SLIDE 1
Ajith Suresh
CrIS Lab, IISc
https://www.csa.iisc.ac.in/~cris
* Indian Institute of Science (IISc), Bangalore
^ Aarhus University, Denmark
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ajith Suresh CrIS Lab, IISc * Indian Institute of Science (IISc), - - PowerPoint PPT Presentation
Ajith Suresh CrIS Lab, IISc * Indian Institute of Science (IISc), - - PowerPoint PPT Presentation
Ajith Suresh CrIS Lab, IISc * Indian Institute of Science (IISc), Bangalore https://www.csa.iisc.ac.in/~cris ^ Aarhus University, Denmark Outline q Privacy Preserving Machine Learning (PPML) q Secure Multi-party Computation (MPC) q Overview of
SLIDE 2
SLIDE 3
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Machine Learning (ML) Prediction – An Abstraction
Model Parameters Query Result
Privacy ??
Aladdin (Client) Jasmine (Model Owner) ML Algorithm
SLIDE 4
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Model Parameters
Query
Result
Privacy ??
Aladdin (Client) Jasmine (Model Owner) ML Algorithm
Machine Learning (ML) Prediction – An Abstraction
SLIDE 5
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Model Parameters Query Result
Privacy ??
Aladdin (Client) Jasmine (Model Owner) ML Algorithm
Machine Learning (ML) Prediction – An Abstraction
SLIDE 6
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Model Parameters Query Result
MPC meets ML
Aladdin (Client) Jasmine (Model Owner)
PPML Algorithm
Privacy Preserving Machine Learning (PPML)
SLIDE 7
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Secure Multi-party Computation (MPC) [Yao’82]
ü A set of parties with private inputs wish to
compute some joint function of their inputs.
ü Goals of MPC:
§
Correctness – Parties should correctly evaluate the function output.
§
Privacy – Nothing more than the function
- utput should be revealed
SLIDE 8
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Secure Multi-party Computation (MPC) [Yao’82] Trusted Third Party (TTP)
SLIDE 9
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Trusted Third Party (TTP)
SLIDE 10
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
MPC
MPC emulates TTP
SLIDE 11
AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC 26-02-2020
SLIDE 12
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model
Trident protocol
SLIDE 13
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model v 4 parties v Honest majority v At most 1 corruption
Trident protocol
SLIDE 14
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model v Data independent pre-processing v Fast online phase
Trident protocol
SLIDE 15
Sharing Semantics
SLIDE 16
Pre-processing
SLIDE 17
Pre-processing
SLIDE 18
Online
+ =
SLIDE 19
Shares of
SLIDE 20
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness
Trident protocol
SLIDE 21
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Corrupt parties arbitrarily deviate
Trident protocol
SLIDE 22
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Honest parties get output whenever corrupt parties get output
Trident protocol
SLIDE 23
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Multiplication (!. #)
Ref Pre-processing
(#elements)
Online
(#elements)
Security
Araki et al’17 (3PC) 12 9 Abort
SLIDE 24
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Multiplication (!. #)
Ref Pre-processing
(#elements)
Online
(#elements)
Security
Araki et al’17 (3PC) ASTRA (3PC) 12 21 9 4 Abort Fair
SLIDE 25
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Multiplication (!. #)
Ref Pre-processing
(#elements)
Online
(#elements)
Security
Araki et al’17 (3PC) ASTRA (3PC) Gordon et al.’18 (4PC) 12 21 2 9 4 4 Abort Fair Abort
SLIDE 26
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Multiplication (!. #)
Ref Pre-processing
(#elements)
Online
(#elements)
Security
Araki et al’17 (3PC) ASTRA (3PC) Gordon et al.’18 (4PC)
Trident
12 21 2
3
9 4 4
3
Abort Fair Abort
Fair
SLIDE 27
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Ø Efficient Mixed World Conversions
Trident protocol
SLIDE 28
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions
Boolean Boolean World
- Comparison, Bit Extraction …
SLIDE 29
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions
Boolean Arithmetic Boolean World
- Comparison, Bit Extraction …
Arithmetic World
- Addition, Multiplication …
SLIDE 30
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions
Boolean Arithmetic Garbled Boolean World
- Comparison, Bit Extraction …
Arithmetic World
- Addition, Multiplication …
Garbled World
- Division over rings …
SLIDE 31
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions
Boolean Arithmetic Garbled
B2A A2B G2B B2G A2G G2A
Online Rounds Online Communication Up to 7x
2x - 67x
Range of improvement over ABY3
SLIDE 32
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
min(%& + %(, %*) %,
SLIDE 33
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x%
SLIDE 34
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x%
Arithmetic
SLIDE 35
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+)
Arithmetic
A2B
SLIDE 36
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+)
Arithmetic Boolean
A2B
SLIDE 37
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+)
Arithmetic Boolean
A2B B2G
SLIDE 38
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+) !-
Arithmetic Boolean
A2B A2G B2G
SLIDE 39
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+) min !" + !%, !+ ÷ !. !.
Arithmetic Boolean
A2B A2G B2G
SLIDE 40
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
!" + x% min(!" + !%, !+) min !" + !%, !+ ÷ !. !.
Arithmetic Boolean
A2B A2G B2G
Garbled
SLIDE 41
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Mixed World Conversions – An Example
min(%& + %(, %*) %, %& + x( min(%& + %(, %*) min %& + %(, %* ÷ %, %,
Arithmetic Boolean Garbled
A2B G2A A2G B2G
SLIDE 42
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Ø Efficient Mixed World Conversions Ø Special tools for PPML
Trident protocol
SLIDE 43
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Dot Product
Ref Pre-processing
(#elements)
Online
(#elements)
Security
ABY3 (3PC) 12d 9d Abort
d – #elements in each vector
!∎# = %
&'( )
*+ . -+
SLIDE 44
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Dot Product
Ref Pre-processing
(#elements)
Online
(#elements)
Security
ABY3 (3PC) ASTRA (3PC) 12d 21d 9d 2d+2 Abort Fair
d – #elements in each vector
!∎# = %
&'( )
*+ . -+
SLIDE 45
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Dot Product
Ref Pre-processing
(#elements)
Online
(#elements)
Security
ABY3 (3PC) ASTRA (3PC)
Trident
12d 21d
3
9d 2d+2
3
Abort Fair
Fair
d – #elements in each vector
!∎# = %
&'( )
*+ . -+
SLIDE 46
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Tools for PPML
Dot Product Truncation Fixed Point Arithmetic Comparison Bit to Arithmetic Bit Injection Non-linear Activation Functions
SLIDE 47
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Trident protocol
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Ø Efficient Mixed World Conversions Ø Special tools for PPML Ø Lower monetary cost in the outsourced setting
SLIDE 48
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Trident protocol
Ø A new 4PC protocol over ring in the pre-processing model Ø Malicious security with guarantee of fairness Ø Efficient Mixed World Conversions Ø Special tools for PPML Ø Lower monetary cost in the outsourced setting Computation is
- utsourced to a set of
hired servers
SLIDE 49
Benchmarking
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
Ø Implemented both Trident and ABY3, using the ENCRYPTO library. Ø Benchmarked the protocols over LAN (40 Mbps) and WAN (1 Gbps) with the Google Cloud Platform. Ø Servers located in West Europe, East Australia, South Asia, and South East Asia. Ø For benchmarking, we used batch sizes up to 512 and feature sizes up to 1000.
SLIDE 50
Summary of Our Benchmarking Results ML Algorithm
Improvement in terms of Online Throughput over ABY3 Training Prediction
Linear Regression 251.84x 145.81x Logistic Regression 34.58x 149.63x Neural Networks 63.71x 407.12x Convolutional Neural Networks 42.81x 741.56x
*Throughput for Training - #iterations processed by servers / minute *Throughput for Prediction - #queries processed by servers / minute
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
SLIDE 51
AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC 26-02-2020
SLIDE 52
26-02-2020 AJITH SURESH | CRYPTOGRAPHY AND INFORMATION SECURITY LAB ,CSA, IISC
References
1.
Andrew Chi-Chih Yao. Protocols for secure computations (extended abstract). In FOCS, pages 160-164, 1982.
2.
- P. Mohassel, M. Rosulek, and Y. Zhang. Fast and Secure Three party Computation: Garbled Circuit Approach. In CCS, 2015.
3.
- T. Araki, A. Barak, J. Furukawa, T. Lichter, Y. Lindell, A. Nof, K. Ohara, A. Watzman, and O. Weinstein. Optimized
Honest-Majority MPC for Malicious Adversaries - Breaking the 1 Billion-Gate Per Second Barrier. In IEEE S&P, 2017.
4.
- J. Furukawa, Y. Lindell, A. Nof, and O. Weinstein. High-Throughput Secure Three-Party Computation for Malicious Adversaries
and an Honest Majority. In EUROCRYPT, 2017.
5.
- K. Chida, D. Genkin, K. Hamada, D. Ikarashi, R. Kikuchi, Y. Lindell, and A. Nof. Fast Large-Scale Honest-Majority MPC for
Malicious Adversaries. In CRYPTO, 2018.
6.
- P. Mohassel and P. Rindal, ABY3: A Mixed Protocol Framework for Machine Learning. In ACM CCS, 2018.
7.
- H. Chaudhari, A. Choudhury, A. Patra and A. Suresh. ASTRA: High-throughput 3PC over Rings with Application to
Secure Prediction, In ACM CCSW , 2019.
8.
- S. D. Gordon and S. Ranellucci and X. Wang. Secure Computation with Low Communication from Cross-checking. In
ASIACRYPT, 2018.