easily programmable secure multi party computation on
play

Easily programmable secure multi-party computation on integers, - PowerPoint PPT Presentation

Aug 10, 2023 •204 likes •643 views

Easily programmable secure multi-party computation on integers, strings and floating point numbers Dan Bogdanov Sharemind project lead dan@cyber.ee https://sharemind.cyber.ee/ sharemind a machine for fast privacy-preserving computations

  1. Easily programmable secure multi-party computation on integers, strings and floating point numbers Dan Bogdanov Sharemind project lead dan@cyber.ee https://sharemind.cyber.ee/

  2. sharemind a machine for fast privacy-preserving computations privacy preservation in statistics and data mining

  3. sharemind a machine for fast privacy-preserving computations Providing Security-as-a-Service The sharemind secure multi - party database ? Query Results Data People with queries Data owners

  4. A typical problem statement Confidential Confidential data data Organization 1 Organization 2 Confidential How do we data jointly analyze data without showing it to others? Organization 3

  5. A typical (but insecure) solution Confidential Confidential data data a D t a a t D a Data warehouse Organization 1 Organization 2 Data Confidential data Organization 3

  6. A typical (but insecure) solution Confidential Confidential data data s t Results l u s e R Data warehouse Organization 1 Organization 2 This requires Results that the party hosting the data Confidential data warehouse is trusted by everyone. Organization 3

  7. sharemind a machine for fast privacy-preserving computations Our specific goal • Secure data aggregation • Analyze data collected from several sources • Build services that package this technology. • Simple statistics and complex algorithms • Compute sums and averages, use filtering. • Perform complex analyses like market basket analysis, clustering, regression and so on.

  8. sharemind a machine for fast privacy-preserving computations Security measures and guarantees • The data entry application protects input data. • Only the data owner sees the input values. • The database of each server leaks no data. • Defense against insiders (e.g. system administrators). • Some degree of protection against malicious hacking. • The servers run only agreed-to computations. • Protection against malicious queries.

  9. sharemind a machine for fast privacy-preserving computations overview of sharemind 2

  10. sharemind a machine for fast privacy-preserving computations Secure computation à la sharemind • We use additive secret sharing on 32-bit unsigned integers [BLW08]. • Both public and private values are from . Z 2 32 • Three miner servers store the data and perform secure multi-party computation. • Any number of controller applications provide data and request computations. • Ideally, we can show information-theoretic security. [BLW08] Bogdanov, Dan., Laur, Sven., Willemson, Jan. Sharemind: a framework for fast privacy-preserving computations . In Proceedings of 13th European Symposium on Research in Computer Security, ESORICS 2008, LNCS, vol. 5283, pp. 192-206. Springer, Heidelberg (2008)

  11. Getting data into sharemind secret secret secret data data data secret sharing secret-shared secret-shared secret-shared database database database

  12. sharemind a machine for fast privacy-preserving computations Features of controller applications • Controller applications are built using the controller library. • Different controller libraries exist for desktop and web applications [TB09]. • Mobile versions of the controller library are planned. • The controller application automatically handles secret sharing when data is entered and when results are received. [TB09] Talviste, Riivo., Bogdanov, Dan. An improved method for privacy-preserving web-based data collection . Cybernetica research report T-4-5. 2009. Available at: http://research.cyber.ee/

  13. The sharemind built-in database Miner 1 Miner 2 Miner 3 database database database Person Person Person gender gender gender age age age education education education incomeRange incomeRange incomeRange ShoppingBasket ShoppingBasket ShoppingBasket date date date items items items Contains one share Contains one share Contains one share of each secret of each secret of each secret

  14. Processing data on sharemind secret-shared secret-shared secret-shared database database database data analysis using secure multi-party computation secret-shared secret-shared secret-shared result result result

  15. sharemind controls result publishing secret-shared secret-shared secret-shared result result result shares of the secret results the data analyst receives shares of the final result and nothing else the result is reconstructed

  16. sharemind a machine for fast privacy-preserving computations Secure operations on sharemind • Additive secret sharing is additively homomorphic so we get addition and multiplication by constant for free. • We use custom protocols for all other operations. • We have security and correctness proofs for these protocols together with universal composability proofs that allow them to be used in a programmable system. • The current protocol suite is not yet published [BNTW]. [BTNW] Bogdanov, Dan., Niitsoo, Margus. Toft, Tomas.,Willemson, Jan. High-performance secure multi-party computation for data mining applications. Unpublished.

  17. Performance in lab conditions (LAN) Protocol Rounds SISD SIMD SIMD Hz 66 MHz Addition local operation - 0,015 μ s Multiplication w public local operation - 0,006 μ s 166 MHz Cast bool to int 1 15,3 ms 0,8 μ s 1,25 MHz Multiplication w private 2 25,9 ms 1,8 μ s 555 KHz Equality l + 2 101 ms 5,0 μ s 200 KHz Greater-than l + 3 113 ms 51 μ s 20 KHz Bit decomposition l + 3 122 ms 15,7 μ s 64 KHz Division w public l + 4 124 ms 44 μ s 23 KHz Division w private 4 l + 9 390 ms 534 μ s 1,9 KHz Note: All operations are on 32-bit unsigned integers. Note: l = log 2 (numberOfBitsInDataType) [BTNW] Bogdanov, Dan., Niitsoo, Margus. Toft, Tomas.,Willemson, Jan. High-performance secure multi-party computation for data mining applications. Unpublished.

  18. Saturation points in performance 10 6 ● Mult ● ● ●●● Running − time in milliseconds ● Old protocol ● ● 10 5 ● New protocol ● ● ● ● ●●● 10 4 ● ● ● ● ● ● ●●● 10 3 ● ● ● ● ● ● ●●● ● 10 2 ● ● ● ● ● ●●● ● ● ● ● ●●● ● ● ● ●●● ● ● ● ●●● ● ● ● ● ● ● ● ● ● ● ● 10 1 10 0 10 1 10 2 10 3 10 4 10 5 10 6 10 7 10 8 Number of parallel operations [BTNW] Bogdanov, Dan., Niitsoo, Margus. Toft, Tomas.,Willemson, Jan. High-performance secure multi-party computation for data mining applications. Unpublished.

  19. Performance on an international cloud • We deployed Sharemind internationally, with miners in: • United States (West coast) • United Kingdom (London) • Japan (Tokyo) Protocol SIMD (100 000 parallel ops) Cast bool to int 18 μ s per operation Multiplication w private 36 μ s per operation Equality 78 μ s per operation Greater-than 380 μ s per operation Bit decomposition 1,58 ms per operation

  20. sharemind a machine for fast privacy-preserving computations tools for creating secure applications

  21. sharemind a machine for fast privacy-preserving computations Deployment of a sharemind system Data model Business logic Data miner 1 Data miner 2 Enter data manually Private point-to-point communication -- or -- channels Access results from data mining and aggregation algorithms Data miner 3 Import existing data

  22. sharemind a machine for fast privacy-preserving computations Programming secure computations • The secure functionality is programmable in an assembly language that is interpreted by Sharemind. • Internally, Sharemind has a private stack and public and private registers to support the implementation of algorithms. • All registers store vectors to better support SIMD operations. • The design is described in [BL10]. [BL10] Bogdanov, Dan; Laur, Sven. The design of a privacy-preserving distributed virtual machine . In the Collection of AEOLUS theoretical findings. Deliverable D1.0.6. AEOLUS project IP-FP6-015964. 2010.

  23. The SecreC language public int count (private int[[1]] data, public int value) { public int length = size (data); private int matchcounter = 0; public int i = 0; for (i = 0; i < length; i++) { private bool match = (data[i] == needle); matchcounter += match; } return declassify (matchcounter); } [J10] Jagomägis, Roman. SecreC: a Privacy-Aware Programming Language with Applications in Data Mining . Master's thesis. University of Tartu, 2010. [R10] Ristioja, Jaak. An analysis framework for an imperative privacy-preserving programming language . Master's thesis. University of Tartu, 2010.

  24. The SecreCIDE developer tool [RR10] Rebane, Reimo. An integrated development environment for the SecreC programming language . Bachelor's thesis. University of Tartu, 2010.

  25. sharemind a machine for fast privacy-preserving computations The sharemind SDK is freely available • Sharemind SDK version 2012.04 is the latest version. • It contains: • a developer version of the Sharemind 2.1 machine, • a compiler for the SecreC programming language, • a controller library for C++ applications, • example SecreC code and applications • See https://sharemind.cyber.ee/ for downloads.

  26. sharemind a machine for fast privacy-preserving computations applications

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation Computation How to Run Sublinear Algorithms in a Distributed Algorithms in a Distributed Setting Elette Boyle Shafi Goldwasser Stefano Tessaro

1.01k views • 36 slides
Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology

Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology

Background Secure Computation Security Model Generic Protocol Applications Secure Multi-Party Computation Gunnar Kreitz KTH Royal Institute of Technology gkreitz@kth.se October 4 2012 Gunnar Kreitz Secure Multi-Party Computation

1.28k views • 59 slides
SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

SoK: General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve Hemenway Hastings Noble Zdancewic University of Pennsylvania 1 / 20 Secure Multi-party Computation (MPC) Compute an arbitrary function among

1.13k views • 36 slides
General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve

General Purpose Frameworks for Secure Multi-party Computation Marcella Brett Daniel Steve Hemenway Hastings Noble Zdancewic University of Pennsylvania 1 / 26 Secure multi-party computation (MPC) MPC allows a group of mutually

882 views • 51 slides
Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the

Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the

Introduction to Secure Multi-Party Computation Many thanks to Vitaly Shmatikov of the University of Texas, Austin for providing these slides. slide 1 Motivation General framework for describing computation between parties who do not

1.03k views • 35 slides
Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit

Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit

Adaptively Secure Multi-Party Computation with Dishonest Majority Sanjam Garg Amit Sahai UCLA Secure Multiparty Computation A set of mutually distrustful parties (n) wish to compute a joint function of their private inputs

309 views • 16 slides
Asynchronous Multi-Party Computation Vassilis Zikas RPI MPC School IIT Mumbai Secure

Asynchronous Multi-Party Computation Vassilis Zikas RPI MPC School IIT Mumbai Secure

Asynchronous Multi-Party Computation Vassilis Zikas RPI MPC School IIT Mumbai Secure Multi-Party Computation (MPC) Security D 1 D 2 D 4 D 3 Secure Multi-Party Computation (MPC) Security D 1 D 2 1 2 4 3 D 4 D 3 Secure

1.36k views • 124 slides
Secure Multi-party Quantum Computation with a Dishonest Majority Yfke Dulek, Alex Grilo, Stacey

Secure Multi-party Quantum Computation with a Dishonest Majority Yfke Dulek, Alex Grilo, Stacey

Secure Multi-party Quantum Computation with a Dishonest Majority Yfke Dulek, Alex Grilo, Stacey Je ff ery, Christian Majenz, Christian Scha ff ner Introduction Multi-party computation (MPC) Input (player i): x i 83 false Output: f(x 1 , ,

686 views • 20 slides
Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan

Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan

Constant-Round Asynchronous Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan Garay (Yahoo Research) Martin Hirt (ETH Zurich) Vassilis Zikas (RPI) Secure Multi-Party Computation (MPC) [Yao82, GMW87,

677 views • 47 slides
Secure Multi-Party Computation Lecture 13 Must We Trust ? Can we have an auction

Secure Multi-Party Computation Lecture 13 Must We Trust ? Can we have an auction

Secure Multi-Party Computation Lecture 13 Must We Trust ? Can we have an auction without an auctioneer?! Declared winning bid should be correct Only the winner and winning bid should be revealed Using data without sharing?

446 views • 20 slides
Advanced Tools from Modern Cryptography Lecture 6 Secure Multi-Party Computation without

Advanced Tools from Modern Cryptography Lecture 6 Secure Multi-Party Computation without

Advanced Tools from Modern Cryptography Lecture 6 Secure Multi-Party Computation without Honest Majority: GMW Protocol MPC without Honest-Majority Plan (Still sticking with passive corruption): Two protocols, that are secure

465 views • 12 slides
Secure Multi-Party Computation Lecture 17 GMW &amp; BGW Protocols MPC Protocols MPC Protocols

Secure Multi-Party Computation Lecture 17 GMW &amp; BGW Protocols MPC Protocols MPC Protocols

Secure Multi-Party Computation Lecture 17 GMW &amp; BGW Protocols MPC Protocols MPC Protocols Yao s Garbled Circuit : 2-Party SFE secure against passive adversaries MPC Protocols Yao s Garbled Circuit : 2-Party SFE secure against

2.07k views • 85 slides
Advanced Tools from Modern Cryptography Lecture 4 Secure Multi-Party Computation: Passive

Advanced Tools from Modern Cryptography Lecture 4 Secure Multi-Party Computation: Passive

Advanced Tools from Modern Cryptography Lecture 4 Secure Multi-Party Computation: Passive Corruption + Honest-Majority Must We Trust ? Can we have an auction without an auctioneer?! Declared winning bid should be correct Only the

497 views • 20 slides
Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo

Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo

Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo Palmieri , Olivier Pereira UCL Crypto Group Universit e Catholique de Louvain (Belgium) Provable Privacy Workshop July 2012 UCL Crypto Group

660 views • 34 slides
Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao

Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao

Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao Wang Mariana Raykova Adri Gascn Jack Doerner Jonathan Katz David Evans oblivc.org/sqoram Secure multi-party computation applications Set

504 views • 25 slides
Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine

Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine

Secure Computation ORAM The Case of 3-Party Computation Stanislaw Jarecki, UC Irvine Cryptography in the RAM Model Workshop, Cambridge, MA, June 2016 AC15: Sky Faber, S.J. , Sotirios Kentros, Boyang Wei New Work: S.J. , Boyang Wei Secure

595 views • 23 slides
Data Mining Session 17 INST 301 Introduction to Information Science Agenda Visualization

Data Mining Session 17 INST 301 Introduction to Information Science Agenda Visualization

Data Mining Session 17 INST 301 Introduction to Information Science Agenda Visualization Data mining Supervised machine learning Starfield Visualization Constructing Starfield Displays Two attributes determine the position

563 views • 30 slides
Contents Text Mining Concept Tasks Twitter Data Analysis with R Twitter Extracting Tweets

Contents Text Mining Concept Tasks Twitter Data Analysis with R Twitter Extracting Tweets

Text Mining with R Yanchang Zhao http://www.RDataMining.com Tutorial on Machine Learning with R The Melbourne Data Science Week 2017 1 June 2017 Chapter 10: Text Mining, in R and Data Mining: Examples and Case Studies .

733 views • 57 slides
DATA MINING (EC 559) Dr. Dhaval Patel CSE, IIT-Roorkee General Information Instructor:

DATA MINING (EC 559) Dr. Dhaval Patel CSE, IIT-Roorkee General Information Instructor:

DATA MINING (EC 559) Dr. Dhaval Patel CSE, IIT-Roorkee General Information Instructor: Dr. Dhaval Patel Email: patelfec@iitr.ac.in Tel: (+91)-1332-285700 Office: S209 Course Call Number: EC-559 Lecture times &amp;

584 views • 13 slides
Planning an Academic Analytics Program 8/11/2015 AmStat News, June 2012 Plan Planning ng an

Planning an Academic Analytics Program 8/11/2015 AmStat News, June 2012 Plan Planning ng an

Planning an Academic Analytics Program 8/11/2015 AmStat News, June 2012 Plan Planning ng an Academ an Academic ic Analytic ytics P s Program: m: Big Data is a Big Topic but, despite the enormous potential for contributions by

504 views • 21 slides
PAGE 1 How did PM tooling develop Three key over time? When did observations process mining

PAGE 1 How did PM tooling develop Three key over time? When did observations process mining

PAGE 1 How did PM tooling develop Three key over time? When did observations process mining What are the start? main research challenges? Conclusion What are the main Why is process PM developments discovery so How about data in

973 views • 56 slides
P t tr

P t tr

P t tr s sstPrr r tt rst tr

737 views • 26 slides
Data mining in practice T-61.3050 27.11.2007 Xtract / Juha Vesanto Xtract Ltd T +358 9 222

Data mining in practice T-61.3050 27.11.2007 Xtract / Juha Vesanto Xtract Ltd T +358 9 222

Data mining in practice T-61.3050 27.11.2007 Xtract / Juha Vesanto Xtract Ltd T +358 9 222 4122 Hitsaajankatu 22 F +358 9 222 4155 00810 Helsinki contact@xtract.com FINLAND www.xtract.com Intro My history Juha Vesanto

131 views • 10 slides
Portrait of a Miner in a Landscape Alex Biryukov, Daniel Feher University of Luxembourg April

Portrait of a Miner in a Landscape Alex Biryukov, Daniel Feher University of Luxembourg April

Mining Hardware Landscape Introduction of ASICs Privacy of Miners Portrait of a Miner in a Landscape Alex Biryukov, Daniel Feher University of Luxembourg April 29, 2019 Portrait of a Miner in a Landscape University of Luxembourg Mining

367 views • 22 slides

More recommend