Paper 2023/278
Actively Secure Half-Gates with Minimum Overhead under Duplex Networks
Abstract
Actively secure two-party computation (2PC) is one of the canonical building blocks in modern cryptography. One main goal for designing actively secure 2PC protocols is to reduce the communication overhead, compared to semi-honest 2PC protocols. In this paper, we make significant progress in closing this gap by proposing two new actively secure constant-round 2PC protocols, one with one-way communication of $2\kappa+5$ bits per AND gate (for $\kappa$-bit computational security and any statistical security) and one with total communication of $2\kappa+\rho+5$ bits per AND gate (for $\rho$-bit statistical security). In particular, our first protocol essentially matches the one-way communication of semi-honest half-gates protocol. Our optimization is achieved by three new techniques: 1. The recent compression technique by Dittmer et al. (Crypto 2022) shows that a relaxed preprocessing is sufficient for authenticated garbling that does not reveal masked wire values to the garbler. We introduce a new form of authenticated bits and propose a new technique of generating authenticated AND triples to reduce the one-way communication of preprocessing from $5\rho+1$ bits to $2$ bits per AND gate for $\rho$-bit statistical security. 2. Unfortunately, the above compressing technique is only compatible with a less compact authenticated garbled circuit of size $2\kappa+3\rho$ bits per AND gate. We designed a new authenticated garbling that does not use information theoretic MACs but rather dual execution without leakage to authenticate wire values in the circuit. This allows us to use a more compact half-gates based authenticated garbled circuit of size $2\kappa+1$ bits per AND gate, and meanwhile keep compatible with the compression technique. Our new technique can achieve one-way communication of $2\kappa+5$ bits per AND gate. 3. In terms of total communication, we notice that the communication overhead of the consistency checking method by Dittmer et al. (Crypto 2022) can be optimized by adding one-round of interaction and utilizing the Free-XOR property. This reduces the online communication from $2\kappa+3\rho$ bits down to $2\kappa+\rho+1$ bits per AND gate. Combined with our first contribution, this yields total amortized communication of $2\kappa+\rho+5$ bits.
Note: We corrected typos and standardized symbols for consistency. Additionally, we expanded the technical overview section to offer a more intuitive introduction.
Metadata
- Available format(s)
- Category
- Cryptographic protocols
- Publication info
- A major revision of an IACR publication in EUROCRYPT 2023
- DOI
- 10.1007/978-3-031-30617-4_2
- Keywords
- Actively secure 2PCGarbled circuitCorrelated oblivious transfer
- Contact author(s)
-
rickfreeman @ sjtu edu cn
wangxiao @ cs northwestern edu
yangk @ sklc org
yuyu @ yuyu hk - History
- 2024-10-29: last of 3 revisions
- 2023-02-24: received
- See all versions
- Short URL
- https://ia.cr/2023/278
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2023/278, author = {Hongrui Cui and Xiao Wang and Kang Yang and Yu Yu}, title = {Actively Secure Half-Gates with Minimum Overhead under Duplex Networks}, howpublished = {Cryptology {ePrint} Archive, Paper 2023/278}, year = {2023}, doi = {10.1007/978-3-031-30617-4_2}, url = {https://eprint.iacr.org/2023/278} }