SLIDE 1
Fair Computation
using Enclaves and Shared Ledger
Rohit Sinha, Siva Gaddam, and Ranjit Kumaresan
Open Source Enclaves Workshop 2019
Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva - - PowerPoint PPT Presentation
Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva - - PowerPoint PPT Presentation
Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva Gaddam, and Ranjit Kumaresan Open Source Enclaves Workshop 2019 Transparent Mint Transparent Mint Alice Mint Transparent Mint Merchant ID Date Amount Alice 2014-06-03
SLIDE 2
SLIDE 3
Transparent Mint
Alice Mint
SLIDE 4
Transparent Mint
Merchant ID Date Amount 52544965 2014-06-03 13:37 PM $23.00 … … … 12144989 2014-06-29 20:49 PM $48.12 Merchant ID Category 52544965 Restaurants … … 12144989 Gas Stations
Mint’s Proprietary Data User’s TX Data
Alice Mint
SLIDE 5
Transparent Mint
Merchant ID Date Amount 52544965 2014-06-03 13:37 PM $23.00 … … … 12144989 2014-06-29 20:49 PM $48.12 Merchant ID Category 52544965 Restaurants … … 12144989 Gas Stations
Mint’s Proprietary Data User’s TX Data
Compute Provider
Report
Alice Mint
SLIDE 6
Transparent Mint
Merchant ID Date Amount 52544965 2014-06-03 13:37 PM $23.00 … … … 12144989 2014-06-29 20:49 PM $48.12 Merchant ID Category 52544965 Restaurants … … 12144989 Gas Stations
Mint’s Proprietary Data User’s TX Data
Compute Provider
Report
Alice Mint
SLIDE 7
Transparent Mint
Merchant ID Date Amount 52544965 2014-06-03 13:37 PM $23.00 … … … 12144989 2014-06-29 20:49 PM $48.12 Merchant ID Category 52544965 Restaurants … … 12144989 Gas Stations
Mint’s Proprietary Data User’s TX Data
Compute Provider
Report
Alice Bank A Bank B Mint
SLIDE 8
Towards Transparency via Privacy and Fairness
Compute Provider
Report
Alice Bank A Bank B Mint
SLIDE 9
Towards Transparency via Privacy and Fairness
Compute Provider
Report
Alice Bank A Bank B Mint
Privacy: Only reveal f(Alice_txs, Mint_db)
SLIDE 10
Towards Transparency via Privacy and Fairness
Compute Provider
Report
Alice Bank A Bank B Mint
Privacy: Only reveal f(Alice_txs, Mint_db) Fairness: if anyone gets the output, then so must all honest parties
SLIDE 11
Towards Transparency via Privacy and Fairness
Compute Provider
Report
Alice Bank A Bank B Mint
Privacy: Only reveal f(Alice_txs, Mint_db) Fairness: if anyone gets the output, then so must all honest parties
Impossible in Malicious Setting [Cleve86]
SLIDE 12
Fair Computation ➔ Fair Reconstruction
SLIDE 13
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation
SLIDE 14
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation
Systems based on Intel SGX VC3 for Map-Reduce [SCF+15] Opaque for Spark [ZDB+17] ObliDB [EZ17], StealthDB [GVG17] for SQL
SLIDE 15
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation
Systems based on Intel SGX VC3 for Map-Reduce [SCF+15] Opaque for Spark [ZDB+17] ObliDB [EZ17], StealthDB [GVG17] for SQL
SLIDE 16
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation Fair Reconstruction
Ledger
…
TEE TEE
ko ko ko
Systems based on Intel SGX VC3 for Map-Reduce [SCF+15] Opaque for Spark [ZDB+17] ObliDB [EZ17], StealthDB [GVG17] for SQL
SLIDE 17
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation Fair Reconstruction
Ledger
…
TEE TEE
ko ko ko
Systems based on Intel SGX VC3 for Map-Reduce [SCF+15] Opaque for Spark [ZDB+17] ObliDB [EZ17], StealthDB [GVG17] for SQL
Fair n-party broadcast using t < n TEE nodes and a shared ledger (corruption threshold t)
SLIDE 18
Fair Computation ➔ Fair Reconstruction
TEE
{ }
k2
{ }
k1
{ }
ko
(Unfair) Secure Computation Fair Reconstruction
Ledger
…
TEE TEE
ko ko ko
Systems based on Intel SGX VC3 for Map-Reduce [SCF+15] Opaque for Spark [ZDB+17] ObliDB [EZ17], StealthDB [GVG17] for SQL
Fair n-party broadcast using t < n TEE nodes and a shared ledger (corruption threshold t) [CGJ+17]: all n parties need TEE
SLIDE 19
Fair Collaborative Computation
SLIDE 20
Fair Collaborative Computation
Collective Revenue Capture Fair broadcast of model
ML train
TEE
SLIDE 21
Fair Collaborative Computation
ML train ML infer
Crowdsourced Machine Learning Fair exchange of data and prediction prediction data Collective Revenue Capture Fair broadcast of model
ML train
TEE TEE
SLIDE 22
2-Party Fair Computation: Strawman
SLIDE 23
2-Party Fair Computation: Strawman
TEE
SLIDE 24
2-Party Fair Computation: Strawman
TEE
{ }
- ut
{ }
- ut
SLIDE 25
2-Party Fair Computation: Strawman
TEE
Enc(pk_Alice, ky)
{ }
- ut
{ }
- ut
SLIDE 26
2-Party Fair Computation: Strawman
TEE
Enc(pk_Alice, ky)
{ }
- ut
{ }
- ut
SLIDE 27
2-Party Fair Computation: Strawman
TEE
Enc(pk_Alice, ky)
{ }
- ut
{ }
- ut
SLIDE 28
2-Party Fair Computation: Strawman
TEE
Enc(pk_Alice, ky)
{ }
- ut
{ }
- ut
SLIDE 29
Bulletin Board Abstraction [CGJ+17]
SLIDE 30
Bulletin Board Abstraction
Ledger
…
[CGJ+17]
SLIDE 31
Bulletin Board Abstraction
- post(x) returns (idx, σ)
Ledger
…
[CGJ+17]
SLIDE 32
Bulletin Board Abstraction
- post(x) returns (idx, σ)
Ledger
…
[CGJ+17]
x
σ
SLIDE 33
Bulletin Board Abstraction
- post(x) returns (idx, σ)
- getContent(idx) returns (x, σ)
Ledger
…
[CGJ+17]
x
σ
SLIDE 34
Bulletin Board Abstraction
- post(x) returns (idx, σ)
- getContent(idx) returns (x, σ)
- getHeight() returns (idx)
Ledger
…
[CGJ+17]
x
σ
SLIDE 35
2-Party Fair Computation
TEE Ledger
…
SLIDE 36
2-Party Fair Computation
TEE Ledger
…
{ }
- ut
{ }
- ut
SLIDE 37
2-Party Fair Computation
TEE Ledger
…
{ }
- ut
{ }
- ut
SLIDE 38
2-Party Fair Computation
TEE Ledger
…
Enc(pk_Alice, ky) ||
{ }
- ut
{ }
- ut
SLIDE 39
2-Party Fair Computation
TEE Ledger
…
Enc(pk_Alice, ky) ||
{ }
- ut
{ }
- ut
SLIDE 40
2-Party Fair Computation
TEE Ledger
…
Enc(pk_Alice, ky) ||
σ
{ }
- ut
{ }
- ut
SLIDE 41
2-Party Fair Computation
TEE Ledger
…
Enc(pk_Alice, ky) ||
σ
{ }
- ut
{ }
- ut
SLIDE 42
n-Party Fair Broadcast: Strawman
TEE Ledger
…
SLIDE 43
n-Party Fair Broadcast: Strawman
TEE Ledger
…
SLIDE 44
n-Party Fair Broadcast: Strawman
TEE Ledger
…
SLIDE 45
n-Party Fair Broadcast: Strawman
TEE Ledger
…
Enc(pk_Alice, ky) || Enc(pk_BankA, ky) || Enc(pk_BankA, ky)
SLIDE 46
n-Party Fair Broadcast: Strawman
TEE Ledger
…
Enc(pk_Alice, ky) || Enc(pk_BankA, ky) || Enc(pk_BankA, ky)
SLIDE 47
n-Party Fair Broadcast: Strawman
TEE Ledger
…
Enc(pk_Alice, ky) || Enc(pk_BankA, ky) || Enc(pk_BankA, ky)
SLIDE 48
n-Party Fair Broadcast: Strawman
TEE Ledger
…
Enc(pk_Alice, ky) || Enc(pk_BankA, ky) || Enc(pk_BankA, ky) Enc(pk_BankA, ky)
SLIDE 49
n-Party Fair Broadcast
SLIDE 50
{ }
- ut
n-Party Fair Broadcast
SLIDE 51
{ }
- ut
n-Party Fair Broadcast
SLIDE 52
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 53
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 54
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 55
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 56
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 57
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 58
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 59
Ledger
…
{ }
- ut
n-Party Fair Broadcast
SLIDE 60
Ledger
…
= Epk_Alice(ky)
{ }
- ut
n-Party Fair Broadcast
SLIDE 61
Ledger
…
= Epk_Alice(ky)
{ }
- ut
n-Party Fair Broadcast
SLIDE 62
Ledger
…
= Epk_Alice(ky)
{ }
- ut
n-Party Fair Broadcast
SLIDE 63
Ledger
…
= Epk_Alice(ky)
{ }
- ut
n-Party Fair Broadcast
SLIDE 64
Ledger
…
= Epk_Alice(ky)
{ }
- ut
n-Party Fair Broadcast
SLIDE 65
Q/A
https://eprint.iacr.org/2019/178