hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks

Detalhes bibliográficos
Autor(a) principal: Almeida, José Bacelar
Data de Publicação: 2018
Outros Autores: Barbosa, Manuel, Barthe, Gilles, Pacheco, Hugo, Pereira, Vitor, Portela, Bernardo
Idioma: eng
Título da fonte: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Texto Completo: http://hdl.handle.net/1822/66492
Resumo: We give a language-based security treatment of domain-specific languages and compilers for secure multi-party computation, a cryptographic paradigm that. enables collaborative computation over encrypted data. Computations are specified in a core imperative language, as if they were intended to be executed by a trusted-third party, and formally verified against. an information-flow policy modelling (an upper bound to) their leakage. This allows non-experts to assess the impact of performance driven authorized disclosure of intermediate values.Specifications are then compiled to multi-party protocols. We formalize protocol security using (distributed) probabilistic information-flow and prove security-preserving compilation: protocols only leak what. is allowed by the source policy. The proof exploits a natural but previously missing correspondence between simulation-based cryptographic proofs and (composable) probabilistic non-interference.Finally, we extend our framework to justify leakage cancelling, a domain-specific optimization that allows to first write an efficient specification that fails to meet the allowed leakage upper-bound, and then apply a probabilistic preprocessing that brings leakage to the acceptable range.
id RCAP_bf3ae3574fb6aa02a3fa6fff2baad7d1
oai_identifier_str oai:repositorium.sdum.uminho.pt:1822/66492
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworksDomain-specific-languagesMulti-party-computationPrivacySecure-compilationSecuritySemanticsType-systemsVerificationScience & TechnologyWe give a language-based security treatment of domain-specific languages and compilers for secure multi-party computation, a cryptographic paradigm that. enables collaborative computation over encrypted data. Computations are specified in a core imperative language, as if they were intended to be executed by a trusted-third party, and formally verified against. an information-flow policy modelling (an upper bound to) their leakage. This allows non-experts to assess the impact of performance driven authorized disclosure of intermediate values.Specifications are then compiled to multi-party protocols. We formalize protocol security using (distributed) probabilistic information-flow and prove security-preserving compilation: protocols only leak what. is allowed by the source policy. The proof exploits a natural but previously missing correspondence between simulation-based cryptographic proofs and (composable) probabilistic non-interference.Finally, we extend our framework to justify leakage cancelling, a domain-specific optimization that allows to first write an efficient specification that fails to meet the allowed leakage upper-bound, and then apply a probabilistic preprocessing that brings leakage to the acceptable range.The fourth author is financed by the COMPETE 2020 Programme within project POCI-01-0145-FEDER-006961, by the FCT within project UID/EEA/50014/2013 and grant SFRH/BPD/121389/2016. The second author is financed by Project NanoSTIMA/NORTE-01-0145-FEDER-000016 through the NORTE 2020 Programme.IEEEUniversidade do MinhoAlmeida, José BacelarBarbosa, ManuelBarthe, GillesPacheco, HugoPereira, VitorPortela, Bernardo20182018-01-01T00:00:00Zconference paperinfo:eu-repo/semantics/publishedVersionapplication/pdfhttp://hdl.handle.net/1822/66492eng97815386668071940-143410.1109/CSF.2018.00017info:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2024-05-11T05:42:29Zoai:repositorium.sdum.uminho.pt:1822/66492Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-28T15:27:27.090888Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
title hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
spellingShingle hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
Almeida, José Bacelar
Domain-specific-languages
Multi-party-computation
Privacy
Secure-compilation
Security
Semantics
Type-systems
Verification
Science & Technology
title_short hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
title_full hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
title_fullStr hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
title_full_unstemmed hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
title_sort hnforcing ideal-world leakage bounds in real-world secret sharing MPC frameworks
author Almeida, José Bacelar
author_facet Almeida, José Bacelar
Barbosa, Manuel
Barthe, Gilles
Pacheco, Hugo
Pereira, Vitor
Portela, Bernardo
author_role author
author2 Barbosa, Manuel
Barthe, Gilles
Pacheco, Hugo
Pereira, Vitor
Portela, Bernardo
author2_role author
author
author
author
author
dc.contributor.none.fl_str_mv Universidade do Minho
dc.contributor.author.fl_str_mv Almeida, José Bacelar
Barbosa, Manuel
Barthe, Gilles
Pacheco, Hugo
Pereira, Vitor
Portela, Bernardo
dc.subject.por.fl_str_mv Domain-specific-languages
Multi-party-computation
Privacy
Secure-compilation
Security
Semantics
Type-systems
Verification
Science & Technology
topic Domain-specific-languages
Multi-party-computation
Privacy
Secure-compilation
Security
Semantics
Type-systems
Verification
Science & Technology
description We give a language-based security treatment of domain-specific languages and compilers for secure multi-party computation, a cryptographic paradigm that. enables collaborative computation over encrypted data. Computations are specified in a core imperative language, as if they were intended to be executed by a trusted-third party, and formally verified against. an information-flow policy modelling (an upper bound to) their leakage. This allows non-experts to assess the impact of performance driven authorized disclosure of intermediate values.Specifications are then compiled to multi-party protocols. We formalize protocol security using (distributed) probabilistic information-flow and prove security-preserving compilation: protocols only leak what. is allowed by the source policy. The proof exploits a natural but previously missing correspondence between simulation-based cryptographic proofs and (composable) probabilistic non-interference.Finally, we extend our framework to justify leakage cancelling, a domain-specific optimization that allows to first write an efficient specification that fails to meet the allowed leakage upper-bound, and then apply a probabilistic preprocessing that brings leakage to the acceptable range.
publishDate 2018
dc.date.none.fl_str_mv 2018
2018-01-01T00:00:00Z
dc.type.driver.fl_str_mv conference paper
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/1822/66492
url http://hdl.handle.net/1822/66492
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 9781538666807
1940-1434
10.1109/CSF.2018.00017
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv IEEE
publisher.none.fl_str_mv IEEE
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833595326074716160

Registros relacionados