Projects per year
Abstract
The area of multi-party computation (MPC) has recently increased in popularity and number of use cases.
At the current state of the art, Ciminion, a Farfalle-like cryptographic function, achieves the best performance in MPC applications involving symmetric primitives.
However, it has a critical weakness. Its security highly relies on the independence of its subkeys, which is achieved by using an expensive key schedule. Many MPC use cases involving symmetric pseudo-random functions (PRFs) rely on secretly shared symmetric keys, and hence the expensive key schedule must also be computed in MPC. As a result, Ciminion's performance is significantly reduced in these use cases.
In this paper we solve this problem. Following the approach introduced by Ciminion's designers, we present a novel primitive in symmetric cryptography called Megafono. Megafono is a keyed extendable PRF, expanding a fixed-length input to an arbitrary-length output. Similar to Farfalle, an initial keyed permutation is applied to the input, followed by an expansion layer, involving the parallel application of keyed ciphers. The main novelty regards the expansion of the intermediate/internal state for "free", by appending the sum of the internal states of the first permutation to its output. The combination of this and other modifications, together with the impossibility for the attacker to have access to the input state of the expansion layer, make Megafono very efficient in the target application.
As a concrete example, we present the PRF Hydra, an instance of Megafono based on the Hades strategy and on generalized versions of the Lai--Massey scheme. Based on an extensive security analysis, we implement Hydra in an MPC framework. The results show that it outperforms all MPC-friendly schemes currently published in the literature.
At the current state of the art, Ciminion, a Farfalle-like cryptographic function, achieves the best performance in MPC applications involving symmetric primitives.
However, it has a critical weakness. Its security highly relies on the independence of its subkeys, which is achieved by using an expensive key schedule. Many MPC use cases involving symmetric pseudo-random functions (PRFs) rely on secretly shared symmetric keys, and hence the expensive key schedule must also be computed in MPC. As a result, Ciminion's performance is significantly reduced in these use cases.
In this paper we solve this problem. Following the approach introduced by Ciminion's designers, we present a novel primitive in symmetric cryptography called Megafono. Megafono is a keyed extendable PRF, expanding a fixed-length input to an arbitrary-length output. Similar to Farfalle, an initial keyed permutation is applied to the input, followed by an expansion layer, involving the parallel application of keyed ciphers. The main novelty regards the expansion of the intermediate/internal state for "free", by appending the sum of the internal states of the first permutation to its output. The combination of this and other modifications, together with the impossibility for the attacker to have access to the input state of the expansion layer, make Megafono very efficient in the target application.
As a concrete example, we present the PRF Hydra, an instance of Megafono based on the Hades strategy and on generalized versions of the Lai--Massey scheme. Based on an extensive security analysis, we implement Hydra in an MPC framework. The results show that it outperforms all MPC-friendly schemes currently published in the literature.
Original language | English |
---|---|
Title of host publication | EUROCRYPT 2023 |
Publication status | Published - 2023 |
Event | 42nd Annual International Conference on the Theory and Applications of Cryptographic Techniques: EUROCRYPT 2023 - Lyon, France Duration: 23 Apr 2023 → 27 Apr 2023 Conference number: 42 https://eurocrypt.iacr.org/2023/ |
Conference
Conference | 42nd Annual International Conference on the Theory and Applications of Cryptographic Techniques |
---|---|
Abbreviated title | EUROCRYPT 2023 |
Country/Territory | France |
City | Lyon |
Period | 23/04/23 → 27/04/23 |
Internet address |
Fingerprint
Dive into the research topics of 'From Farfalle to Megafono via Ciminion: The PRF Hydra for MPC Applications'. Together they form a unique fingerprint.Projects
- 1 Finished
-
DDAI - Explainable, Verifiable and Privacy-Preserving Data-Driven AI
Rechberger, C. (Co-Investigator (CoI)), Lindstaedt, S. (Co-Investigator (CoI)), Trügler, A. (Co-Investigator (CoI)), Pammer-Schindler, V. (Co-Investigator (CoI)), Kern, R. (Co-Investigator (CoI)) & Kowald, D. (Co-Investigator (CoI))
1/01/20 → 31/12/23
Project: Research project