Secure Multiparty Computation with Identifiable Abort via Vindicating Release

Ran Cohen; Jack Doerner; Yashvanth Kondi; Abhi Shelat

doi:10.1007/978-3-031-68397-8_2

Secure Multiparty Computation with Identifiable Abort via Vindicating Release

Ran Cohen
, Jack Doerner
, Yashvanth Kondi
, Abhi Shelat

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

In the dishonest-majority setting, secure multiparty computation (MPC) with identifiable abort (IA) guarantees that honest parties can identify and agree upon at least one cheating party if the protocol does not produce an output. Known MPC constructions with IA rely on generic zero-knowledge proofs, adaptively secure oblivious transfer (OT) protocols, or homomorphic primitives, and thus incur a substantial penalty with respect to protocols that abort without identifiability. We introduce a new, weaker notion of IA called input-revealing IA (IRIA), which can be constructed through selective revealing of committed input values—a technique we call vindicating release. We show that this weaker form of IA can be achieved with small concrete overheads for many interesting protocols in the literature, including the pre-processing protocols needed for several state-of-the-art MPC protocols. We next show how to assemble these IRIA components into an MPC protocol for any functionality with standard IA. Such a realization differs minimally in terms of cost, techniques, and analysis from the equivalent realization that lacks identifiability, e.g., our total bandwidth overhead incurred is less than 2x, which is an asymptotic improvement over prior work on IA. On a practical level, we apply our techniques to the problem of threshold ECDSA, and show that the resulting protocol with standard IA is concretely efficient. On a theoretical level, we present a compiler that transforms any secure protocol into one with standard IA assuming only a variant of statically-corruptable ideal OT.

Original language	English
Title of host publication	Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings
Editors	Leonid Reyzin, Douglas Stebila
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	36-73
Number of pages	38
ISBN (Print)	9783031683961
DOIs	https://doi.org/10.1007/978-3-031-68397-8_2
State	Published - 2024
Externally published	Yes
Event	44th Annual International Cryptology Conference, CRYPTO 2024 - Santa Barbara, United States Duration: 18 Aug 2024 → 22 Aug 2024

Publication series

Name	Lecture Notes in Computer Science
Volume	14927 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	44th Annual International Cryptology Conference, CRYPTO 2024
Country/Territory	United States
City	Santa Barbara
Period	18/08/24 → 22/08/24

Bibliographical note

Publisher Copyright:
© International Association for Cryptologic Research 2024.

Access to Document

10.1007/978-3-031-68397-8_2

Cite this

Cohen, R., Doerner, J., Kondi, Y., & Shelat, A. (2024). Secure Multiparty Computation with Identifiable Abort via Vindicating Release. In L. Reyzin, & D. Stebila (Eds.), Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings (pp. 36-73). (Lecture Notes in Computer Science; Vol. 14927 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-68397-8_2

Cohen, Ran ; Doerner, Jack ; Kondi, Yashvanth et al. / Secure Multiparty Computation with Identifiable Abort via Vindicating Release. Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings. editor / Leonid Reyzin ; Douglas Stebila. Springer Science and Business Media Deutschland GmbH, 2024. pp. 36-73 (Lecture Notes in Computer Science).

@inproceedings{a9e1668e9aa345bf8bf69047bb56550c,

title = "Secure Multiparty Computation with Identifiable Abort via Vindicating Release",

abstract = "In the dishonest-majority setting, secure multiparty computation (MPC) with identifiable abort (IA) guarantees that honest parties can identify and agree upon at least one cheating party if the protocol does not produce an output. Known MPC constructions with IA rely on generic zero-knowledge proofs, adaptively secure oblivious transfer (OT) protocols, or homomorphic primitives, and thus incur a substantial penalty with respect to protocols that abort without identifiability. We introduce a new, weaker notion of IA called input-revealing IA (IRIA), which can be constructed through selective revealing of committed input values—a technique we call vindicating release. We show that this weaker form of IA can be achieved with small concrete overheads for many interesting protocols in the literature, including the pre-processing protocols needed for several state-of-the-art MPC protocols. We next show how to assemble these IRIA components into an MPC protocol for any functionality with standard IA. Such a realization differs minimally in terms of cost, techniques, and analysis from the equivalent realization that lacks identifiability, e.g., our total bandwidth overhead incurred is less than 2x, which is an asymptotic improvement over prior work on IA. On a practical level, we apply our techniques to the problem of threshold ECDSA, and show that the resulting protocol with standard IA is concretely efficient. On a theoretical level, we present a compiler that transforms any secure protocol into one with standard IA assuming only a variant of statically-corruptable ideal OT.",

author = "Ran Cohen and Jack Doerner and Yashvanth Kondi and Abhi Shelat",

note = "Publisher Copyright: {\textcopyright} International Association for Cryptologic Research 2024.; 44th Annual International Cryptology Conference, CRYPTO 2024 ; Conference date: 18-08-2024 Through 22-08-2024",

year = "2024",

doi = "10.1007/978-3-031-68397-8\_2",

language = "אנגלית",

isbn = "9783031683961",

series = "Lecture Notes in Computer Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "36--73",

editor = "Leonid Reyzin and Douglas Stebila",

booktitle = "Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings",

address = "גרמניה",

}

Cohen, R, Doerner, J, Kondi, Y & Shelat, A 2024, Secure Multiparty Computation with Identifiable Abort via Vindicating Release. in L Reyzin & D Stebila (eds), Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings. Lecture Notes in Computer Science, vol. 14927 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 36-73, 44th Annual International Cryptology Conference, CRYPTO 2024, Santa Barbara, United States, 18/08/24. https://doi.org/10.1007/978-3-031-68397-8_2

Secure Multiparty Computation with Identifiable Abort via Vindicating Release. / Cohen, Ran; Doerner, Jack; Kondi, Yashvanth et al.
Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings. ed. / Leonid Reyzin; Douglas Stebila. Springer Science and Business Media Deutschland GmbH, 2024. p. 36-73 (Lecture Notes in Computer Science; Vol. 14927 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Secure Multiparty Computation with Identifiable Abort via Vindicating Release

AU - Cohen, Ran

AU - Doerner, Jack

AU - Kondi, Yashvanth

AU - Shelat, Abhi

N1 - Publisher Copyright: © International Association for Cryptologic Research 2024.

PY - 2024

Y1 - 2024

N2 - In the dishonest-majority setting, secure multiparty computation (MPC) with identifiable abort (IA) guarantees that honest parties can identify and agree upon at least one cheating party if the protocol does not produce an output. Known MPC constructions with IA rely on generic zero-knowledge proofs, adaptively secure oblivious transfer (OT) protocols, or homomorphic primitives, and thus incur a substantial penalty with respect to protocols that abort without identifiability. We introduce a new, weaker notion of IA called input-revealing IA (IRIA), which can be constructed through selective revealing of committed input values—a technique we call vindicating release. We show that this weaker form of IA can be achieved with small concrete overheads for many interesting protocols in the literature, including the pre-processing protocols needed for several state-of-the-art MPC protocols. We next show how to assemble these IRIA components into an MPC protocol for any functionality with standard IA. Such a realization differs minimally in terms of cost, techniques, and analysis from the equivalent realization that lacks identifiability, e.g., our total bandwidth overhead incurred is less than 2x, which is an asymptotic improvement over prior work on IA. On a practical level, we apply our techniques to the problem of threshold ECDSA, and show that the resulting protocol with standard IA is concretely efficient. On a theoretical level, we present a compiler that transforms any secure protocol into one with standard IA assuming only a variant of statically-corruptable ideal OT.

AB - In the dishonest-majority setting, secure multiparty computation (MPC) with identifiable abort (IA) guarantees that honest parties can identify and agree upon at least one cheating party if the protocol does not produce an output. Known MPC constructions with IA rely on generic zero-knowledge proofs, adaptively secure oblivious transfer (OT) protocols, or homomorphic primitives, and thus incur a substantial penalty with respect to protocols that abort without identifiability. We introduce a new, weaker notion of IA called input-revealing IA (IRIA), which can be constructed through selective revealing of committed input values—a technique we call vindicating release. We show that this weaker form of IA can be achieved with small concrete overheads for many interesting protocols in the literature, including the pre-processing protocols needed for several state-of-the-art MPC protocols. We next show how to assemble these IRIA components into an MPC protocol for any functionality with standard IA. Such a realization differs minimally in terms of cost, techniques, and analysis from the equivalent realization that lacks identifiability, e.g., our total bandwidth overhead incurred is less than 2x, which is an asymptotic improvement over prior work on IA. On a practical level, we apply our techniques to the problem of threshold ECDSA, and show that the resulting protocol with standard IA is concretely efficient. On a theoretical level, we present a compiler that transforms any secure protocol into one with standard IA assuming only a variant of statically-corruptable ideal OT.

UR - https://www.scopus.com/pages/publications/85202295765

U2 - 10.1007/978-3-031-68397-8_2

DO - 10.1007/978-3-031-68397-8_2

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:85202295765

SN - 9783031683961

T3 - Lecture Notes in Computer Science

SP - 36

EP - 73

BT - Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings

A2 - Reyzin, Leonid

A2 - Stebila, Douglas

PB - Springer Science and Business Media Deutschland GmbH

T2 - 44th Annual International Cryptology Conference, CRYPTO 2024

Y2 - 18 August 2024 through 22 August 2024

ER -

Cohen R, Doerner J, Kondi Y, Shelat A. Secure Multiparty Computation with Identifiable Abort via Vindicating Release. In Reyzin L, Stebila D, editors, Advances in Cryptology – CRYPTO 2024 - 44th Annual International Cryptology Conference, Proceedings. Springer Science and Business Media Deutschland GmbH. 2024. p. 36-73. (Lecture Notes in Computer Science). doi: 10.1007/978-3-031-68397-8_2