A Fast and Verified Software Stack for Secure Function Evaluation

Almeida, José Bacelar; Barbosa, Manuel; Barthe, Gilles; Dupressoir, François; Grégoire, Benjamin; Laporte, Vincent; Pereira, Vitor M.

doi:10.1145/3133956.3134017

Cited by 20 publications

(69 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We implement the online phase in FRESCO [22], an active open-source Java framework for MPC with a strong track record [14], [40]. We chose FRESCO as it offers an accessible API-based approach for writing MPC applications.…”

Section: Methodsmentioning

confidence: 99%

New Primitives for Actively-Secure MPC over Rings with Applications to Private Machine Learning

Damgård

Escudero

Frederiksen

et al. 2019

2019 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

At CRYPTO 2018 Cramer et al. presented SPDZ 2 k , a new secret-sharing based protocol for actively secure multi-party computation against a dishonest majority, that works over rings instead of fields. Their protocol uses slightly more communication than competitive schemes working over fields. However, their approach allows for arithmetic to be carried out using native 32 or 64-bit CPU operations rather than modulo a large prime. The authors thus conjectured that the increased communication would be more than made up for by the increased efficiency of implementations.In this work we answer their conjecture in the affirmative. We do so by implementing their scheme, and designing and implementing new efficient protocols for equality test, comparison, and truncation over rings. We further show that these operations find application in the machine learning domain, and indeed significantly outperform their field-based competitors. In particular, we implement and benchmark oblivious algorithms for decision tree and support vector machine (SVM) evaluation.

show abstract

Section: Methodsmentioning

confidence: 99%

New Primitives for Actively-Secure MPC over Rings with Applications to Private Machine Learning

Damgård

Escudero

Frederiksen

et al. 2019

2019 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

show abstract

“…Verified MPC toolchain. Almeida et al [4] build a verified toolchain consisting of (a) a verified circuit compiler from (a subset of) C to boolean circuits, and (b) a verified implementation of Yao's [64] garbled circuits protocol for 2-party MPC. They use CompCert [36] for the former, and EasyCrypt [11] for the latter.…”

Section: Related Workmentioning

confidence: 99%

“…To prove the interpreter behaves correctly, we prove, in F , that it correctly implements the formalized distributed semantics. The circuit library and the GMW implementation are not verified-while it is possible to verify the circuit library [4], verifying a GMW implementation is an open research question. But the stage is set for verified versions to be plugged into the Wys codebase.…”

Section: Introductionmentioning

confidence: 99%

$$\textsc {Wys}^\star $$ : A DSL for Verified Secure Multi-party Computations

Rastogi

Swamy

Hicks

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Secure multi-party computation (MPC) enables a set of mutually distrusting parties to cooperatively compute, using a cryptographic protocol, a function over their private data. This paper presents Wys , a new domain-specific language (DSL) for writing mixed-mode MPCs. Wys is an embedded DSL hosted in F , a verification-oriented, effectful programming language. Wys source programs are essentially F programs written in a custom MPC effect, meaning that the programmers can use F 's logic to verify the correctness and security properties of their programs. To reason about the distributed runtime semantics of these programs, we formalize a deep embedding of Wys , also in F . We mechanize the necessary metatheory to prove that the properties verified for the Wys source programs carry over to the distributed, multi-party semantics. Finally, we use F 's extraction to extract an interpreter that we have proved matches this semantics, yielding a partially verified implementation. Wys is the first DSL to enable formal verification of MPC programs. We have implemented several MPC protocols in Wys , including private set intersection, joint median, and an MPC-based card dealing application, and have verified their correctness and security.

show abstract

“…AWS KMS, a core component of the AWS cloud, lets AWS customers create and manage encryption keys, providing a consistent view of encryption/decryption operations across AWS services, and controlling their use through AWS Identity and Access Management (IAM). 1 The widespread usage of AWS KMS and the central role of the DMP justifies a high-assurance security proof, leveraging recent developments in computer-aided cryptography such as [3,4,7].…”

Section: Introductionmentioning

confidence: 99%

A Machine-Checked Proof of Security for AWS Key Management Service

Almeida

Barbosa

Barthe

et al. 2019

Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security

Self Cite

View full text Add to dashboard Cite

We present a machine-checked proof of security for the domain management protocol of Amazon Web Services' KMS (Key Management Service) a critical security service used throughout AWS and by AWS customers. Domain management is at the core of AWS KMS; it governs the top-level keys that anchor the security of encryption services at AWS. We show that the protocol securely implements an ideal distributed encryption mechanism under standard cryptographic assumptions. The proof is machine-checked in the EasyCrypt proof assistant and is the largest EasyCrypt development to date. CCS CONCEPTS • Security and privacy → Key management; Logic and verification.

show abstract

A Fast and Verified Software Stack for Secure Function Evaluation

Cited by 20 publications

References 50 publications

New Primitives for Actively-Secure MPC over Rings with Applications to Private Machine Learning

New Primitives for Actively-Secure MPC over Rings with Applications to Private Machine Learning

$$\textsc {Wys}^\star $$ : A DSL for Verified Secure Multi-party Computations

A Machine-Checked Proof of Security for AWS Key Management Service

Contact Info

Product

Resources

About