High-throughput semi-honest secure three-party computation with an honest majority

Toshinori Araki; Jun Furukawa; Yehuda Lindell; Ariel Nof; Kazuma Ohara

doi:10.1145/2976749.2978331

High-throughput semi-honest secure three-party computation with an honest majority

Toshinori Araki, Jun Furukawa, Yehuda Lindell, Ariel Nof, Kazuma Ohara

Department of Computer Science

NEC Corporation

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

311 Scopus citations

Abstract

In this paper, we describe a new information-theoretic protocol (and a computationally-secure variant) for secure threeparty computation with an honest majority. The protocol has very minimal computation and communication; for Boolean circuits, each party sends only a single bit for every AND gate (and nothing is sent for XOR gates). Our protocol is (simulation-based) secure in the presence of semi-honest adversaries, and achieves privacy in the client/server model in the presence of malicious adversaries. On a cluster of three 20-core servers with a 10Gbps connection, the implementation of our protocol carries out over 1.3 million AES computations per second, which involves processing over 7 billion gates per second. In addition, we developed a Kerberos extension that replaces the ticketgranting-ticket encryption on the Key Distribution Center (KDC) in MIT-Kerberos with our protocol, using keys/passwords that are shared between the servers. This enables the use of Kerberos while protecting passwords. Our implementation is able to support a login storm of over 35,000 logins per second, which suffices even for very large organizations. Our work demonstrates that high-throughput secure computation is possible on standard hardware.

Original language	English
Title of host publication	CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security
Publisher	Association for Computing Machinery
Pages	805-817
Number of pages	13
ISBN (Electronic)	9781450341394
DOIs	https://doi.org/10.1145/2976749.2978331
State	Published - 24 Oct 2016
Event	23rd ACM Conference on Computer and Communications Security, CCS 2016 - Vienna, Austria Duration: 24 Oct 2016 → 28 Oct 2016

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
Volume	24-28-October-2016
ISSN (Print)	1543-7221

Conference

Conference	23rd ACM Conference on Computer and Communications Security, CCS 2016
Country/Territory	Austria
City	Vienna
Period	24/10/16 → 28/10/16

Bibliographical note

Publisher Copyright:
© 2016 ACM.

Access to Document

10.1145/2976749.2978331

Cite this

Araki, T., Furukawa, J., Lindell, Y., Nof, A., & Ohara, K. (2016). High-throughput semi-honest secure three-party computation with an honest majority. In CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security (pp. 805-817). (Proceedings of the ACM Conference on Computer and Communications Security; Vol. 24-28-October-2016). Association for Computing Machinery. https://doi.org/10.1145/2976749.2978331

Araki, Toshinori ; Furukawa, Jun ; Lindell, Yehuda et al. / High-throughput semi-honest secure three-party computation with an honest majority. CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery, 2016. pp. 805-817 (Proceedings of the ACM Conference on Computer and Communications Security).

@inproceedings{d46e2cc1e9944e6cb4b4dcd7ba7b3b2b,

title = "High-throughput semi-honest secure three-party computation with an honest majority",

abstract = "In this paper, we describe a new information-theoretic protocol (and a computationally-secure variant) for secure threeparty computation with an honest majority. The protocol has very minimal computation and communication; for Boolean circuits, each party sends only a single bit for every AND gate (and nothing is sent for XOR gates). Our protocol is (simulation-based) secure in the presence of semi-honest adversaries, and achieves privacy in the client/server model in the presence of malicious adversaries. On a cluster of three 20-core servers with a 10Gbps connection, the implementation of our protocol carries out over 1.3 million AES computations per second, which involves processing over 7 billion gates per second. In addition, we developed a Kerberos extension that replaces the ticketgranting-ticket encryption on the Key Distribution Center (KDC) in MIT-Kerberos with our protocol, using keys/passwords that are shared between the servers. This enables the use of Kerberos while protecting passwords. Our implementation is able to support a login storm of over 35,000 logins per second, which suffices even for very large organizations. Our work demonstrates that high-throughput secure computation is possible on standard hardware.",

author = "Toshinori Araki and Jun Furukawa and Yehuda Lindell and Ariel Nof and Kazuma Ohara",

note = "Publisher Copyright: {\textcopyright} 2016 ACM.; 23rd ACM Conference on Computer and Communications Security, CCS 2016 ; Conference date: 24-10-2016 Through 28-10-2016",

year = "2016",

month = oct,

day = "24",

doi = "10.1145/2976749.2978331",

language = "אנגלית",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

publisher = "Association for Computing Machinery",

pages = "805--817",

booktitle = "CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security",

}

Araki, T, Furukawa, J, Lindell, Y , Nof, A & Ohara, K 2016, High-throughput semi-honest secure three-party computation with an honest majority. in CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, vol. 24-28-October-2016, Association for Computing Machinery, pp. 805-817, 23rd ACM Conference on Computer and Communications Security, CCS 2016, Vienna, Austria, 24/10/16. https://doi.org/10.1145/2976749.2978331

High-throughput semi-honest secure three-party computation with an honest majority. / Araki, Toshinori; Furukawa, Jun; Lindell, Yehuda et al.
CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery, 2016. p. 805-817 (Proceedings of the ACM Conference on Computer and Communications Security; Vol. 24-28-October-2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - High-throughput semi-honest secure three-party computation with an honest majority

AU - Araki, Toshinori

AU - Furukawa, Jun

AU - Lindell, Yehuda

AU - Nof, Ariel

AU - Ohara, Kazuma

PY - 2016/10/24

Y1 - 2016/10/24

N2 - In this paper, we describe a new information-theoretic protocol (and a computationally-secure variant) for secure threeparty computation with an honest majority. The protocol has very minimal computation and communication; for Boolean circuits, each party sends only a single bit for every AND gate (and nothing is sent for XOR gates). Our protocol is (simulation-based) secure in the presence of semi-honest adversaries, and achieves privacy in the client/server model in the presence of malicious adversaries. On a cluster of three 20-core servers with a 10Gbps connection, the implementation of our protocol carries out over 1.3 million AES computations per second, which involves processing over 7 billion gates per second. In addition, we developed a Kerberos extension that replaces the ticketgranting-ticket encryption on the Key Distribution Center (KDC) in MIT-Kerberos with our protocol, using keys/passwords that are shared between the servers. This enables the use of Kerberos while protecting passwords. Our implementation is able to support a login storm of over 35,000 logins per second, which suffices even for very large organizations. Our work demonstrates that high-throughput secure computation is possible on standard hardware.

AB - In this paper, we describe a new information-theoretic protocol (and a computationally-secure variant) for secure threeparty computation with an honest majority. The protocol has very minimal computation and communication; for Boolean circuits, each party sends only a single bit for every AND gate (and nothing is sent for XOR gates). Our protocol is (simulation-based) secure in the presence of semi-honest adversaries, and achieves privacy in the client/server model in the presence of malicious adversaries. On a cluster of three 20-core servers with a 10Gbps connection, the implementation of our protocol carries out over 1.3 million AES computations per second, which involves processing over 7 billion gates per second. In addition, we developed a Kerberos extension that replaces the ticketgranting-ticket encryption on the Key Distribution Center (KDC) in MIT-Kerberos with our protocol, using keys/passwords that are shared between the servers. This enables the use of Kerberos while protecting passwords. Our implementation is able to support a login storm of over 35,000 logins per second, which suffices even for very large organizations. Our work demonstrates that high-throughput secure computation is possible on standard hardware.

UR - http://www.scopus.com/inward/record.url?scp=84995468266&partnerID=8YFLogxK

U2 - 10.1145/2976749.2978331

DO - 10.1145/2976749.2978331

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:84995468266

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 805

EP - 817

BT - CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security

PB - Association for Computing Machinery

T2 - 23rd ACM Conference on Computer and Communications Security, CCS 2016

Y2 - 24 October 2016 through 28 October 2016

ER -

Araki T, Furukawa J, Lindell Y , Nof A, Ohara K. High-throughput semi-honest secure three-party computation with an honest majority. In CCS 2016 - Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery. 2016. p. 805-817. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/2976749.2978331

High-throughput semi-honest secure three-party computation with an honest majority

Abstract

Publication series

Conference

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this