Paper 2011/157

Secure Computation on the Web: Computing without Simultaneous Interaction

Shai Halevi, Yehuda Lindell, and Benny Pinkas

Abstract

Secure computation enables mutually suspicious parties to compute a joint function of their private inputs while providing strong security guarantees. Amongst other things, even if some of the participants are corrupted the output is still correctly computed, and parties do not learn anything about each other's inputs except for that output. Despite the power and generality of secure computation, its use in practice seems limited. We argue that one of the reasons for this is that the model of computation on the web is not suited to the type of communication patterns needed for secure computation. Specifically, in most web scenarios clients independently connect to servers, interact with them and then leave. This rules out the use of secure computation protocols that require that \emph{all} participants interact simultaneously. In this paper, we initiate the study of secure computation in a client-server model where each client connects to the server \emph{once} and interacts with it, without any other client necessarily being connected at the same time. We point out some inherent limitations in this model and present definitions that capture what can be done. We also present a general feasibility result and several truly practical protocols for a number of functions of interest. All our protocols are based on standard assumptions, and we achieve security both in the semi-honest and malicious adversary models.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Unknown where it was published
Keywords
SFEWeb-based computing
Contact author(s)
shaih @ alum mit edu
History
2011-04-27: last of 4 revisions
2011-03-30: received
See all versions
Short URL
https://ia.cr/2011/157
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2011/157,
      author = {Shai Halevi and Yehuda Lindell and Benny Pinkas},
      title = {Secure Computation on the Web: Computing without Simultaneous Interaction},
      howpublished = {Cryptology ePrint Archive, Paper 2011/157},
      year = {2011},
      note = {\url{https://eprint.iacr.org/2011/157}},
      url = {https://eprint.iacr.org/2011/157}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.