Secure Messaging and Multiparty Computation Techniques

sabre sender anonymous messaging with fast audits l.w
1 / 53
Embed
Share

Explore Sabre anonymous messaging and secure multiparty computation protocols for enhanced data privacy and security. Learn about additive secret sharing techniques for secure data transfer and computation.

  • Secure Messaging
  • Multiparty Computation
  • Data Privacy
  • Security Protocols
rayaanacharya
kinze Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Sabre: Sender-Anonymous Messaging with Fast Audits Adithya Vadapalli1, Kyle Storrier2, and Ryan Henry2 1University of Waterloo, adithya.vadapalli@uwaterloo.ca 2University of Calgary, {kyle.storrier, ryan.henry}@ucalgary.ca

  2. Outline Introduction Sabre-BB DPF verification protocol Sabre-M Sabre-M mailbox security Conclusion 1

  3. Sender-Anonymous Messaging (SAM) Sender-anonymous bulletin board model Sender-anonymous mailbox model 2

  4. Sabre Sabre-BB in the bulletin board model Sabre-M in the mailbox model Improved verification protocols 3

  5. Secure Multiparty Computation (MPC) Mutually distrustful parties Jointly compute a function of their private inputs This paper focus on (2 + 1)-party MPC protocols Two computing parties A third assisting party 4

  6. MPC-in-the-Head Converts a ?-private MPC protocol into a zero-knowledge proof of knowledge (ZKPoK) Simulates an MPC protocol Prover commits to the transcripts of the simulated parties Verifier requests up to ? parties to have their communications revealed 5

  7. Additive Secret Sharing ? ? 6

  8. Additive Secret Sharing ?0 ?? 7

  9. Additive Secret Sharing ?1= ? ?0 8

  10. Additive Secret Sharing ? = ?1+ ?0 9

  11. Additive Secret Sharing ? = ?1+ ?0 ? = ?1+ ?0 10

  12. Additive Secret Sharing ? + ? = ?1+ ?1 + ?0+ ?0 11

  13. Additive Secret Sharing over 2 2 is the ring of integers modulo 2 Represented with -bit integers Addition and multiplication are simply the corresponding operations modulo 2 12

  14. Additive Secret Sharing over 0,1 The set of length bitstrings Represented with -bit integers For addition we use bitwise XOR For multiplication we use bitwise AND 13

  15. Additive Secret Sharing Databases Secret Database Server 1 Server 2 14

  16. Additive Secret Sharing Databases Share 1 Share 2 Server 1 Server 2 15

  17. Additive Secret Sharing Databases Share 1 Share 2 Server 1 Server 2 16

  18. Additive Secret Sharing Databases Write ? at index 2 Share 1 Share 2 Server 1 Server 2 17

  19. Additive Secret Sharing Databases Write ? at index 2 0 Share 1 Share 2 0 ? 0 0 0 Server 1 Server 2 18

  20. Additive Secret Sharing Databases Write ? at index 2 00 00 ?0 00 00 00 01 01 ?1 01 01 01 Share 1 Share 2 00 00 00 00 00 00 01 01 01 01 01 01 Server 1 Server 2 19

  21. Additive Secret Sharing Databases Write ? at index 2 Share 1 Share 2 00 00 00 00 00 00 01 01 01 01 01 01 00 00 ?0 00 00 00 01 01 ?1 01 01 01 + + Server 1 Server 2 20

  22. Additive Secret Sharing Databases Write ? at index 2 Share 1 Share 2 00 00 ?0 00 00 00 01 01 ?1 01 01 01 Server 1 Server 2 21

  23. Additive Secret Sharing Databases Write ? at index 4 0 Share 1 Share 2 0 00 00 ?0 00 00 00 01 01 ?1 01 01 01 0 0 ? 0 Server 1 Server 2 22

  24. Additive Secret Sharing Databases Write ? at index 4 00 00 00 00 ?0 00 01 01 01 01 ?1 01 Share 1 Share 2 00 00 ?0 00 00 00 01 01 ?1 01 01 01 Server 1 Server 2 23

  25. Additive Secret Sharing Databases Write ? at index 4 Share 1 Share 2 00 00 ?0 00 00 00 01 01 ?1 01 01 01 00 00 00 00 ?0 00 01 01 01 01 ?1 01 + + Server 1 Server 2 24

  26. Additive Secret Sharing Databases Share 1 Share 2 00 00 ?0 00 ?0 00 01 01 ?1 01 ?1 01 Server 1 Server 2 25

  27. Additive Secret Sharing Databases Reconstruct the database Share 1 Share 2 00 00 ?0 00 ?0 00 01 01 ?1 01 ?1 01 Server 1 Server 2 26

  28. Additive Secret Sharing Databases Reconstruct the database 00 00 ?0 00 ?0 00 01 01 ?1 01 ?1 01 + Server 1 Server 2 27

  29. Additive Secret Sharing Databases Reconstruct the database 0 0 ? 0 ? 0 Server 1 Server 2 28

  30. Point Functions A point function ??,? ??,?? = ? ??,?? = 0 for ? ? 1-nodes and 0-nodes 1-path leading to the distinguished point ? 29

  31. Distributed Point Functions (DPFs) Elette Boyle, Niv Gilboa, and Yuval Ishai. Function secret sharing: Improvements and extensions. In Proceedings of CCS 2016, pages 1292 1303, Vienna, Austria (Oct. 2016). 30

  32. Distributed Point Functions (DPFs) Elette Boyle, Niv Gilboa, and Yuval Ishai. Function secret sharing: Improvements and extensions. In Proceedings of CCS 2016, pages 1292 1303, Vienna, Austria (Oct. 2016). 31

  33. Riposte Sender-anonymous bulletin board model Uses DPFs to write to randomly selected buckets Henry Corrigan-Gibbs, Dan Boneh, and David Mazi res. Riposte: An anonymous messaging system handling millions of users. In Proceedings of IEEE S&P 2015, pages 321 338, San Jose, CA, USA (May 2015). 32

  34. Express Sender-anonymous mailbox model Uses DPFs to write to pre- registered mailbox addresses Saba Eskandarian, Henry Corrigan-Gibbs, Matei Zaharia, and Dan Boneh. Express: Lowering the cost of metadata-hiding communication with cryptographic privacy. In Proceedings of USENIX Security 2021, Vancouver, BC, Canada (Aug. 2021). 33

  35. Sabre-BB Uses DPFs for writing like Riposte Uses logarithmic size DPFs Improved DPF verification 34

  36. DPF Verification MPC Protocol Traverse the 1-path of the DPF tree to the distinguished point 35

  37. DPF Verification MPC Protocol Seeds ??,?,? ??,?,? 36

  38. DPF Verification MPC Protocol ??,?,? ??,?,? ?0,?,? ?1,?,? ?0,?,? ?1,?,? 37

  39. DPF Verification MPC Protocol ??,?,? ??,?,? ?0,?,? ?1,?,? ?0,?,? ?1,?,? 1-Node 0-Node 0-Node 1-Node 38

  40. DPF Verification MPC Protocol ??,?,? ??,?,? ?1,?,? ?0,?,? ?1,?,? ?0,?,? 0-Node 1-Node 1-Node 0-Node 39

  41. DPF Verification MPC Protocol 0-Node 1-Node ?1,?,? ?1,?,? ?0,?,? ?0,?,? 40

  42. DPF Verification MPC Protocol 0-Node 1-Node ?1,?,? ?1,?,? 0 ?0,?,? ?0,?,? 41

  43. DPF Verification MPC Protocol New Seeds ?0,?,? ?0,?,? 42

  44. Multi-Verifier MPC-in-the-Head DPF verification protocol can be converted to a ZKPoK using MPC-in- the-head The Sabre servers already have DPF keys They cannot see the simulated party with the other key Different servers verify different simulated parties Two vs three verifier versions 43

  45. Sabre-BB Experimental Analysis 44

  46. Sabre-M Uses the same DPF verification protocol as Sabre-BB Novel mailbox address verification protocol 45

  47. Sabre-M Addresses Mailbox ? is given an address addr?= F ?,? A client writing in ? must send shares of the ? and addr? with its DPF DPF targets are just the indices of the target mailbox Significant space improvement over previous solutions Can use efficient full-domain evaluation 46

  48. PRF Mailbox Verification Each server has received shares ?? and addr? The servers use MPC to compute addr?= F ?,? The servers compute addr? addr? The result should be zero ? 47

  49. Sabre-M Experimental Analysis 48

  50. Sabre Denial of Service Resistance 49

Related


Role of Security Champions in Organizations

Role of Security Champions in Organizations

irvin
Roles of a Security Partner

Roles of a Security Partner

zaara
Certification and Training in Information Security

Certification and Training in Information Security

buck
The Art of Small Talk: Navigating Social Situations with Ease

The Art of Small Talk: Navigating Social Situations with Ease

perry
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication

Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication

joso_597
Enhancing Reading Comprehension Through Making Inferences

Enhancing Reading Comprehension Through Making Inferences

kmitt
Talk-Line: A Helpline for Students in Grades 3-5

Talk-Line: A Helpline for Students in Grades 3-5

fian643
American Sniper: The Story of Chris Kyle and His Journey in the Military

American Sniper: The Story of Chris Kyle and His Journey in the Military

rlen
INCOSE Texas Gulf Coast Chapter (TGCC) May 2022 Monthly Meeting Highlights

INCOSE Texas Gulf Coast Chapter (TGCC) May 2022 Monthly Meeting Highlights

summerra
Unit of Security in Information Systems

Unit of Security in Information Systems

karri
Extinct Animals: Sabre-toothed Cat and Tasmanian Tiger

Extinct Animals: Sabre-toothed Cat and Tasmanian Tiger

gest
Comprehensive DevOps Security Training Overview

Comprehensive DevOps Security Training Overview

jahv_808
Progress Update on SABRE Crystal Growth Project

Progress Update on SABRE Crystal Growth Project

quan_78
John Deere 14.542GS 1642HS and 17.542HS Sabre Lawn Tractors Operator’s Manual Instant Download (pin.010001-)(Publication No.OMGX20196)

John Deere 14.542GS 1642HS and 17.542HS Sabre Lawn Tractors Operator’s Manual Instant Download (pin.010001-)(Publication No.OMGX20196)

fusozzddktvdmsmk
John Deere 1438GS 1438HS 1538HS 1542HS 1742GS 1742HS and 2046HS Sabre Lawn Tractors Operator’s Manual Instant Download (Publication No.OMGX10526)

John Deere 1438GS 1438HS 1538HS 1542HS 1742GS 1742HS and 2046HS Sabre Lawn Tractors Operator’s Manual Instant Download (Publication No.OMGX10526)

fusozzddktvdmsmk
John Deere 1438GS 1438HS 1542HS 1742GS 1742HS and 2046HS Sabre Lawn Tractors Operator’s Manual Instant Download (pin.010001- 020001-) (Publication No.OMGX10782)

John Deere 1438GS 1438HS 1542HS 1742GS 1742HS and 2046HS Sabre Lawn Tractors Operator’s Manual Instant Download (pin.010001- 020001-) (Publication No.OMGX10782)

fusozzddktvdmsmk
JOHN DEERE 1842GV 1842HV SABRE YARD TRACTOR Service Repair Manual Instant Download

JOHN DEERE 1842GV 1842HV SABRE YARD TRACTOR Service Repair Manual Instant Download

fusozzddktvdmsmk
John Deere 1842GV and 1842HV 1848GV and 1848HV Sabre Yard Tractors Operator’s Manual Instant Download (pin.020001-) (Publication No.OMM138147)

John Deere 1842GV and 1842HV 1848GV and 1848HV Sabre Yard Tractors Operator’s Manual Instant Download (pin.020001-) (Publication No.OMM138147)

fusozzddktvdmsmk
John Deere 1842GV and 1842HV 1848GV and 1848HV Sabre Yard Tractors Operator’s Manual Instant Download (PIN010001-) (Publication No.OMM135884)

John Deere 1842GV and 1842HV 1848GV and 1848HV Sabre Yard Tractors Operator’s Manual Instant Download (PIN010001-) (Publication No.OMM135884)

fusozzddktvdmsmk
John Deere 1948GVHV 2148HV 2354HV and 2554HV Sabre Yard and Garden Tractors Operator’s Manual Instant Download (PIN010001- 025001-) (Publication No.OMM141871)

John Deere 1948GVHV 2148HV 2354HV and 2554HV Sabre Yard and Garden Tractors Operator’s Manual Instant Download (PIN010001- 025001-) (Publication No.OMM141871)

fusozzddktvdmsmk
JOHN DEERE 2048HV 2254HV 2554HV SABRE LAWN GARDEN TRACTOR Service Repair Manual Instant Download

JOHN DEERE 2048HV 2254HV 2554HV SABRE LAWN GARDEN TRACTOR Service Repair Manual Instant Download

fusozzddktvdmsmk
John Deere 2048HV 2254HV and 2554HV Sabre Garden Tractors Operator’s Manual Instant Download (pin.020001-) (Publication No.OMM140479)

John Deere 2048HV 2254HV and 2554HV Sabre Garden Tractors Operator’s Manual Instant Download (pin.020001-) (Publication No.OMM140479)

fusozzddktvdmsmk

More Related Content