Fortified Multi-Party Computation: Taking Advantage of Simple Secure Hardware Modules-Reference-Cited by-同舟云学术

Fortified Multi-Party Computation: Taking Advantage of Simple Secure Hardware Modules

Published:2021-07-23 Issue:4 Volume:2021 Page:312-338
ISSN:2299-0984
Container-title:Proceedings on Privacy Enhancing Technologies
language:en
Short-container-title:

Author:

Broadnax Brandon,Koch Alexander¹,Mechler Jeremias¹,Müller Tobias,Müller-Quade Jörn¹,Nagel Matthias

Affiliation:

1. Competence Center for Applied Security Technology (KASTEL), Karlsruhe Institute of Technology (KIT)

Abstract

Abstract In practice, there are numerous settings where mutually distrusting parties need to perform distributed computations on their private inputs. For instance, participants in a first-price sealed-bid online auction do not want their bids to be disclosed. This problem can be addressed using secure multi-party computation (MPC), where parties can evaluate a publicly known function on their private inputs by executing a specific protocol that only reveals the correct output, but nothing else about the private inputs. Such distributed computations performed over the Internet are susceptible to remote hacks that may take place during the computation. As a consequence, sensitive data such as private bids may leak. All existing MPC protocols do not provide any protection against the consequences of such remote hacks. We present the first MPC protocols that protect the remotely hacked parties’ inputs and outputs from leaking. More specifically, unless the remote hack takes place before the party received its input or all parties are corrupted, a hacker is unable to learn the parties’ inputs and outputs, and is also unable to modify them. We achieve these strong (privacy) guarantees by utilizing the fact that in practice parties may not be susceptible to remote attacks at every point in time, but only while they are online, i.e. able to receive messages. To this end, we model communication via explicit channels. In particular, we introduce channels with an airgap switch (disconnect-able by the party in control of the switch), and unidirectional data diodes. These channels and their isolation properties, together with very few, similarly simple and plausibly remotely unhackable hardware modules serve as the main ingredient for attaining such strong security guarantees. In order to formalize these strong guarantees, we propose the UC with Fortified Security (UC#) framework, a variant of the Universal Composability (UC) framework.

Publisher

Walter de Gruyter GmbH

Subject

General Medicine

Link

https://www.sciendo.com/pdf/10.2478/popets-2021-0072

Reference55 articles.

1. [1] D. Achenbach, J. Müller-Quade, and J. Rill. Universally composable firewall architectures using trusted hardware. In B. Ors and B. Preneel, editors, BalkanCryptSec 2014, volume 9024 of LNCS, pages 57–74. Springer, 2014. 10.1007/978-3-319-21356-9_5.

2. [2] J. Andronick, B. Chetali, and C. Paulin-Mohring. Formal verification of security properties of smart card embedded source code. In J. S. Fitzgerald, I. J. Hayes, and A. Tarlecki, editors, FM 2005: Formal Methods, International Symposium of Formal Methods Europe, volume 3582 of LNCS, pages 302–317. Springer, 2005. 10.1007/11526841_21.

3. [3] G. Asharov, S. Halevi, Y. Lindell, and T. Rabin. Privacy-preserving search of similar patients in genomic data. Proc. Priv. Enhancing Technol., 2018(4):104–124, 2018. 10.1515/popets-2018-0034.

4. [4] J. Baron, K. E. Defrawy, J. Lampkins, and R. Ostrovsky. How to withstand mobile virus attacks, revisited. In M. M. Halldórsson and S. Dolev, editors, PODC 2014, pages 293–302. ACM, 2014. 10.1145/2611462.2611474.

5. [5] G. Barthe and G. Dufay. Formal methods for smartcard security. In A. Aldini, R. Gorrieri, and F. Martinelli, editors, Foundations of Security Analysis and Design III, FOSAD 2004/2005 Tutorial Lectures, volume 3655 of LNCS, pages 133–177. Springer, 2005. 10.1007/11554578_5.

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. The Landscape of Security from Physical Assumptions;2021 IEEE Information Theory Workshop (ITW);2021-10-17