Outsourcing Private RAM Computation Daniel Wichs Northeastern University with: Craig Gentry, Shai Halevi, Mariana Raykova.

Slides:



Advertisements
Similar presentations
Constant-Round Private Database Queries Nenad Dedic and Payman Mohassel Boston UniversityUC Davis.
Advertisements

1 Cryptography: on the Hope for Privacy in a Digital World Omer Reingold VVeizmann and Harvard CRCS.
Security Seminar, Fall 2003 On the (Im)possibility of Obfuscating Programs Boaz Barak, Oded Goldreich, Russel Impagliazzo, Steven Rudich, Amit Sahai, Salil.
Computational Privacy. Overview Goal: Allow n-private computation of arbitrary funcs. –Impossible in information-theoretic setting Computational setting:
Secure Evaluation of Multivariate Polynomials
+ Accelerating Fully Homomorphic Encryption on GPUs Wei Wang, Yin Hu, Lianmu Chen, Xinming Huang, Berk Sunar ECE Dept., Worcester Polytechnic Institute.
Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,
Vote privacy: models and cryptographic underpinnings Bogdan Warinschi University of Bristol 1.
REDUCTION-RESILIENT CRYPTOGRAPHY: PRIMITIVES THAT RESIST REDUCTIONS FROM ALL STANDARD ASSUMPTIONS Daniel Wichs (Charles River Crypto Day ‘12)
CS555Topic 241 Cryptography CS 555 Topic 24: Secure Function Evaluation.
How to Delegate Computations: The Power of No-Signaling Proofs Ron Rothblum Weizmann Institute Joint work with Yael Kalai and Ran Raz.
Garbled RAM, Revisited Daniel Wichs (Northeastern University) Joint work with: Craig Gentry, Shai Halevi, Seteve Lu, Rafail Ostrovsky, Mariana Raykova.
NON-MALLEABLE EXTRACTORS AND SYMMETRIC KEY CRYPTOGRAPHY FROM WEAK SECRETS Yevgeniy Dodis and Daniel Wichs (NYU) STOC 2009.
Efficient Zero-Knowledge Proof Systems Jens Groth University College London FOSAD 2014.
Protecting Circuits from Leakage the computationally bounded and noisy cases Sebastian Faust Eurocrypt 2010, Nice Joint work with KU Leuven Tal Rabin Leo.
New Advances in Garbling Circuits Based on joint works with Yuval Ishai Eyal Kushilevitz Brent Waters University of TexasTechnion Benny Applebaum Tel Aviv.
Yan Huang, Jonathan Katz, David Evans University of Maryland, University of Virginia Efficient Secure Two-Party Computation Using Symmetric Cut-and-Choose.
Secure Efficient Multiparty Computing of Multivariate Polynomials and Applications Dana Dachman-Soled, Tal Malkin, Mariana Raykova, Moti Yung.
On the Implausibility of Differing-Inputs Obfuscation (and Extractable Witness Encryption) with Auxiliary Input Daniel Wichs (Northeastern U) with: Sanjam.
On Everlasting Security in the Hybrid Bounded Storage Model Danny Harnik Moni Naor.
Two Round MPC via Multi-Key FHE Daniel Wichs (Northeastern University) Joint work with Pratyay Mukherjee.
Simons Institute, Cryptography Boot Camp
Black-Box Garbled RAM Sanjam Garg UC Berkeley Based on join works with
Homomorphic Encryption: WHAT, WHY, and HOW
Shai Halevi – IBM Research PKC 2014 Multilinear Maps and Obfuscation A Survey of Recent Results.
Multi-Client Non-Interactive Verifiable Computation Seung Geol Choi (Columbia U.) Jonathan Katz (U. Maryland) Ranjit Kumaresan (Technion) Carlos Cid (Royal.
Efficient and Robust Private Set Intersection and multiparty multivariate polynomials Dana Dachman-Soled 1, Tal Malkin 1, Mariana Raykova 1, Moti Yung.
Technology Panel What technical tools are in our disposal for achieving privacy Privacy: Technology + Policy –Technology can Implement Policy –Without.
13. Oktober 2010 | Dr.Marc Fischlin | Kryptosicherheit | 1 Rate-Limited Secure Function Evaluation 21. Public Key Cryptography, March 1 st, 2013 Özgür.
Secure two-party computation: a visual way by Paolo D’Arco and Roberto De Prisco.
Password Mistyping in Two-Factor Authenticated Key Exchange Vladimir KolesnikovCharles Rackoff Bell LabsU. Toronto ICALP 2008.
Making Secure Computation Practical IBM: Craig Gentry, Shai Halevi, Charanjit Jutla, Hugo Krawczyk, Tal Rabin, NYU: Victor Shoup SRI: Mariana Raykova Stanford:
On the Communication Complexity of SFE with Long Output Daniel Wichs (Northeastern) joint work with Pavel Hubáček.
Succinct Functional Encryption: d Reusable Garbled Circuits and Beyond
1 Information Security – Theory vs. Reality , Winter Lecture 10: Garbled circuits and obfuscation Eran Tromer Slides credit: Boaz.
Non-Interactive Verifiable Computing August 5, 2009 Bryan Parno Carnegie Mellon University Rosario Gennaro, Craig Gentry IBM Research.
PROTECTING CIRCUITS from LEAKAGE IBM T. J. Watson Vinod Vaikuntanathan the computationally bounded and noisy cases Joint with S. Faust (KU Leuven), L.
Verifiable Cloud Computing KANG Yu. Verifiable Computation Weak clients Computationally powerful cloud Goal: – Verify the computing result.
FHE Introduction Nigel Smart Avoncrypt 2015.
China Summer School on Lattices and Cryptography Craig Gentry and Shai Halevi June 4, 2014 Homomorphic Encryption over Polynomial Rings.
Obfuscation of Probabilistic Circuits Ran Canetti, Huijia Lin Stefano Tessaro, Vinod Vaikuntanathan.
Strong Conditional Oblivious Transfer and Computing on Intervals Vladimir Kolesnikov Joint work with Ian F. Blake University of Toronto.
13. Oktober 2010 | Dr.Marc Fischlin | Kryptosicherheit | 1 Security-Preserving Operations on Big Data Algorithms for Big Data, Frankfurt, September, 2014.
Based on work with: Sergey Gorbunov and Vinod Vaikuntanathan Homomorphic Commitments & Signatures Daniel Wichs Northeastern University.
Introduction to Obfuscation Mohammad Mahmoody University of Virginia *some slides borrowed from abhi shelat.
Onion ORAM: A Constant Bandwidth Blowup ORAM
China Summer School on Lattices and Cryptography Craig Gentry and Shai Halevi June 3, 2014 Somewhat Homomorphic Encryption.
Verifiable Outsourcing of Computation Ron Rothblum.
Verifiable Threshold Secret Sharing and Full Fair Secure Two-party Computation YE Jian-wei March 7, 2009.
The Many Faces of Garbled Circuits MIT Vinod Vaikuntanathan.
Cryptography Lecture 6 Arpita Patra. Quick Recall and Today’s Roadmap >> MAC for fixed-length messages >> Domain Extension for MAC >> Authenticated Encryption:
Multi-Party Computation r n parties: P 1,…,P n  P i has input s i  Parties want to compute f(s 1,…,s n ) together  P i doesn’t want any information.
Bounded key-dependent message security
Lower Bounds on Assumptions behind Indistinguishability Obfuscation
Carmit Hazay (Bar-Ilan University, Israel)
Adaptively Secure Multi-Party Computation from LWE (via Equivocal FHE)
iO with Exponential Efficiency
Laconic Oblivious Transfer and its Applications
Modern symmetric-key Encryption
Semantic Security and Indistinguishability in the Quantum World
Verifiable Oblivious Storage
Secure Multiparty RAM Computation in Constant Rounds
Cryptography for Quantum Computers
Making Secure Computation Practical
Rishab Goyal Venkata Koppula Brent Waters
Fiat-Shamir for Highly Sound Protocols is Instantiable
Two-Round Adaptively Secure Protocols from Standard Assumptions
Helen: Maliciously Secure Coopetitive Learning for Linear Models
Identity Based Encryption from the Diffie-Hellman Assumption
CRYP-F02 Actively Secure 1-out-of-N OT Extension with Application to Private Set Intersection Peter Scholl (University of Bristol) Michele Orrù (ENS Paris)
Presentation transcript:

Outsourcing Private RAM Computation Daniel Wichs Northeastern University with: Craig Gentry, Shai Halevi, Mariana Raykova

Problem Overview Client Server …

Private outsourcing is possible using Fully Homomorphic Encryption (FHE). [RAD78,Gen09,…] But FHE works over circuits rather than RAM programs. I’m very efficient! Use FHE! Done?

Circuits vs. RAM

Goals Client Server …

Goals Client Server …

Goals Non-interactive solution: “reusable garbled RAM”. Client Server

Garbled Computation Garbled Circuits [Yao82] Reusable Garbled Circuits [GKPVZ 13a,b] Can garble many inputs per circuit. Efficiently outsource circuit comp. Extension to TM. Garbled RAM [LO13, GHLORW14] Reusable Garbled RAM This Talk! Can garble many inputs per program. Efficiently outsource RAM comp.

Main Results 1-time Garbled RAM Reusable Garbled RAM+ Reusable Garbled Circuits New security/efficiency requirements. Instantiate with iO or Functional Rnc.

Main Result 1-time Garbled RAM Reusable Garbled RAM+ Reusable Garbled Circuits Stronger security requirements. Instantiate with “strong diO” (heuristic obf) with persistent data

Without Persistent Data

1-Time Garbled RAM Definition Client Server secret: k without persistent data View can be simulated given y

Reusable Garbled RAM Definition Client Server secret: k without persistent data

Construct reusable garbled RAM by combining: – one-time garbled RAM (GProg1, GInput1, GEval1) – reusable garbled circuits

Construct reusable garbled RAM by combining: – one-time garbled RAM (GProg1, GInput1, GEval1) – reusable garbled circuits Problem: In reusable garbled circuits of [GKPVZ13], size of garbled input always exceeds size of circuit output. Unfortunately: This is inherent. Cannot do better if want simulation security.

Construct reusable garbled RAM by combining: – one-time garbled RAM (GProg1, GInput1, GEval1) – reusable garbled circuits Solution: – Show that we do not need simulation-security for reusable garbled-circuits. A weaker notion suffices. – Construct reusable garbled-circuits with weaker security notion but better efficiency needed in construction.

Distributional Indistinguishability

With Persistent Memory

1-time Garbled RAM Definition Client Server secret: k with persistent data

Reusable Garbled RAM Definition Client Server secret: k with persistent data

Correlated Distributional Indistinguishability

Theorem: Get reusable garbled RAM where: – Garble, evaluate program: O(RAM run-time P). – Garble input = O( input + output size). assuming “ind. obfuscation” + stat. sound NIZK. Theorem: Get reusable garbled RAM with persistent memory where: – garble data = O( data size) – garble program = O( description size P ) – garble input = O( input + output size) – evaluate = O( RAM run-time P) assuming “strong differing-inputs obfuscation” (heuristic).

Outsourcing via Reusable G-RAM Client Server

Client Server Outsourcing via Reusable G-RAM

Don’t turn me into a circuit! Thank You!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.