with the Cloud with Practical Interact Practical Interactive ive Proofs Proofs Graham Cormode G.Cormode@warwick.ac.uk Amit Chakrabarti (Dartmouth) Andrew McGregor (U Mass Amherst) Justin Thaler (Harvard/Yahoo!)

257 views β€’ 14 slides
Practical Software Design & Style Practical Software Design & Style | 15 Sep 2017 | 1/25

Practical Software Design & Style Practical Software Design & Style | 15 Sep 2017 | 1/25

Practical Software Design & Style Practical Software Design & Style | 15 Sep 2017 | 1/25 Practical Software Design & Style Computational science has to develop the same professional integrity as theoretical and experimental

361 views β€’ 25 slides
Basic Topics in PROLOG Practical matters Practical Matters Two Prologs are installed on the

Basic Topics in PROLOG Practical matters Practical Matters Two Prologs are installed on the

Basic Topics in PROLOG Practical matters Practical Matters Two Prologs are installed on the OSU Ling. Dept. UNIX machines: A Brief Reminder Sicstus: Cases and Structural Induction starting: Inputs and Outputs at UNIX

290 views β€’ 14 slides
Module 7 Practical Exercise Module 7 - Practical Exercise Background You and your team are a

Module 7 Practical Exercise Module 7 - Practical Exercise Background You and your team are a

Module 7 Practical Exercise Module 7 - Practical Exercise Background You and your team are a part of the CAA Safety Oversight Department for EDTO Airways, an established WP-911 EDTO operator with 180 Minute EDTO approval for a fleet of 4 WP-911

596 views β€’ 13 slides
Practical Bioinformatics Mark Voorhies 5/11/2015 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/11/2015 Mark Voorhies Practical Bioinformatics

Introduction to Python Practical Bioinformatics Mark Voorhies 5/11/2015 Mark Voorhies Practical Bioinformatics Introduction to Python Good ideas shamelessly lifted from David Erle and Josh Pollack Mark Voorhies Practical Bioinformatics

718 views β€’ 46 slides
Public key cryptography: a practical Public key cryptography: a practical approach approach

Public key cryptography: a practical Public key cryptography: a practical approach approach

Public key cryptography: a practical Public key cryptography: a practical approach approach Israel Herraiz <isra@herraiz.org> <israel.herraiz@upm.es> KeyID FE0A7AF3 Fingerprint D0DA E915 BFDD E5CD 8BA0 B159 7E97 2ACB FE0A 7AF3

996 views β€’ 43 slides
Practical Bioinformatics Mark Voorhies 4/9/2018 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 4/9/2018 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 4/9/2018 Mark Voorhies Practical Bioinformatics Clustering exercises Visualizing the distance matrix Mark Voorhies Practical Bioinformatics Dictionaries d i c t i o n a r y = { A : T ,

77 views β€’ 5 slides
Genetic simplex model: practical Sanja Franic, Conor Dolan Practical: estimate the genetic and

Genetic simplex model: practical Sanja Franic, Conor Dolan Practical: estimate the genetic and

Genetic simplex model: practical Sanja Franic, Conor Dolan Practical: estimate the genetic and environmental contributions to temporal stability and change in full-scale IQ measured at four time points (mean ages 5.5, 6.8, 9.7, 12.2, SDs .3,

282 views β€’ 24 slides

More recommend