revisiting square root oram
play

Revisiting Square Root ORAM Efficient Random Access in Multi-Party - PowerPoint PPT Presentation

Oct 10, 2022 •239 likes •504 views

Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao Wang Mariana Raykova Adri Gascn Jack Doerner Jonathan Katz David Evans oblivc.org/sqoram Secure multi-party computation applications Set

  1. Revisiting Square Root ORAM Efficient Random Access in Multi-Party Computation Samee Zahur Xiao Wang Mariana Raykova Adrià Gascón Jack Doerner Jonathan Katz David Evans oblivc.org/sqoram

  2. Secure multi-party computation applications Set intersection Iris code matching [FNP04] [LCPLB12] Matrix factorization for recommendations [NIWJTB13] Median computation Linear ridge-regression [AMP04] [NWIJBT13]

  3. Random Access

  4. Hiding access pattern Linear scan Oblivious RAM Access every element Continually shuffle elements around Per-access cost: Θ(log 𝑞 𝑜) Per-access cost: Θ 𝑜

  5. Linear scan Figure from: Wang, Chan, Shi. Cir ircuit it Oram am . CCS’15

  6. (our work) 6

  7. Approach: revisit old schemes Classic “square root” scheme by Goldreich and Ostrovsky (1996). Considered slow for MPC because of per-access hash evaluation. Per-access amortized cost: Θ 𝑜 log 𝑜

  8. Four-element ORAM Larger Sizes

  9. 4-Block ORAM Cost: 5 𝐶 + 𝐶 +2 𝐶 +3 𝐶 + … = 11 𝐶 every 3 accesses

  10. Comparison Our scheme Linear scan Cost: 4 𝐶 = 12 𝐶 /3 Cost: 11 𝐶 /3

  11. Four-element ORAM Larger Sizes

  12. Position map 0 1 2 3 0 1 2 3 3 0 2 1 1 3 0 2

  13. Keeping position map updated Position map

  14. Keeping position map updated Position map

  15. Rinse and repeat 1. Shuffle elements 2. Recreate position map 3. Service 𝑈 = 𝑜 log 𝑜 accesses

  16. Creating position map

  17. Creating position map

  18. Inverse permutation 𝑞 𝜌 𝐵 ⋅ 𝑞 𝜌 𝐶 = 𝜌 𝐵 ⋅ 𝑞 𝜌 𝐵

  19. Inverse permutation 𝜌 𝐵 𝜌 𝐶 𝜌 𝐶 = 𝜌 𝐵 ⋅ 𝑞 𝜌 𝐵 Bob computes −1 ⋅ 𝜌 𝐵 −1 = 𝑞 −1 ⋅ 𝜌 𝐵 𝜌 𝐶 −1 𝜌 𝐶 = 𝑞 −1 ⋅ 𝜌 𝐵 −1 ⋅ 𝜌 𝐵 = 𝑞 −1

  20. Rinse and repeat 1. Shuffle elements at Θ 𝑜 log 𝑜 2. Recreate position map 3. Service 𝑈 = 𝑜 log 𝑜 accesses

  21. Access time

  22. Initialization cost

  23. Benchmarks Circuit Square-root Task Parameters Linear scan ORAM ORAM 2 10 searches 1020 s 5041 s 825 s Binary search 2 15 elements 2 10 vertices Breadth-first 4570 s 3750 s 680 s 2 13 edges search 2 9 pairs - 189000 s 119000 s Stable matching ≈ 7 days 2850 s 1920 s N = 2 14 scrypt hashing

  24. Conclusion We revisited a well-known scheme and used it to • Lower initialization cost • Improve breakeven point Shows that asymptotic costs are not the final word, concrete costs require more consideration.

  25. Download oblivc.org/sqoram Contact for help: Samee Zahur <samee@virginia.edu>

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of

Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of

Quantum Mechanics Quantum Logic Alternative Quantum . . . Square Root of Not: . . . Square Root of Not: Square Root of Not: . . . A Major Difference Between Square Root of Not Is . . . Why Factoring Large . . . Fuzzy and Quantum

381 views • 17 slides
Towards Practical ORAM Guevara Noubir College of Computer and Information Science Northeastern

Towards Practical ORAM Guevara Noubir College of Computer and Information Science Northeastern

Towards Practical ORAM Guevara Noubir College of Computer and Information Science Northeastern University, Boston, MA noubir@ccs.neu.edu 1 Outline Motivation Model Original Papers [1987 - 1996] Square root ORAM &amp;

1.06k views • 77 slides
5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard

5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard

5/15/2019 Square Root - Direct Method Square Root - Direct Method In IEEE floating point standard a real number is To help the calculation of represented as : 1 2 the representation of R must be changed into = 1

167 views • 4 slides
Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d

Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d

Clustering and K-means Root Mean Square Error (RMS) Data: ! x 1 , ! x 2 , , ! x N R d Approximations: ! z 1 , ! z 2 , , ! z N R d x i ! ! N 1 2 Root Mean Square error = y i 2 z N i = 1 PCA based predic&gt;on Data: !

766 views • 17 slides
Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The

Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The

Institut de Physique du Globe de Paris &amp; Universit Pierre et Marie Curie (Paris VI) Course on Inverse Problems Albert Tarantola Lesson XV: Square Root Variable Metric Algorithm The Square Root Variable Metric Algorithm for Least-Squares

316 views • 13 slides
Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris

Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris

Design of the ARM VFP-11 Divide and Square Root Synthesisable Macrocell Neil Burgess Chris Hinds School of Engineering ARM Design Center Cardiff University Cambridge WALES, UK UK Key points New high-performance radix-4 SRT square

589 views • 26 slides
Aarhus MPC workshop 2016 *Joint work with Travis Mayberry and Erik-Oliver Blass Part I ORAM

Aarhus MPC workshop 2016 *Joint work with Travis Mayberry and Erik-Oliver Blass Part I ORAM

Tarik Moataz June 2 nd 2016 Aarhus MPC workshop 2016 *Joint work with Travis Mayberry and Erik-Oliver Blass Part I ORAM Overview Part II C-ORAM*: Constant Communication ORAM with homomorphic Encryption Part III CH f -ORAM**: Constant

957 views • 52 slides
The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation

The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation

The smoothed multivariate square-root Lasso: an optimization lens on concomitant estimation Joseph Salmon http://josephsalmon.eu IMAG, Univ. Montpellier, CNRS Series of works with: Quentin Bertrand (INRIA) Mathurin Massias (University of

881 views • 61 slides
Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of

Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of

Insights and algorithms for the multivariate square-root lasso Aaron J. Molstad Department of Statistics and Genetics Institute University of Florida June 12th, 2020 Statistical Learning Seminar Outline of the talk 1. Multivariate response

1.3k views • 86 slides
The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for

The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for

The Square Root Phenomenon in Planar Graphs Survey and New Results Dniel Marx Institute for Computer Science and Control, Hungarian Academy of Sciences (MTA SZTAKI) Budapest, Hungary Dagstuhl Seminar 16221: Algorithms for Optimization

1.19k views • 107 slides
Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? NutMiC 2019 , Paris

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? NutMiC 2019 , Paris

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? NutMiC 2019 , Paris Claire Delaplace Alexander May Elliptic Curve O y 4 K : Field of characteristic = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x 2 2 4 2

801 views • 52 slides
Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy

Can we Beat the Square Root Bound for ECDLP over F p 2 via Representation? JNCF 2020 , Luminy Claire Delaplace Alexander May Elliptic Curve O y 4 K : Field of characteristic = 2 , 3 E : y 2 = f ( x ) = x 3 + ax + b 2 x 2 2 4 2

847 views • 53 slides
JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) &amp; (Root

JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) &amp; (Root

JUST THE MATHS SLIDES NUMBER 13.2 INTEGRATION APPLICATIONS 2 (Mean values) &amp; (Root mean square values) by A.J.Hobson 13.2.1 Mean values 13.2.2 Root mean square values UNIT 13.2 - INTEGRATION APPLICATIONS 2 MEAN &amp; ROOT MEAN

326 views • 6 slides
A Manufacturers Guide to CRM S P E A K E R S Clint Oram, CSO at SugarCRM Ross Peetoom,

A Manufacturers Guide to CRM S P E A K E R S Clint Oram, CSO at SugarCRM Ross Peetoom,

W E B I N A R A Manufacturers Guide to CRM S P E A K E R S Clint Oram, CSO at SugarCRM Ross Peetoom, Director of Operations at Intelestream SugarCRM Elite Partner D A T E March 27, 2019 Speakers Introduction Ross Peetoom Clint Oram

686 views • 30 slides
Extending the square root method to account for model noise in the ensemble Kalman filter Patrick

Extending the square root method to account for model noise in the ensemble Kalman filter Patrick

Extending the square root method to account for model noise in the ensemble Kalman filter Patrick Nima Raanes , 1 , 2 , Alberto Carrassi 1 , and Laurent Bertino 1 1 Nansen Environmental and Remote Sensing Center 2 Mathematical Institute,

659 views • 46 slides
Simple and Efficient Two-Server ORAM Dov Gordon (George Mason U.) Jonathan Katz (U. of Maryland)

Simple and Efficient Two-Server ORAM Dov Gordon (George Mason U.) Jonathan Katz (U. of Maryland)

Simple and Efficient Two-Server ORAM Dov Gordon (George Mason U.) Jonathan Katz (U. of Maryland) Xiao Wang (MIT &amp; Boston U.) What is ORAM Outsourced memory storage, allowing oblivious memory access (read and write). Any 2 sequences

393 views • 25 slides
IDLO Assembly of Parties 6 November 2014 Information Briefing for Member Parties October 2014

IDLO Assembly of Parties 6 November 2014 Information Briefing for Member Parties October 2014

IDLO Assembly of Parties 6 November 2014 Information Briefing for Member Parties October 2014 Business of the Assembly Opening and general debate and discussion on the contribution of the rule of law to justice and development 2014

491 views • 29 slides
Performance Standards SUSTAINABLE DC VISION Make DC the healthiest, greenest, most livable city

Performance Standards SUSTAINABLE DC VISION Make DC the healthiest, greenest, most livable city

DCs New Building Energy Performance Standards SUSTAINABLE DC VISION Make DC the healthiest, greenest, most livable city in the country. GOALS: 2032 ADAPT TO CLIMATE CHANGE CLIMATE READY BUILDINGS CUT ENERGY USE 50% 50% RENEWABLE ENERGY

355 views • 17 slides
Coffee Day Enterprises Limited Financial Highlights Q3-FY 16 YTD Dec 15 -FY 16 Total net

Coffee Day Enterprises Limited Financial Highlights Q3-FY 16 YTD Dec 15 -FY 16 Total net

Coffee Day Enterprises Limited Financial Highlights Q3-FY 16 YTD Dec 15 -FY 16 Total net Revenue at Rs. 6,797 million; up 15% YoY Total Revenue at Rs. 19,685 million; up 12% YoY EBIDTA at Rs. 1,338 million; up 17% YoY EBIDTA at Rs. 3,826

687 views • 31 slides
Mining Indaba 2016 C APE T OWN , S OUTH A FRICA Fortune Mojapelo Chief Executive Officer 08

Mining Indaba 2016 C APE T OWN , S OUTH A FRICA Fortune Mojapelo Chief Executive Officer 08

P RESENTATIO N Mining Indaba 2016 C APE T OWN , S OUTH A FRICA Fortune Mojapelo Chief Executive Officer 08 February 2016 Disclaimer These presentation slides and any other material provided with these slides (the Presentation Materials

534 views • 34 slides
The Latin America Greenhouse Gas Mit itigation Network: putting the pie ieces of f the puzzle

The Latin America Greenhouse Gas Mit itigation Network: putting the pie ieces of f the puzzle

The Latin America Greenhouse Gas Mit itigation Network: putting the pie ieces of f the puzzle together Ngonidzashe Chirinda and Jacobo Arango The Fisher et al 1994 carbon story Carbon increase compared to Native Savanna: 25 Mg ha -1 in

158 views • 12 slides
Working Landscapes Working Together: The Bay Area Lynn Huntsinger, University of California,

Working Landscapes Working Together: The Bay Area Lynn Huntsinger, University of California,

Working Landscapes Working Together: The Bay Area Lynn Huntsinger, University of California, Berkeley Synergies! Working Landscapes Multiple benefits: ecosystem services including food, habitat, viewshed, heritage. Pasture Scale:

503 views • 25 slides
Water Condition Update Nevada Board of Wildlife Commissioners November 4, 2017 Alan Jenne

Water Condition Update Nevada Board of Wildlife Commissioners November 4, 2017 Alan Jenne

Western WMA Complex Water Condition Update Nevada Board of Wildlife Commissioners November 4, 2017 Alan Jenne Habitat Division Chief Wildlife Management Areas 11 Designated WMAs &gt; 120,000 acres statewide Primarily

495 views • 10 slides
!&quot;#$%&amp;'(%&amp;)'* +$,%-$./01%2343$%546$%7166/88/1#%-$$3/#9% :431#(%+- !

!&quot;#$%&amp;'(%&amp;)'* +$,%-$./01%2343$%546$%7166/88/1#%-$$3/#9% :431#(%+- !

!&quot;#$%&amp;'(%&amp;)'* +$,%-$./01%2343$%546$%7166/88/1#%-$$3/#9% :431#(%+- ! !&quot;#$%&amp;'()*'+,-,./0,+'12'3445'6/7 ! 8,9/:21;,&lt;'=$)2+/(2,&gt;*'(?/' !&quot;#$%&amp;'()'*+%+,-./(0'+'-%1( 1#('/2 )2+' *33'!1('/2(

280 views • 16 slides

More recommend