Yulin Wu,Xuan Wang,Willy Susilo,Guomin Yang,Zoe L. Jiang,Siu-Ming Yiu,Hao Wang

DOI: https://doi.org/10.1016/j.csi.2021.103552

2022-01-01

Abstract:<p>Cloud computing has become one of the most popular distributed computing paradigms in recent years. With its advantages of low cost, on-demand flexibility, and high data processing abilities, more and more enterprises have adopted the cloud computing paradigm to build up their IT infrastructure. By performing collaborative computation tasks (e.g., big data analysis tasks) with multiple datasets of different correlated enterprises in cloud computing, the generated valuable information will provide the enterprises with higher productivity and financial gains. However, due to the privacy concerns from the enterprises, how to efficiently enable them to achieve secure multi-party joint datasets analysis in cloud computing without leaking their own private dataset becomes a critical but challenging problem for the enterprises. In this paper, focusing on securely performing any collaborative computation task in cloud computing, we construct a generic server-aided secure multi-party computation protocol to tackle the problem. Our solution can provide security guarantee in the setting where at most n-1 client parties are malicious while the server is semi-honest and there is no collusion between the server and clients. The security and experimental performance analysis show that this work is currently the most efficient server-aided secure multi-party computation protocol with the same security guarantee compared with all the previous works to the best of our knowledge.</p>

computer science, software engineering, hardware & architecture

Zhili Chen,Xin Chen

DOI: https://doi.org/10.48550/arXiv.2007.14915

2020-07-29

Cryptography and Security

Abstract:Due to the great development of secure multi-party computation, many practical secure computation schemes have been proposed. As an example, different secure auction mechanisms have been widely studied, which can protect bid privacy while satisfying various economic properties. However, as far as we know, none of them solve the secure computation problems for multiple data providers (e.g., secure cloud resource auctions) in the malicious security model. In this paper, we use the techniques of cut-and-choose and garbled circuits to propose a general secure computation framework for multiple data providers against malicious adversaries. Specifically, our framework checks input consistency with the cut-and-choose paradigm, conducts maliciously secure computations by running two independent garbled circuits, and verifies the correctness of output by comparing two versions of outputs. Theoretical analysis shows that our framework is secure against a malicious computation party, or a subset of malicious data providers. Taking secure cloud resource auctions as an example, we implement our framework. Extensive experimental evaluations show that the performance of the proposed framework is acceptable in practice.

Zhusen Liu,Luyao Wang,Haiyong Bao,Zhenfu Cao,Lu Zhou,Zhe Liu

DOI: https://doi.org/10.1109/tii.2023.3342882

IF: 12.3

2024-01-01

IEEE Transactions on Industrial Informatics

Abstract:Prevailing smart devices collect individual or industrial sensitive data for collaborative computation to provide convenient service in heterogeneous networks. Nowadays, protecting privacy and security is a significant issue and raises increasing concerns in academia and industry. But diverse smart devices are equipped with unequal resources and some devices with limited resources cannot afford expensive privacy-preserving computation. In this article, we propose a generic efficient and privacy-preserving cloud-assisted two-party computation scheme for smart devices in heterogeneous networks. We adopt the cloud server to assist the collaborative computation and reduce the overhead of smart devices. Besides, we apply preprocessing and online phases to guarantee different devices to operate with a lower burden online. What is more, the work is, to our best knowledge, the first to resist the malicious cloud server and computing parties simultaneously by adopting authenticated masked bits to strengthen the garbled circuit scheme. At the same time, our scheme can guarantee correctness and fairness, as shown in security analysis. The performance comparison result shows that this work is efficient and surpasses the previous best counterpart scheme while maintaining nearly identical computation cost. It outperforms in terms of total communication cost by 49% and total execution time by 32%, even though it takes extra and acceptable cost in the online phase for stronger security against the malicious server.

Jing Wu,Yuhan Yang,Lijun Wei,C. Long

DOI: https://doi.org/10.1145/3390566.3391664

2020-03-12

Abstract:With the rapid development of Internet of Things, the demand of data sharing is not only to ensure the data integrity, but also to protect user's individual privacy. Secure multi-party computation, as a technology paradigm based on cryptography technology, enables privacy protection in data sharing among multiple parties, while the implement of secure multi-party computation is limited due to the inefficient, complex computation protocol and frequent interaction. Fortunately, the emergence of blockchain technology provides excellent properties of decentralization, verifiability and high reliability for secure multi-party computation. In this paper, we propose a blockchain-based secure multi-party computation architecture for data sharing, where we design an aggregator consortium for data storage, verification and joint computation. Moreover, we introduce a straightforward secure multi-party computation scheme based on homomorphic encryption. In addition, we analyze and discuss this scheme in terms of data security, access flexibility, attack resistance and potential applications.

Computer Science,Engineering

Xunwu Gong,Bin Hu,Yunqiang Xiong,Xiaofang Zhao

DOI: https://doi.org/10.1109/bigdatasecurityhpscids54978.2022.00022

2022-01-01

Abstract:We focus on the problem of how to boost greater confidence in computations outsourced to an untrusted cloud server. Naturally, we aim for solutions that cater for the following two security requirements: data confidentiality/privacy and verifiability of computations. This problem is addressed by the research community through an intriguing paradigm combining a verifiable computation (VC) and a fully homomorphic encryption (FHE). Despite continuing advances in achieving efficient VC and FHE, existing approaches that meet both requirements simultaneously are expensive and impractical for servers and clients. In this work, we first introduce an interesting primitive, called versatile message authenticators, to achieve a verifiable outsourced computation on encrypted data and then give a concrete construction. Without the involvement of FHE, our scheme mainly depends on a pseudo-random function and a adapted Homomorphic MAC scheme. Our solution is proven secure in a strong security model where the adversary is allowed to issue any verification queries. Furthermore, it allows for arbitrary composition and generates constant-size tags. However, our construction just supports linear functions. Finally, our security proof shows its semantic security and unforgeability.

Yulin Wu,Xuan Wang,Willy Susilo,Guomin Yang,Zoe L. Jiang,Hao Wang,Tong Wu

DOI: https://doi.org/10.1016/j.csi.2021.103571

2022-03-01

Abstract:In the artificial intelligence era, data-driven computation tasks, such as machine learning, have been playing an essential role as the decision-maker to unlock the value of big data in many fields. Moreover, the ultimate goal of pursuing accuracy and efficiency improvement to better promote the application of data-driven computation has never changed. Since the main method to improve the accuracy of these tasks (e.g., the model training of machine learning) is to increase the diversity of datasets, this requires multiple data providers to share their data. However, data providers, e.g., private companies, are reluctant to share their datasets directly, considering the privacy protection of user information and the leakage prevention of their business secrets. Therefore, how to securely and efficiently perform joint datasets based data-driven computation tasks has become the main problem. In this work, without getting the aid of any trusted-third party (e.g., the cloud server), we construct an efficient maliciously secure two-party mixed-protocol framework for data-driven computation tasks. In particular, we construct a new cryptography gadget called committed oblivious linear evaluation (C-OLE) based on the homomorphic commitments in the malicious model. Then we construct two types of share conversion protocols in the malicious model with the above C-OLE gadget to construct the two-party mixed-protocol framework for data-driven computation tasks. Without utilizing the random oracle, our framework can provide a stronger security guarantee than the other two-party mixed-protocol frameworks in the literature. Furthermore, we conscientiously evaluate the theoretical efficiency of the two shares conversion protocols and provide the result as an important reference for future developers who intend to securely and efficiently instantiate the data-driven computation tasks (e.g., privacy-preserving machine learning applications) in the malicious model.

computer science, software engineering, hardware & architecture

Qingji Zheng,Xinwen Zhang

DOI: https://doi.org/10.48550/arXiv.1206.3717

2012-06-17

Abstract:With the increasing popularity of the cloud, clients oursource their data to clouds in order to take advantage of unlimited virtualized storage space and the low management cost. Such trend prompts the privately oursourcing computation, called \emph{multiparty cloud computation} (\MCC): Given $k$ clients storing their data in the cloud, how can they perform the joint functionality by contributing their private data as inputs, and making use of cloud's powerful computation capability. Namely, the clients wish to oursource computation to the cloud together with their private data stored in the cloud, which naturally happens when the computation is involved with large datasets, e.g., to analyze malicious URLs. We note that the \MCC\ problem is different from widely considered concepts, e.g., secure multiparty computation and multiparty computation with server aid. To address this problem, we introduce the notion of \emph{homomorphic threshold proxy re-encryption} schemes, which are encryption schemes that enjoy three promising properties: proxy re-encryption -- transforming encrypted data of one user to encrypted data of target user, threshold decryption -- decrypting encrypted data by combining secret key shares obtained by a set of users, and homomorphic computation -- evaluating functions on the encrypted data. To demonstrate the feasibility of the proposed approach, we present an encryption scheme which allows anyone to compute arbitrary many additions and at most one multiplications.

Cryptography and Security

ZhenHua Chen,WeiGuo Zhang,ShunDong Li,DaoShun Wang,Qiong Huang

DOI: https://doi.org/10.3969/j.issn.0372-2112.2017.05.013

2017-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:Secure multiparty computation of set membership is significant to privacy-preserving data mining,data query,etc.In this paper,we first transform the original problem into the one-time evaluation problem for polynomial,and then construct four protocols.We design the trivial protocol 1 using homomorphic encryption and construct the efficient protocol 2 using discrete logarithm instead of encryption,which is very concise.Lastly,according to the different application scenarios,we also propose protocol 3 and protocol 4:the former can be used to outsource computation in cloud computing environment;the latter can be used for public secure computation against repudiation.The analysis and comparison show that our protocols are more efficient and concise than previously known.

Xiaoyu Zhang,Tao Jiang,Kuan-Ching Li,Xiaofeng Chen

DOI: https://doi.org/10.1007/978-3-319-57186-7_5

IF: 8.1

2017-01-01

Information Sciences

Abstract:With the prevalence of cloud computing, the resource constrained clients are trended to outsource their computation-intensive tasks to the cloud server. Although outsourcing computation paradigm brings many benefits for both clients and cloud server, it causes some security challenges. In this paper, we focus on the outsourcing computation of matrix multiplication, and propose a new publicly verifiable computation scheme for batch matrix multiplication. Different from traditional matrix computation outsourcing model, the outsourcing task of our scheme is to compute MXi for group of clients, where Xi is a private matrix chosen by different clients and M is a public matrix given by a data center beforehand. Based on the two techniques of privacy-preserving matrix transformation and matrix digest, our scheme can protect the secrecy of the client's private matrix Xi and dramatically reduce the computation cost in both the key generation and the compute phases. The security analysis shows that the proposed scheme can also achieve the desired security properties under the co-CDH assumption.

Yun Luo,Yuling Chen,Tao Li,Yilei Wang

DOI: https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics55523.2022.00080

2022-01-01

Abstract:Many distributed interaction scenarios exist in big data networks, which require joint computation in different environments. In the traditional secure multiparty computation(SMPC), there exist constant rounds or even more rounds of interaction, which greatly increases the communication overhead. In this paper, we address the problem of optimizing the complexity of rounds by constructing a secure computation protocol that achieves semi-honest static security based on a polynomial puzzle assumption. The multiparty interactive computation is performed using multilinear maps operation, and the obtained results are transmitted over the broadcast channel. The security analysis shows that the protocol achieves static security.

Jian Shen,Dengzhi Liu,Xiaofeng Chen,Xinyi Huang,Jiageng Chen,Mingwu Zhang

DOI: https://doi.org/10.1007/978-3-319-93638-3_24

2018-01-01

Abstract:Computation outsourcing is a vital cloud service that can be provided for users. Using the cloud to address complex computations is crucial to users with lightweight devices. However, computations may not be correctly executed by the cloud due to monetary reasons. In this paper, we propose a secure publicly verifiable computation scheme in cloud computing, which is designed based on the polynomial commitment. Owing to the public key de-commitment of the polynomial commitment, our scheme can provide public verifiability for computation results. Security analysis shows that the proposed scheme is correct and can support public verifiability. Comparison and simulation results reveal that our scheme can be performed with low computational cost compared to previous schemes.

Jun Zhang,Zoe L. Jiang,Ping Li,Siu Ming Yiu

DOI: https://doi.org/10.1007/978-3-030-74717-6_23

2020-01-01

Abstract:With the popularity of cloud computing, data owners encrypt their data with different keys before uploading data to the cloud due to privacy concerns. Homomorphic encryption makes it possible to calculate on encrypted data but is usually restricted to single key. Based on an additively homomorphic encryption supporting one multiplication, we propose a general computing framework to execute common arithmetic operations on encrypted data under multiple keys such as addition, multiplication, exponentiation. Our scheme rely on two non-colluding servers and is proven to be secure against semi-honest attackers. The experimental evaluations demonstrate the practicality of our computing framework in terms of lower computational complexity and communication overhead.

Zhusen Liu,Weizheng Wang,Yutong Ye,Nan Min,Zhenfu Cao,Lu Zhou,Zhe Liu

DOI: https://doi.org/10.1109/tifs.2024.3428410

IF: 7.231

2024-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Mobile smart devices provide convenience for people’s daily life with the users’ data, but also put consumers’ privacy and security at risk. Privacy-enhancing technologies (PETs), including secure two/multi-party computation, have emerged as solutions to alleviate privacy concerns in mobile cloud computing (MCC). However, cloud servers, although capable of easing the burden of PETs, introduce potential risks by being malicious and colluding with computation parties to access additional private data. In this article, we propose a privacy-preserving cloud-assisted two-party computation scheme and the optimized variant with the half-gate method in MCC with a higher security level. To the best of our knowledge, the work is the first cloud-assisted two-party computation, designed to resist all collusion attacks in the malicious model. This is achieved by distributing circuit generation tasks among the parties and separately processing private inputs based on authenticated garbled circuits. Security analysis demonstrates that our scheme ensures correctness and fairness. Performance comparison results indicate the efficiency of our work, even with stronger security against malicious servers and any collusion attack. It outperforms the state-of-the-art scheme, particularly in terms of the server’s communication cost in the online phase, achieving a remarkable reduction of approximately 96.8%.

Sriram N. Premnath,Zygmunt J. Haas

DOI: https://doi.org/10.48550/arXiv.1410.1389

2014-10-06

Cryptography and Security

Abstract:Cloud computing systems, in which clients rent and share computing resources of third party platforms, have gained widespread use in recent years. Furthermore, cloud computing for mobile systems (i.e., systems in which the clients are mobile devices) have too been receiving considerable attention in technical literature. We propose a new method of delegating computations of resource-constrained mobile clients, in which multiple servers interact to construct an encrypted program known as garbled circuit. Next, using garbled inputs from a mobile client, another server executes this garbled circuit and returns the resulting garbled outputs. Our system assures privacy of the mobile client's data, even if the executing server chooses to collude with all but one of the other servers. We adapt the garbled circuit design of Beaver et al. and the secure multiparty computation protocol of Goldreich et al. for the purpose of building a secure cloud computing for mobile systems. Our method incorporates the novel use of the cryptographically secure pseudo random number generator of Blum et al. that enables the mobile client to efficiently retrieve the result of the computation, as well as to verify that the evaluator actually performed the computation. We analyze the server-side and client-side complexity of our system. Using real-world data, we evaluate our system for a privacy preserving search application that locates the nearest bank/ATM from the mobile client. We also measure the time taken to construct and evaluate the garbled circuit for varying number of servers, demonstrating the feasibility of our secure and verifiable cloud computing for mobile systems.

Zhengkai Li,Zhenfu Cao,Jiachen Shen,Xiaolei Dong

DOI: https://doi.org/10.1109/icfeict57213.2022.00084

2022-01-01

Abstract:We propose a new scheme for privacy-preserving outsourced calculation. With the help of this scheme, a user on a local host can securely transfer his sensitive information to a cloud platform for processing and storage avoiding disclosing the original information to the unreliable cloud and prying eyes. In addition, the Cloud Platform (CP) can carry out specifical operations on ciphertexts with the help of a Cryptographic Service Provider (CSP) according to the user's requests and send the results to user in the form of ciphertext. Furthermore, data encrypted with multiple keys can also be calculated together, and the computed results will be decrypted by an authorized receiver. We not only implement addition and multiplication operations on ciphertexts, but also design an efficient comparison protocol on ciphertexts (the operations are all in encrypted domain). We then show the security of our encryption and the suggested secure computation sub-protocols. We use a one-way trapdoor permutation and a symmetric somewhat homomorphic encryption as the framework's building blocks rather than the fully homomorphic encryption (FHE) technique. Finally, we use simulations to show the effectiveness and extraordinary efficiency of our suggested scheme.

Kai-Yi Zhang,An-Jing Huang,Kun Tu,Ming-Han Li,Chi Zhang,Wei Qi,Ya-Dong Wu,Yu Yu

2024-11-07

Abstract:Secure multiparty computation enables collaborative computations across multiple users while preserving individual privacy, which has a wide range of applications in finance, machine learning and healthcare. Secure multiparty computation can be realized using oblivious transfer as a primitive function. In this paper, we present an experimental implementation of a quantum-secure quantum oblivious transfer (QOT) protocol using an adapted quantum key distribution system combined with a bit commitment scheme, surpassing previous approaches only secure in the noisy storage model. We demonstrate the first practical application of the QOT protocol by solving the private set intersection, a prime example of secure multiparty computation, where two parties aim to find common elements in their datasets without revealing any other information. In our experiments, two banks can identify common suspicious accounts without disclosing any other data. This not only proves the experimental functionality of QOT, but also showcases its real-world commercial applications.

Quantum Physics,Cryptography and Security

Dan-Chen Wang,Yang Xu,Xiao-Song Zhang

DOI: https://doi.org/10.1142/9789811223334_0045

2020-01-01

Abstract:The security of data flow is the core technology of data fusion and sharing service. This paper uses MPI communication mechanism for reference to meet the multi-party flow of trusted data, set up a multi-party security computing framework to form a privacy protection computing framework, and considers the actual needs of semantic security and efficient processing capacity. SMPC chooses ElGamal homomorphic encryption system. The paper defines addition and subtraction operations, multiplication operation, set operation, space vector operation and comparison operation. Respective operation process providing simultaneously. Based on multi-party computing, the application methods of data verification and correlation analysis are proposed, and the feasibility of the method is illustrated by the performance evaluation of the calculation.

Chuan Zhao,Shengnan Zhao,Minghao Zhao,Zhenxiang Chen,Chong-Zhi Gao,Hongwei Li,Yu-an Tan

DOI: https://doi.org/10.1016/j.ins.2018.10.024

IF: 8.1

2019-01-01

Information Sciences

Abstract:Secure Multi-Party Computation (SMPC) is a generic cryptographic primitive that enables distributed parties to jointly compute an arbitrary functionality without revealing their own private inputs and outputs. Since Yao’s seminal work in 1982, 30 years of research on SMPC has been conducted, proceeding from pure theoretical research into real-world applications. Recently, the increasing prevalence of the newly emerging technologies such as cloud computing, mobile computing and the Internet of Thing has resulted in a re-birth of SMPC’s popularity. This has occurred mainly because, as a generic tool for computing on private data, SMPC has a natural advantage in solving security and privacy issues in these areas. Accordingly, many application-oriented SMPC protocols have been constructed. This paper presents a comprehensive survey on the theoretical and practical aspects of SMPC protocols. Specifically, we start by demonstrating the underlying concepts of SMPC, including its security requirements and basic construction techniques. Then, we present the research advances regarding construction techniques for generic SMPC protocols, and also the cutting-edge approaches to cloud-assisted SMPC protocols. Then, we summarize the concrete application-oriented protocols that are currently available, and finally, we present a discussion of the current literature and conclude this survey.

ZHAO Yang,LAN Tian,MA Xin-xin,ZHANG Feng-li

2006-01-01

Journal of Computer Applications

Abstract:Secure multi-party computation with its applications is an important direction in current cryptography research field. The research focuses on how to accomplish the secure cooperative computation among multi-party without the participation of the third party. The two-party bargaining protocol, based on homomorphic public key cryptosystem, was an example of secure multi-party computation's applications. One participant can make a bargain with the other by implementing the protocol. During the implementation of protocol, the privacy of input and the correctness of output could be preserved. The protocol can be implemented without the participation of the third party and its security was based on additive homomorphic public key cryptosystem.

Zoe Lin Jiang,Songjiang Shi,Hongxiao Wang,Peng Yang,Xuan Wang,Yulin Wu,Yantao Zhong,Yan Jia

DOI: https://doi.org/10.1109/icdis55630.2022.00008

2022-01-01

Abstract:Secure honest-majority four-party computation (4PC) protocol was proposed for four mutually-distrusting parties to jointly evaluate a complex function on their private inputs with private robustness by cheater identification. This capability has great potential for distributed private computation, such as distributed privacy-preserving machine learning. However, the adoption of secure 4PC is hampered mainly by the computation and communication costs of online phase of protocol. In this work we propose an efficient secure 4PC protocol with private robustness. Specifically, by transferring hash verification operation for cheating detection to the fourth party, and with the help of the mutual constraint between the four parties, the communication rounds and communication costs of joint message passing primitive can be reduced. To further reduce communication cost, this paper proposes to divide the four parties into two groups and applies the method of two-party multiplication with truncation to avoid multiplication overflow. We implement secure 4PC protocol and demonstrate the efficiency of computation and communication in MNIST multi-class classification training. It achieves $2.1\times$ reduction in computation cost and $2.5\times$ reduction in communication cost compared to prior works.