Perfectly Secure Multiparty Computation and the Computational Overhead of Cryptography

Damgård, Ivan; Ishai, Yuval; Krøigaard, Mikkel

doi:10.1007/978-3-642-13190-5_23

Cited by 144 publications

(89 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A special case of this transformation is implicit in [25]. We reduce the general case to honestmajority MPC in the semi-honest model and instantiate it using a recent efficient protocol from [10].…”

Section: Overview Of Techniquesmentioning

confidence: 99%

“…Our general approach employs perfectly secure MPC protocols for the malicious model. The efficiency improvement will be obtained by plugging in the recent perfectly secure protocol from [10].…”

Section: Overview Of New Protocolmentioning

confidence: 99%

“…For such an adversary, the protocol provides perfect correctness and, moreover, if the adversary is semi-honest we are also guaranteed privacy. Such a protocol, with the desired complexity, appears in [10]. We now use Π COT to construct a COT protocol π COT as follows.…”

Section: Realizing Cot Via Robust Mpcmentioning

confidence: 99%

See 2 more Smart Citations

Efficient Non-interactive Secure Computation

Ishai

Kushilevitz

Ostrovsky

et al. 2011

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Suppose that a receiver R wishes to publish an encryption of her secret input x so that every sender S, holding an input y, can reveal f (x, y) to R by sending her a single message. This should be done while simultaneously protecting the secrecy of y against a corrupted R and preventing a corrupted S from having an unfair influence on the output of R beyond what is allowed by f .When the parties are semi-honest, practical solutions can be based on Yao's garbled circuit technique. However, for the general problem when the parties, or even S alone, may be malicious, all known polynomial-time solutions are highly inefficient. This is due in part to the fact that known solutions make a non-black-box use of cryptographic primitives, e.g., for providing non-interactive zero-knowledge proofs of statements involving cryptographic computations on secrets.Motivated by the above question, we consider the problem of secure two-party computation in a model that allows only parallel calls to an ideal oblivious transfer (OT) oracle with no additional interaction. We obtain the following results.-Feasibility. We present the first general protocols in this model which only make a black-box use of a pseudorandom generator (PRG). All previous OTbased protocols either make a non-black-box use of cryptographic primitives or require multiple rounds of interaction. -Efficiency. We also consider the question of minimizing the asymptotic number of PRG calls made by such protocols. We show that polylog(κ) calls are sufficient for each gate in a (large) boolean circuit computing f , where κ is a statistical security parameter guaranteeing at most 2 −κ simulation error of a malicious sender. Furthermore, the number of PRG calls per gate can be made constant by settling for a relaxed notion of security which allows a malicious S to arbitrarily correlate the event that R detects cheating with the input of R. This improves over the state of the art also for interactive constant-round black-box protocols, which required Ω(κ) PRG calls per gate, even with similar relaxations of the notion of security.Combining the above results with 2-message (parallel) OT protocols in the CRS model, we get the first solutions to the initial motivating question which only make a black-box use of standard cryptographic primitives.

show abstract

Section: Overview Of Techniquesmentioning

confidence: 99%

Section: Overview Of New Protocolmentioning

confidence: 99%

See 1 more Smart Citation

Efficient Non-interactive Secure Computation

Ishai

Kushilevitz

Ostrovsky

et al. 2011

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

“…We combine Lemma 36 with results from [21,33] and with robust r-wise PRGs to compile any circuit C into a 2 −Ω(κ) disjunction resilient circuit C with poly(κ) randomness complexity, where the size of C is within a polylog factor of the size of C whenever C is much larger than its depth, input, and output size.…”

Section: Secure Two-party Computationmentioning

confidence: 99%

“…We construct C Disj from C and κ via the following steps. First, similarly to [33], we use the efficient MPC protocol from [21] to efficiently generate, given C and κ, a κ-private implementation (I, C , O) of size s = s · polylog(κ) + poly(κ, d, n i , n o ) and randomness locality poly(κ). (The randomness locality feature can be obtained via a "refreshing" approach similarly to the one used in Claim 31.)…”

Section: Secure Two-party Computationmentioning

confidence: 99%

Robust Pseudorandom Generators

Ishai

Kushilevitz

et al. 2013

Automata, Languages, and Programming

Self Cite

View full text Add to dashboard Cite

Let G : {0, 1} n → {0, 1} m be a pseudorandom generator. We say that a circuit implementation of G is (k, q)-robust if for every set S of at most k wires anywhere in the circuit, there is a set T of at most q|S| outputs, such that conditioned on the values of S and T the remaining outputs are pseudorandom. We initiate the study of robust PRGs, presenting explicit and non-explicit constructions in which k is close to n, q is constant, and m >> n. These include unconditional constructions of robust r-wise independent PRGs and small-bias PRGs, as well as conditional constructions of robust cryptographic PRGs.In addition to their general usefulness as a more resilient form of PRGs, our study of robust PRGs is motivated by cryptographic applications in which an adversary has a local view of a large source of secret randomness. We apply robust r-wise independent PRGs towards reducing the randomness complexity of private circuits and protocols for secure multiparty computation, as well as improving the "black-box complexity" of constant-round secure two-party computation.

show abstract

Survey and Analysis of Cryptographic Techniques for Privacy Protection in Recommender Systems

Ogunseyi

Yang

2018

Cloud Computing and Security

View full text Add to dashboard Cite

Perfectly Secure Multiparty Computation and the Computational Overhead of Cryptography

Cited by 144 publications

References 30 publications

Efficient Non-interactive Secure Computation

Efficient Non-interactive Secure Computation

Robust Pseudorandom Generators

Survey and Analysis of Cryptographic Techniques for Privacy Protection in Recommender Systems

Contact Info

Product

Resources

About