Communication Locality in Secure Multi-party Computation

Boyle, Elette Chantae; Goldwasser, Shafrira; Tessaro, Stefano

Author(s)

Boyle, Elette Chantae; Goldwasser, Shafrira; Tessaro, Stefano

DownloadAccepted version (413.0Kb)

Terms of use

Creative Commons Attribution-Noncommercial-Share Alike http://creativecommons.org/licenses/by-nc-sa/4.0/

Metadata

Show full item record

Abstract

We devise multi-party computation protocols for general secure function evaluation with the property that each party is only required to communicate with a small number of dynamically chosen parties. More explicitly, starting with n parties connected via a complete and synchronous network, our protocol requires each party to send messages to (and process messages from) at most polylog(n) other parties using polylog(n) rounds. It achieves secure computation of any polynomial-time computable randomized function f under cryptographic assumptions, and tolerates up to statically scheduled Byzantine faults. We then focus on the particularly interesting setting in which the function to be computed is a sublinear algorithm: An evaluation of f depends on the inputs of at most q = o(n) of the parties, where the identity of these parties can be chosen randomly and possibly adaptively. Typically, q = polylog(n). While the sublinear query complexity of f makes it possible in principle to dramatically reduce the communication complexity of our general protocol, the challenge is to achieve this while maintaining security: in particular, while keeping the identities of the selected inputs completely hidden. We solve this challenge, and we provide a protocol for securely computing such sublinear f that runs in polylog(n) + O(q) rounds, has each party communicating with at most q •polylog(n) other parties, and supports message sizes polylog(n) •(ℓ + n), where ℓ is the parties' input size. Our optimized protocols rely on a multi-signature scheme, fully homomorphic encryption (FHE), and simulation-sound adaptive NIZK arguments. However, we remark that multi-signatures and FHE are used to obtain our bounds on message size and round complexity. Assuming only standard digital signatures and public-key encryption, one can still obtain the property that each party only communicates with polylog(n) other parties. We emphasize that the scheduling of faults can depend on the initial PKI setup of digital signatures and the NIZK parameters. © 2013 International Association for Cryptologic Research. Keywords: Homomorphic Encryption, Honest Party, Swap Gate, Secure Multiparty Computation, Secure Function Evaluation

Date issued

2013

URI

https://hdl.handle.net/1721.1/121532

Department

Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory; Massachusetts Institute of Technology. Department of Mathematics; Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science

Journal

Theory of Cryptography

Publisher

Springer Berlin Heidelberg

Citation

Boyle, Elette, et al. “Communication Locality in Secure Multi-Party Computation.” Theory of Cryptography, edited by Amit Sahai, vol. 7785, Springer Berlin Heidelberg (2013): 356–76.

Version: Author's final manuscript

ISBN

9783642365935

9783642365942

ISSN

0302-9743

1611-3349

Collections

MIT Open Access Articles