A little honesty goes a long way: The two-tier model for secure multiparty computation

Juan A. Garay; Ran Gelles; David S. Johnson; Aggelos Kiayias; Moti Yung

doi:10.1007/978-3-662-46494-6_7

A little honesty goes a long way: The two-tier model for secure multiparty computation

Juan A. Garay, Ran Gelles, David S. Johnson, Aggelos Kiayias, Moti Yung

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

4 Scopus citations

Abstract

Afundamental result in securemultiparty computation (MPC) is that in order to achieve full security, it is necessary that amajority of the partiesbehave honestly.There are settings, however,where the condition of an honest majority might be overly restrictive, and there is a need to define and investigate other plausible adversarial models in order to circumvent the above impossibility. To this end, we introduce the two-tier model for MPC, where some small subset of servers is guaranteed to be honest at the beginning of the computation (the first tier), while the corruption state of the other servers (the second tier) is unknown. The two-tier model naturally arises in various settings, such as for example when a service provider wishes to utilize a large pre-existing set of servers, while being able to trust only a small fraction of them. The first tier is responsible for performing the secure computation while the second tier serves as a disguise: using novel anonymization techniques, servers in the first tier remain undetected to an adaptive adversary, preventing a targeted attack on these critical servers. Specifically, given n servers and assuming αn of them are corrupt at the onset (where α ∈ (0, 1)), we present an MPC protocol that can withstand an optimal amount of less than (1−α)n/2 additional adaptive corruptions, provided the first tier is of size ω(log n). This allows us to perform MPC in a fully secure manner even when the total number of corruptions exceeds n/2 across both tiers, thus evading the honest majority requirement.

Original language	English
Title of host publication	Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings
Editors	Yevgeniy Dodis, Jesper Buus Nielsen
Publisher	Springer Verlag
Pages	134-158
Number of pages	25
ISBN (Electronic)	9783662464939
DOIs	https://doi.org/10.1007/978-3-662-46494-6_7
State	Published - 2015
Externally published	Yes
Event	12th Theory of Cryptography Conference, TCC 2015 - Warsaw, Poland Duration: 23 Mar 2015 → 25 Mar 2015

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	9014
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	12th Theory of Cryptography Conference, TCC 2015
Country/Territory	Poland
City	Warsaw
Period	23/03/15 → 25/03/15

Bibliographical note

Publisher Copyright:
© International Association for Cryptologic Research 2015.

Access to Document

10.1007/978-3-662-46494-6_7

Cite this

Garay, J. A., Gelles, R., Johnson, D. S., Kiayias, A., & Yung, M. (2015). A little honesty goes a long way: The two-tier model for secure multiparty computation. In Y. Dodis, & J. B. Nielsen (Eds.), Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings (pp. 134-158). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9014). Springer Verlag. https://doi.org/10.1007/978-3-662-46494-6_7

Garay, Juan A. ; Gelles, Ran ; Johnson, David S. et al. / A little honesty goes a long way : The two-tier model for secure multiparty computation. Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings. editor / Yevgeniy Dodis ; Jesper Buus Nielsen. Springer Verlag, 2015. pp. 134-158 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{56dae600c6cf4711b30c3b88c8e131e6,

title = "A little honesty goes a long way: The two-tier model for secure multiparty computation",

abstract = "Afundamental result in securemultiparty computation (MPC) is that in order to achieve full security, it is necessary that amajority of the partiesbehave honestly.There are settings, however,where the condition of an honest majority might be overly restrictive, and there is a need to define and investigate other plausible adversarial models in order to circumvent the above impossibility. To this end, we introduce the two-tier model for MPC, where some small subset of servers is guaranteed to be honest at the beginning of the computation (the first tier), while the corruption state of the other servers (the second tier) is unknown. The two-tier model naturally arises in various settings, such as for example when a service provider wishes to utilize a large pre-existing set of servers, while being able to trust only a small fraction of them. The first tier is responsible for performing the secure computation while the second tier serves as a disguise: using novel anonymization techniques, servers in the first tier remain undetected to an adaptive adversary, preventing a targeted attack on these critical servers. Specifically, given n servers and assuming αn of them are corrupt at the onset (where α ∈ (0, 1)), we present an MPC protocol that can withstand an optimal amount of less than (1−α)n/2 additional adaptive corruptions, provided the first tier is of size ω(log n). This allows us to perform MPC in a fully secure manner even when the total number of corruptions exceeds n/2 across both tiers, thus evading the honest majority requirement.",

author = "Garay, {Juan A.} and Ran Gelles and Johnson, {David S.} and Aggelos Kiayias and Moti Yung",

note = "Publisher Copyright: {\textcopyright} International Association for Cryptologic Research 2015.; 12th Theory of Cryptography Conference, TCC 2015 ; Conference date: 23-03-2015 Through 25-03-2015",

year = "2015",

doi = "10.1007/978-3-662-46494-6_7",

language = "אנגלית",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "134--158",

editor = "Yevgeniy Dodis and Nielsen, {Jesper Buus}",

booktitle = "Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings",

address = "גרמניה",

}

Garay, JA, Gelles, R, Johnson, DS, Kiayias, A & Yung, M 2015, A little honesty goes a long way: The two-tier model for secure multiparty computation. in Y Dodis & JB Nielsen (eds), Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 9014, Springer Verlag, pp. 134-158, 12th Theory of Cryptography Conference, TCC 2015, Warsaw, Poland, 23/03/15. https://doi.org/10.1007/978-3-662-46494-6_7

A little honesty goes a long way: The two-tier model for secure multiparty computation. / Garay, Juan A.; Gelles, Ran; Johnson, David S. et al.
Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings. ed. / Yevgeniy Dodis; Jesper Buus Nielsen. Springer Verlag, 2015. p. 134-158 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9014).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A little honesty goes a long way

T2 - 12th Theory of Cryptography Conference, TCC 2015

AU - Garay, Juan A.

AU - Gelles, Ran

AU - Johnson, David S.

AU - Kiayias, Aggelos

AU - Yung, Moti

PY - 2015

Y1 - 2015

N2 - Afundamental result in securemultiparty computation (MPC) is that in order to achieve full security, it is necessary that amajority of the partiesbehave honestly.There are settings, however,where the condition of an honest majority might be overly restrictive, and there is a need to define and investigate other plausible adversarial models in order to circumvent the above impossibility. To this end, we introduce the two-tier model for MPC, where some small subset of servers is guaranteed to be honest at the beginning of the computation (the first tier), while the corruption state of the other servers (the second tier) is unknown. The two-tier model naturally arises in various settings, such as for example when a service provider wishes to utilize a large pre-existing set of servers, while being able to trust only a small fraction of them. The first tier is responsible for performing the secure computation while the second tier serves as a disguise: using novel anonymization techniques, servers in the first tier remain undetected to an adaptive adversary, preventing a targeted attack on these critical servers. Specifically, given n servers and assuming αn of them are corrupt at the onset (where α ∈ (0, 1)), we present an MPC protocol that can withstand an optimal amount of less than (1−α)n/2 additional adaptive corruptions, provided the first tier is of size ω(log n). This allows us to perform MPC in a fully secure manner even when the total number of corruptions exceeds n/2 across both tiers, thus evading the honest majority requirement.

AB - Afundamental result in securemultiparty computation (MPC) is that in order to achieve full security, it is necessary that amajority of the partiesbehave honestly.There are settings, however,where the condition of an honest majority might be overly restrictive, and there is a need to define and investigate other plausible adversarial models in order to circumvent the above impossibility. To this end, we introduce the two-tier model for MPC, where some small subset of servers is guaranteed to be honest at the beginning of the computation (the first tier), while the corruption state of the other servers (the second tier) is unknown. The two-tier model naturally arises in various settings, such as for example when a service provider wishes to utilize a large pre-existing set of servers, while being able to trust only a small fraction of them. The first tier is responsible for performing the secure computation while the second tier serves as a disguise: using novel anonymization techniques, servers in the first tier remain undetected to an adaptive adversary, preventing a targeted attack on these critical servers. Specifically, given n servers and assuming αn of them are corrupt at the onset (where α ∈ (0, 1)), we present an MPC protocol that can withstand an optimal amount of less than (1−α)n/2 additional adaptive corruptions, provided the first tier is of size ω(log n). This allows us to perform MPC in a fully secure manner even when the total number of corruptions exceeds n/2 across both tiers, thus evading the honest majority requirement.

UR - http://www.scopus.com/inward/record.url?scp=84924657046&partnerID=8YFLogxK

U2 - 10.1007/978-3-662-46494-6_7

DO - 10.1007/978-3-662-46494-6_7

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:84924657046

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 134

EP - 158

BT - Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings

A2 - Dodis, Yevgeniy

A2 - Nielsen, Jesper Buus

PB - Springer Verlag

Y2 - 23 March 2015 through 25 March 2015

ER -

Garay JA, Gelles R, Johnson DS, Kiayias A, Yung M. A little honesty goes a long way: The two-tier model for secure multiparty computation. In Dodis Y, Nielsen JB, editors, Theory of Cryptography - 12th Theory of Cryptography Conference, TCC 2015, Proceedings. Springer Verlag. 2015. p. 134-158. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-662-46494-6_7

A little honesty goes a long way: The two-tier model for secure multiparty computation

Abstract

Publication series

Conference

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this