|
 ABSTRACT
The round complexity of interactive protocols is one of their most important complexity measures. In this work we study the exact round complexity of two basic secure computation tasks: Verifiable Secret Sharing (VSS) and Secure Multicast.VSS allows a dealer to share a secret among several players in a way that would later allow a unique reconstruction of the secret. It is a well-studied primitive, which is used as a building block in virtually every general protocol for secure multi-party computation. Secure multicast is perhaps the simplest non-trivial instance of a secure computation. It allows a dealer to securely distribute an identical message to all players in a prescribed subset M. Both types of protocols are parameterized by the number of players, n, and a security threshold, t, which bounds the total number of malicious players (possibly including the dealer).We focus on a standard setting of perfect information-theoretic security, where all players have access to secure point-to-point channels and a common broadcast medium. For both types of primitives we prove, using related techniques, tight tradeoffs between the round complexity and the achievable security threshold. Specifically, for the VSS problem we show:2-round VSS is possible iff n>4t, where the ``if'' direction is realized by an efficient protocol.3-round VSS is possible iff n>3t, where the ``if'' direction is realized by an inefficient protocol.4-round efficient VSS is possible if n>3t.For the secure multicast problem we show:2-round secure multicast is (efficiently) possible iff
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
 |
1
|
|
| |
2
|
|
| |
3
|
D. Beaver. Minimal-Latency Secure Function Evaluation. In Eurocrypt '00 , pp. 335-350. LNCS No. 1807.
|
| |
4
|
D. Beaver, J. Feigenbaum, J. Kilian, and P. Rogaway. Locally random reductions: Improvements and applications. Journal of Cryptology, 10(1):17-36, 1997.
|
| |
5
|
D. Beaver and S. Haber. Cryptographic protocols provably secure against dynamic adversaries. In Eurocrypt '92, pp. 307-323, 1992. LNCS No. 658.
|
| |
6
|
D. Beaver , S. Micali , P. Rogaway, The round complexity of secure protocols, Proceedings of the twenty-second annual ACM symposium on Theory of computing, p.503-513, May 13-17, 1990, Baltimore, Maryland, United States
[doi> 10.1145/100216.100287]
|
| |
7
|
Michael Ben-Or , Shafi Goldwasser , Avi Wigderson, Completeness theorems for non-cryptographic fault-tolerant distributed computation, Proceedings of the twentieth annual ACM symposium on Theory of computing, p.1-10, May 02-04, 1988, Chicago, Illinois, United States
[doi> 10.1145/62212.62213]
|
| |
8
|
|
| |
9
|
|
| |
10
|
G. R. Blakley. Safeguarding cryptographic keys. In Proc. AFIPS 1979 National Computer Conference, pp. 313-317.
|
| |
11
|
|
| |
12
|
|
| |
13
|
R. Canetti. Studies in Secure Multiparty Computation. PhD thesis, Weizmann Institute of Science, 1995.
|
| |
14
|
R. Canetti. Security and composition of multiparty cryptographic protocols. Journal of Cryptology, 13(1):143-202, 2000.
|
| |
15
|
Ran Canetti , Uri Feige , Oded Goldreich , Moni Naor, Adaptively secure multi-party computation, Proceedings of the twenty-eighth annual ACM symposium on Theory of computing, p.639-648, May 22-24, 1996, Philadelphia, Pennsylvania, United States
[doi> 10.1145/237814.238015]
|
| |
16
|
R. Canetti, G. Itkis, J. Garay, D. Micciancio, M. Naor, and B. Pinkas. Issues in Secure Multicast . In INFOCOM'99.
|
| |
17
|
David Chaum , Claude Crépeau , Ivan Damgard, Multiparty unconditionally secure protocols, Proceedings of the twentieth annual ACM symposium on Theory of computing, p.11-19, May 02-04, 1988, Chicago, Illinois, United States
[doi> 10.1145/62212.62214]
|
| |
18
|
B. Chor, S. Goldwasser, S. Micali, and B. Awerbuch. Veriffiable Secret Sharing and Achieving Simultaneity in the Presence of Faults. In Proceeding 26th Annual Symposium on the Foundations of Computer Science, pp. 383-395.
|
| |
19
|
Ronald Cramer , Ivan Damgård , Stefan Dziembowski, On the complexity of verifiable secret sharing and multiparty computation, Proceedings of the thirty-second annual ACM symposium on Theory of computing, p.325-334, May 21-23, 2000, Portland, Oregon, United States
[doi> 10.1145/335305.335343]
|
| |
20
|
R. Cramer, I. Damgard, S. Dziembowski, M. Hirt, and T. Rabin. Efficient multiparty computations with dishonest minority. InEurocrypt '99, pp. 311-326. LNCS No. 1592.
|
| |
21
|
R. Cramer, I. Damgard, and U. Maurer. General Secure Multiparty Computation from any Linear Secret Sharing Scheme. In Eurocrypt '00 , pp. 316-334. LNCS No. 1807.
|
| |
22
|
D. Dolev, C. Dwork, O. Waarts, and M. Yung. Perfectly Secure Message Transmission. In Proc. of 31st FOCS, pp. 36-45, 1990.
|
| |
23
|
|
| |
24
|
|
| |
25
|
Uri Feige , Joe Killian , Moni Naor, A minimal model for secure computation (extended abstract), Proceedings of the twenty-sixth annual ACM symposium on Theory of computing, p.554-563, May 23-25, 1994, Montreal, Quebec, Canada
[doi> 10.1145/195058.195408]
|
| |
26
|
P. Feldman. A Practical Scheme for Non-Interactive Veriffiable Secret Sharing. In Proc. 28th FOCS, pp. 427-437.
|
| |
27
|
|
| |
28
|
M. Franklin and R. Wright. Secure communication in minimal connectivity models. Journal of Cryptology, 13(1):9-30, 2000.
|
| |
29
|
O. Goldreich. Secure multi-party computation (working draft). www.wisdom.weizmann.ac.il/.oded/pp.html, 2000.
|
| |
30
|
|
| |
31
|
|
| |
32
|
|
| |
33
|
|
| |
34
|
M. Ito, A. Saito, and T. Nishizeki. Secret sharing schemes realizing general access structures. In Proc. IEEE Globecom 87, pp. 99-102, 1987.
|
| |
35
|
|
| |
36
|
|
| |
37
|
|
| |
38
|
|
| |
39
|
|
| |
40
|
|
| |
41
|
|
| |
42
|
|
| |
43
|
|
| |
44
|
A. C-C. Yao. How to generate and exchange secrets. Proc. 27th FOCS, pp. 162-167, 1986.
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf
C.2