Paper 2024/560

Two-Party Decision Tree Training from Updatable Order-Revealing Encryption

Robin Berger, Karlsruhe Institute of Technology
Felix Dörre, Karlsruhe Institute of Technology
Alexander Koch, CNRS and IRIF, Université Paris Cité
Abstract

Running machine learning algorithms on encrypted data is a way forward to marry functionality needs common in industry with the important concerns for privacy when working with potentially sensitive data. While there is already a growing field on this topic and a variety of protocols, mostly employing fully homomorphic encryption or performing secure multiparty computation (MPC), we are the first to propose a protocol that makes use of a specialized encryption scheme that allows to do secure comparisons on ciphertexts and update these ciphertexts to be encryptions of the same plaintexts but under a new key. We call this notion Updatable Order-Revealing Encryption (uORE) and provide a secure construction using a key-homomorphic pseudorandom function. In a second step, we use this scheme to construct an efficient three-round protocol between two parties to compute a decision tree (or forest) on labeled data provided by both parties. The protocol is in the passively-secure setting and has some leakage on the data that arises from the comparison function on the ciphertexts. We motivate how our protocol can be compiled into an actively-secure protocol with less leakage using secure enclaves, in a graceful degradation manner, e.g. falling back to the uORE leakage, if the enclave becomes fully transparent. We also analyze the leakage of this approach, giving an upper bound on the leaked information. Analyzing the performance of our protocol shows that this approach allows us to be much more efficient (especially w.r.t. the number of rounds) than current MPC-based approaches, hence allowing for an interesting trade-off between security and performance.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Minor revision. Applied Cryptography and Network Security 2024
DOI
10.1007/978-3-031-54770-6_12
Keywords
Secure ComputationOrder-Revealing EncryptionDecision Tree LearningEnclavesPrivacy-Preserving Machine Learning
Contact author(s)
robin berger @ kit edu
felix doerre @ kit edu
alexander koch @ irif fr
History
2024-04-12: approved
2024-04-11: received
See all versions
Short URL
https://ia.cr/2024/560
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/560,
      author = {Robin Berger and Felix Dörre and Alexander Koch},
      title = {Two-Party Decision Tree Training from Updatable Order-Revealing Encryption},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/560},
      year = {2024},
      doi = {10.1007/978-3-031-54770-6_12},
      url = {https://eprint.iacr.org/2024/560}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.