TY - GEN
T1 - Publicly Auditable MPC-As-A-Service with succinct verification and universal setup
AU - Kanjalkar, Sanket
AU - Zhang, Ye
AU - Gandlur, Shreyas
AU - Miller, Andrew
N1 - Funding Information:
1. The x-label on graph shows statement size of 2k, it is actually 2k-2 2. Acknowledgements: This work was partially supported by NSF awards #1801321 and #1943499.
Publisher Copyright:
© 2021 IEEE.
PY - 2021/9
Y1 - 2021/9
N2 - In recent years, multiparty computation as a service (MPCaaS) has gained popularity as a way to build distributed privacy-preserving systems like blockchain trusted parameter setup ceremonies, and digital asset auctions. We argue that for many such applications, we should also require that the MPC protocol is publicly auditable, meaning that anyone can check the given computation is carried out correctly-even if the server nodes carrying out the computation are all corrupt. In a nutshell, the way to make an MPC protocol auditable is to combine an underlying MPC protocol with a verifiable computing proof (in particular, a SNARK). Building a general purpose MPCaaS from existing constructions would require us to perform a costly 'trusted setup' every time we wish to run a new or modified application. To address this, we provide the first efficient construction for auditable MPC that has a one time universal setup. Despite improving the trusted setup, we match the state-of-The-Art in asymptotic performance: The nodes incur a linear computation overhead and constant round communication overhead compared to the underlying MPC, and the audit size and verification are logarithmic in the application circuit size. We also provide an implementation and benchmarks that support our asymptotic analysis in example applications. Furthermore, compared with existing auditable MPC protocols, besides offering a universal setup our construction also has a 3x smaller proof, 3x faster verification time and comparable prover time.
AB - In recent years, multiparty computation as a service (MPCaaS) has gained popularity as a way to build distributed privacy-preserving systems like blockchain trusted parameter setup ceremonies, and digital asset auctions. We argue that for many such applications, we should also require that the MPC protocol is publicly auditable, meaning that anyone can check the given computation is carried out correctly-even if the server nodes carrying out the computation are all corrupt. In a nutshell, the way to make an MPC protocol auditable is to combine an underlying MPC protocol with a verifiable computing proof (in particular, a SNARK). Building a general purpose MPCaaS from existing constructions would require us to perform a costly 'trusted setup' every time we wish to run a new or modified application. To address this, we provide the first efficient construction for auditable MPC that has a one time universal setup. Despite improving the trusted setup, we match the state-of-The-Art in asymptotic performance: The nodes incur a linear computation overhead and constant round communication overhead compared to the underlying MPC, and the audit size and verification are logarithmic in the application circuit size. We also provide an implementation and benchmarks that support our asymptotic analysis in example applications. Furthermore, compared with existing auditable MPC protocols, besides offering a universal setup our construction also has a 3x smaller proof, 3x faster verification time and comparable prover time.
KW - Auditable MPC
KW - Blockchain
KW - Digital Auctions
KW - Holographic Proofs
KW - MPC
KW - Marlin
KW - Multi party computation
KW - Polynomial Commitments
KW - Zero knowledge proofs
KW - zkSNARK
UR - http://www.scopus.com/inward/record.url?scp=85119075446&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85119075446&partnerID=8YFLogxK
U2 - 10.1109/EuroSPW54576.2021.00048
DO - 10.1109/EuroSPW54576.2021.00048
M3 - Conference contribution
AN - SCOPUS:85119075446
T3 - Proceedings - 2021 IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2021
SP - 386
EP - 411
BT - Proceedings - 2021 IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2021
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 6th IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2021
Y2 - 6 September 2021 through 10 September 2021
ER -