Configurable security protocols for multi-party data analysis with malicious participants

21st International Conference on Data Engineering (ICDE'05) Pub Date : 2005-04-05 DOI:10.1109/ICDE.2005.37

B. Malin, E. Airoldi, Samuel Edoho-Eket, Yiheng Li

{"title":"Configurable security protocols for multi-party data analysis with malicious participants","authors":"B. Malin, E. Airoldi, Samuel Edoho-Eket, Yiheng Li","doi":"10.1109/ICDE.2005.37","DOIUrl":null,"url":null,"abstract":"Standard multi-party computation models assume semi-honest behavior, where the majority of participants implement protocols according to specification, an assumption not always plausible. In this paper we introduce a multi-party protocol for collaborative data analysis when participants are malicious and fail to follow specification. The protocol incorporates a semi-trusted third party, which analyzes encrypted data and provides honest responses that only intended recipients can successfully decrypt. The protocol incorporates data confidentiality by enabling participants to receive encrypted responses tailored to their own encrypted data submissions without revealing plaintext to other participants, including the third party. As opposed to previous models, trust need only be placed on a single participant with no data at stake. Additionally, the proposed protocol is configurable in a way that security features are controlled by independent subprotocols. Various combinations of subprotocols allow for a flexible security system, appropriate for a number of distributed data applications, such as secure list comparison.","PeriodicalId":297231,"journal":{"name":"21st International Conference on Data Engineering (ICDE'05)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-04-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"21st International Conference on Data Engineering (ICDE'05)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDE.2005.37","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

Abstract

Standard multi-party computation models assume semi-honest behavior, where the majority of participants implement protocols according to specification, an assumption not always plausible. In this paper we introduce a multi-party protocol for collaborative data analysis when participants are malicious and fail to follow specification. The protocol incorporates a semi-trusted third party, which analyzes encrypted data and provides honest responses that only intended recipients can successfully decrypt. The protocol incorporates data confidentiality by enabling participants to receive encrypted responses tailored to their own encrypted data submissions without revealing plaintext to other participants, including the third party. As opposed to previous models, trust need only be placed on a single participant with no data at stake. Additionally, the proposed protocol is configurable in a way that security features are controlled by independent subprotocols. Various combinations of subprotocols allow for a flexible security system, appropriate for a number of distributed data applications, such as secure list comparison.

查看原文本刊更多论文

针对恶意参与者的多方数据分析的可配置安全协议

标准的多方计算模型假定半诚实的行为，其中大多数参与者根据规范实现协议，这一假设并不总是可信的。本文介绍了一种针对恶意参与者不遵守规范情况下的协同数据分析的多方协议。该协议包含一个半可信的第三方，该第三方分析加密数据并提供只有预期接收方才能成功解密的诚实响应。该协议结合了数据保密性，使参与者能够接收针对自己加密数据提交的加密响应，而不会向其他参与者(包括第三方)泄露明文。与以前的模型相反，信任只需要放在没有数据风险的单个参与者身上。此外，提议的协议是可配置的，安全特性由独立的子协议控制。子协议的各种组合允许灵活的安全系统，适用于许多分布式数据应用程序，例如安全列表比较。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

21st International Conference on Data Engineering (ICDE'05)

自引率

0.00%

发文量