WAIS Seminar:Secure Multi-Party Computation for the Masses

Speaker(s): Prof. David Evans Organiser: Dr Tim Chown Time: 22/05/2014 10:45-11:45 Location: B53/4025 Abstract Secure multi-party computation enables two (or more) participants to reliably compute a function that depends on both of their inputs, without revealing those inputs to the other party or needing to trust any other party. It could enable two people who meet at a conference to learn who they known in common without revealing any of their other contacts, or allow a pharmaceutical company to determine the correct dosage of a medication based on a patient’s genome without compromising the privacy of the patient. A general solution to this problem has been known since Yao's pioneering work in the 1980s, but only recently has it become conceivable to use this approach in practice. Over the past few years, my research group has worked towards making secure computation practical for real applications. In this talk, I'll provide a brief introduction to secure computation protocols, describe the techniques we have developed to design scalable and efficient protocols, and share some recent results on improving efficiency and how secure computing applications are developed.

Language-based Techniques for Practical and Trustworthy Secure Multi-party Computations

Secure Multi-party Computation (MPC) enables a set of parties to collaboratively compute, using cryptographic protocols, a function over their private data in a way that the participants do not see each other's data, they only see the final output. Typical MPC examples include statistical computations over joint private data, private set intersection, and auctions. While these applications are examples of monolithic MPC, richer MPC applications move between "normal" (i.e., per-party local) and "secure" (i.e., joint, multi-party secure) modes repeatedly, resulting overall in mixed-mode computations. For example, we might use MPC to implement the role of the dealer in a game of mental poker -- the game will be divided into rounds of local decision-making (e.g. bidding) and joint interaction (e.g. dealing). Mixed-mode computations are also used to improve performance over monolithic secure computations. Starting with the Fairplay project, several MPC frameworks have been proposed in the last decade to help programmers write MPC applications in a high-level language, while the toolchain manages the low-level details. However, these frameworks are either not expressive enough to allow writing mixed-mode applications or lack formal specification, and reasoning capabilities, thereby diminishing the parties' trust in such tools, and the programs written using them. Furthermore, none of the frameworks provides a verified toolchain to run the MPC programs, leaving the potential of security holes that can compromise the privacy of parties' data. This dissertation presents language-based techniques to make MPC more practical and trustworthy. First, it presents the design and implementation of a new MPC Domain Specific Language, called Wysteria, for writing rich mixed-mode MPC applications. Wysteria provides several benefits over previous languages, including a conceptual single thread of control, generic support for more than two parties, high-level abstractions for secret shares, and a fully formalized type system and operational semantics. Using Wysteria, we have implemented several MPC applications, including, for the first time, a card dealing application. The dissertation next presents Wys*, an embedding of Wysteria in F*, a full-featured verification oriented programming language. Wys* improves on Wysteria along three lines: (a) It enables programmers to formally verify the correctness and security properties of their programs. As far as we know, Wys* is the first language to provide verification capabilities for MPC programs. (b) It provides a partially verified toolchain to run MPC programs, and finally (c) It enables the MPC programs to use, with no extra effort, standard language constructs from the host language F*, thereby making it more usable and scalable. Finally, the dissertation develops static analyses that help optimize monolithic MPC programs into mixed-mode MPC programs, while providing similar privacy guarantees as the monolithic versions.

Multi-Party Trust Computation in Decentralized Environments

In this paper, we describe a decentralized privacy-preserving protocol for securely casting trust ratings in distributed reputation systems. Our protocol allows n participants to cast their votes in a way that preserves the privacy of individual values against both internal and external attacks. The protocol is coupled with an extensive theoretical analysis in which we formally prove that our protocol is resistant to collusion against as many as n-1 corrupted nodes in the semi-honest model. The behavior of our protocol is tested in a real P2P network by measuring its communication delay and processing overhead. The experimental results uncover the advantages of our protocol over previous works in the area; without sacrificing security, our decentralized protocol is shown to be almost one order of magnitude faster than the previous best protocol for providing anonymous feedback.

Development of a social service in a multi-party network

Tämän pro gradu-tutkimuksen tarkoituksena oli tutkia monen toimijan sosiaalipalvelukehittäjäverkoston toimivuutta ja sen toimivuuteen vaikuttavia tekijöitä. Aihetta lähestyttiin erilaisten teoreettisten kokonaisuuksien kautta, joiden avulla saatiin luotua tutkimukselle pohja. Viitekehys tutkimukselle luotiin yhdistäen erilaisia teoreettisia aihealueita verkostoista, verkostojen johtamisesta ja palveluista. Tutkimuksessa korostuu motivaation, yhteisen, tarpeeseen perustuvan tavoitteen, sitoutumisen ja orkestroinnin merkitys verkostotoiminnassa hyvän lopputuloksen aikaansaamiseksi. Tutkimuksen empiirisessä osuudessa tehty kvalitatiivinen case-tutkimus keskittyy tiettyyn verkostoon, joka on Socomin koordinoimana kehittänyt Kaakkois-Suomen alueelle uudenlaista sosiaalipalvelua liittyen henkilökohtaiseen apuun. Verkosto on monen toimijan verkosto, jonka jäsenet edustavat erilaisia tahoja ja organisaatioita. Tutkimuksen perusteella verkosto on toiminut hyvin ja tehokkaasti ja saanut luotua toimivan sosiaalipalvelun. Verkosto tukee kirjallisuuskatsauksessa löydettyjen tekijöiden, kuten verkosto-orkestroinnin, sitoutumisen ja yhteisen päämäärän, vaikutusta verkoston toimintaan ja lopputulokseen.

Sequential incoherence in a multi-party synchronous computer mediated communication for an introductory Health Informatics course.

Online courses will play a key role in the high-volume Informatics education required to train the personnel that will be necessary to fulfill the health IT needs of the country. Online courses can cause feelings of isolation in students. A common way to address these feelings is to hold synchronous online "chats" for students. Conventional chats, however, can be confusing and impose a high extrinsic cognitive load on their participants that hinders the learning process. In this paper we present a qualitative analysis that shows the causes of this high cognitive load and our solution through the use of a moderated chat system.

dOTM: a mechanism for distributing centralized multi-party video conferencing in the cloud

One of the key factors for a given application to take advantage of cloud computing is the ability to scale in an efficient, fast and reliable way. In centralized multi-party video conferencing, dynamically scaling a running conversation is a complex problem. In this paper we propose a methodology to divide the Multipoint Control Unit (the video conferencing server) into more simple units, broadcasters. Each broadcaster receives the media from a participant, processes it and forwards it to the rest. These broadcasters can be distributed among a group of CPUs. By using this methodology, video conferencing systems can scale in a more granular way, improving the deployment.

Lightweight peer-to-peer secure multi-party VoIP protocol

Multi-party voice-over-IP (MVoIP) services provide economical and convenient group communication mechanisms for many emerging applications such as distance collaboration systems, on-line meetings and Internet gaming. In this paper, we present a light peer-to-peer (P2P) protocol to provide MVoIP services on small platforms like mobile phones and PDAs. Unlike other proposals, our solution is fully distributed and self-organizing without requiring specialized servers or IP multicast support.

Multi-party risk management helps manage cement plant construction in Thailand

Several parties (stakeholders) are involved in a construction project. The conventional Risk Management Process (RMP) manages risks from a single party perspective, which does not give adequate consideration to the needs of others. The objective of multi-party risk management is to assist decision-makers in managing risk systematically and most efficiently in a multi-party environment. Multi-party Risk Management Processes (MRMP) consist of risk identification, structuring, analysis and developing responses from all party perspectives. The MRMP has been applied to a cement plant construction project in Thailand to demonstrate its effectiveness.

Secure and Scalable Statistical Computation of Questionnaire Data in R

Collecting data via a questionnaire and analyzing them while preserving respondents’ privacy may increase the number of respondents and the truthfulness of their responses. It may also reduce the systematic differences between respondents and non-respondents. In this paper, we propose a privacy-preserving method for collecting and analyzing survey responses using secure multi-party computation (SMC). The method is secure under the semi-honest adversarial model. The proposed method computes a wide variety of statistics. Total and stratified statistical counts are computed using the secure protocols developed in this paper. Then, additional statistics, such as a contingency table, a chi-square test, an odds ratio, and logistic regression, are computed within the R statistical environment using the statistical counts as building blocks. The method was evaluated on a questionnaire dataset of 3,158 respondents sampled for a medical study and simulated questionnaire datasets of up to 50,000 respondents. The computation time for the statistical analyses linearly scales as the number of respondents increases. The results show that the method is efficient and scalable for practical use. It can also be used for other applications in which categorical data are collected.

Quantum nonlocality, cryptography and complexity

Thèse numérisée par la Division de la gestion de documents et des archives de l'Université de Montréal

Practical and Foundational Aspects of Secure Computation

Il y a des problemes qui semblent impossible a resoudre sans l'utilisation d'un tiers parti honnete. Comment est-ce que deux millionnaires peuvent savoir qui est le plus riche sans dire a l'autre la valeur de ses biens ? Que peut-on faire pour prevenir les collisions de satellites quand les trajectoires sont secretes ? Comment est-ce que les chercheurs peuvent apprendre les liens entre des medicaments et des maladies sans compromettre les droits prives du patient ? Comment est-ce qu'une organisation peut ecmpecher le gouvernement d'abuser de l'information dont il dispose en sachant que l'organisation doit n'avoir aucun acces a cette information ? Le Calcul multiparti, une branche de la cryptographie, etudie comment creer des protocoles pour realiser de telles taches sans l'utilisation d'un tiers parti honnete. Les protocoles doivent etre prives, corrects, efficaces et robustes. Un protocole est prive si un adversaire n'apprend rien de plus que ce que lui donnerait un tiers parti honnete. Un protocole est correct si un joueur honnete recoit ce que lui donnerait un tiers parti honnete. Un protocole devrait bien sur etre efficace. Etre robuste correspond au fait qu'un protocole marche meme si un petit ensemble des joueurs triche. On demontre que sous l'hypothese d'un canal de diusion simultane on peut echanger la robustesse pour la validite et le fait d'etre prive contre certains ensembles d'adversaires. Le calcul multiparti a quatre outils de base : le transfert inconscient, la mise en gage, le partage de secret et le brouillage de circuit. Les protocoles du calcul multiparti peuvent etre construits avec uniquements ces outils. On peut aussi construire les protocoles a partir d'hypoth eses calculatoires. Les protocoles construits a partir de ces outils sont souples et peuvent resister aux changements technologiques et a des ameliorations algorithmiques. Nous nous demandons si l'efficacite necessite des hypotheses de calcul. Nous demontrons que ce n'est pas le cas en construisant des protocoles efficaces a partir de ces outils de base. Cette these est constitue de quatre articles rediges en collaboration avec d'autres chercheurs. Ceci constitue la partie mature de ma recherche et sont mes contributions principales au cours de cette periode de temps. Dans le premier ouvrage presente dans cette these, nous etudions la capacite de mise en gage des canaux bruites. Nous demontrons tout d'abord une limite inferieure stricte qui implique que contrairement au transfert inconscient, il n'existe aucun protocole de taux constant pour les mises en gage de bit. Nous demontrons ensuite que, en limitant la facon dont les engagements peuvent etre ouverts, nous pouvons faire mieux et meme un taux constant dans certains cas. Ceci est fait en exploitant la notion de cover-free families . Dans le second article, nous demontrons que pour certains problemes, il existe un echange entre robustesse, la validite et le prive. Il s'effectue en utilisant le partage de secret veriable, une preuve a divulgation nulle, le concept de fantomes et une technique que nous appelons les balles et les bacs. Dans notre troisieme contribution, nous demontrons qu'un grand nombre de protocoles dans la litterature basee sur des hypotheses de calcul peuvent etre instancies a partir d'une primitive appelee Transfert Inconscient Veriable, via le concept de Transfert Inconscient Generalise. Le protocole utilise le partage de secret comme outils de base. Dans la derniere publication, nous counstruisons un protocole efficace avec un nombre constant de rondes pour le calcul a deux parties. L'efficacite du protocole derive du fait qu'on remplace le coeur d'un protocole standard par une primitive qui fonctionne plus ou moins bien mais qui est tres peu couteux. On protege le protocole contre les defauts en utilisant le concept de privacy amplication .

Fine-grained multi-phase array designs

Hybrid multiprocessor architectures which combine re-configurable computing and multiprocessors on a chip are being proposed to transcend the performance of standard multi-core parallel systems. Both fine-grained and coarse-grained parallel algorithm implementations are feasible in such hybrid frameworks. A compositional strategy for designing fine-grained multi-phase regular processor arrays to target hybrid architectures is presented in this paper. The method is based on deriving component designs using classical regular array techniques and composing the components into a unified global design. Effective designs with phase-changes and data routing at run-time are characteristics of these designs. In order to describe the data transfer between phases, the concept of communication domain is introduced so that the producer–consumer relationship arising from multi-phase computation can be treated in a unified way as a data routing phase. This technique is applied to derive new designs of multi-phase regular arrays with different dataflow between phases of computation.

Public Policy and Ageing in Northern Ireland: Identifying Levers for Change

Public Policy and Ageing in Northern Ireland: Identifying Levers for Change Judith Cross, Policy Officer with the Centre for Ageing Research Development in Ireland (CARDI)��������Introduction Identifying a broad range of key public policy initiatives as they relate to age can facilitate discussion and create new knowledge within and across government to maximise the opportunities afforded by an ageing population. This article looks at how examining the current public policy frameworks in Northern Ireland can present opportunities for those working in this field for the benefit of older people. Good policy formulation needs to be evidence-based, flexible, innovative and look beyond institutional boundaries. Bringing together architects and occupational therapists, for example, has the potential to create better and more effective ways relevant to health, housing, social services and government departments. Traditional assumptions of social policy towards older people have tended to be medically focused with an emphasis on care and dependency. This in turn has consequences for the design and delivery of services for older people. It is important that these assumptions are challenged as changes in thinking and attitudes can lead to a redefinition of ageing, resulting in policies and practices that benefit older people now and in the future. Older people, their voices and experiences, need to be central to these developments. The Centre for Ageing Research and Development in Ireland The Centre for Ageing Research and Development in Ireland (CARDI) (1) is a not for profit organisation developed by leaders from the ageing field across Ireland (North and South) including age sector focused researchers and academics, statutory and voluntary, and is co-chaired by Professor Robert Stout and Professor Davis Coakley. CARDI has been established to provide a mechanism for greater collaboration among age researchers, for wider dissemination of ageing research information and to advance a research agenda relevant to the needs of older people in Ireland, North and South. Operating at a strategic level and in an advisory capacity, CARDI�۪s work focuses on promoting research co-operation across sectors and disciplines and concentrates on influencing the strategic direction of research into older people and ageing in Ireland. It has been strategically positioned around the following four areas: Identifying and establishing ageing research priorities relevant to policy and practice in Ireland, North and South;Promoting greater collaboration and co-operation on ageing research in order to build an ageing research community in Ireland, North and South;Stimulating research in priority areas that can inform policy and practice relating to ageing and older people in Ireland, North and South;Communicating strategic research issues on ageing to raise the profile of ageing research in Ireland, North and South, and its role in informing policy and practice. Context of Ageing in Ireland Ireland �۪s population is ageing. One million people aged 60 and over now live on the island of Ireland. By 2031, it is expected that Northern Ireland�۪s percentage of older people will increase to 28% and the Republic of Ireland�۪s to 23%. The largest increase will be in the older old; the number aged 80+ is expected to triple by the same date. However while life expectancy has increased, it is not clear that life without disability and ill health has increased to the same extent. A growing number of older people may face the combined effects of a decline in physical and mental function, isolation and poverty. Policymakers, service providers and older people alike recognise the need to create a high quality of life for our ageing population. This challenge can be meet by addressing the problems relating to healthy ageing, reducing inequalities in later life and creating services that are shaped by, and appropriate for, older people. Devolution and Structures of Government in Northern Ireland The Agreement (2) reached in the Multi-Party Negotiations in Belfast 1998 established the Northern Ireland Assembly which has full legislative authority for all transferred matters. The majority of social and economic public policy such as; agriculture, arts, education, health, environment and planning is determined by the Northern Ireland Assembly at Stormont. There are 11 Government Departments covering the main areas of responsibility with 108 elected Members of the Legislative Assembly (MLA�۪s). The powers of the Northern Ireland Assembly do not cover ��� reserved�۪ matters or ��� excepted�۪ matters . These are the responsibility of Westminster and include issues such as, tax, social security, policing, justice, defence, immigration and foreign affairs. Northern Ireland has 18 elected Members of Parliament (MP�۪s) to the House of Commons. Public Policy Context in Northern Ireland The economic, social and political consequence of an ageing population is a challenge for policy makers across government. Considering the complex and diverse causal factors that contribute to ageing in Northern Ireland, there are a number of areas of government policy at regional, national and international levels that are likely to impact in this area. International The Madrid International Plan of Action on Ageing (3) and the Research Agenda on Ageing for the 21st Century (4) provide important mechanisms for furthering research into ageing. The United Kingdom has signed up to these. The Madrid International Plan of Action on Ageing commits member states to a systematic review of the Plan of Action through Regional Implementation Strategies. The United Kingdom�۪s Regional Implementation Strategy covers Northern Ireland. National At National level, pension and social security are high on the agenda. The Pensions Act (5) became law in 2007 and links pensions increases with earnings as opposed to prices from 2012. Additional credits for people raising children and caring for older people to boost their pensions were introduced. Some protections are included for those who lost occupational pensions as a result of underfunded schemes being wound up before April 2005. In relation to State Pensions and benefits, this Act will bring changes to state pensions in future. The Act now places the Pension Credit element which is up-rated in line with or above earnings, on a permanent, statutory footing. Regional At regional level there are a number of age related public policy initiatives that have the potential to impact positively on the lives of older people in Northern Ireland. Some are specific to ageing such as the Ageing in an Inclusive Society (6) and others by their nature are cross-cutting such as Lifetime Opportunities: Governments Anti-Poverty Strategy for Northern Ireland (7). The main public policy framework in Northern Ireland is the Programme for Government: Building a Better Future, 2008-2011(PfG) (8) . The PfG, is the overarching high level policy framework for Northern Ireland and provides useful principles for ageing research and public policy in Northern Ireland. The PfG vision is to build a peaceful, fair and prosperous society in Northern Ireland, with respect for the rule of law. A number of Public Service Agreements (PSA) aligned to the PfG confirm key actions that will be taken to support the priorities that the Government aim to achieve over the next three years. For example objective 2 of PSA 7: Making Peoples�۪ Lives Better: Drive a programme across Government to reduce poverty and address inequality and disadvantage, refers to taking forward strategic action to promote social inclusion for older people; and to deliver a strong independent voice for older people. The Office of the First Minister and deputy First Minister (OFMDFM) have recently appointed an Interim Older People�۪s Advocate, Dame Joan Harbison to provide a focus for older peoples issues across Government. Ageing in an Inclusive Society is the cross-departmental strategy for older people in Northern Ireland and was launched in March 2005. It sets out the approach to be taken across Government to promote and support the inclusion of older people. The vision coupled with six strategic objectives form the basis of the action plans accompanying the strategy. The vision is: ���To ensure that age related policies and practices create an enabling environment, which offers everyone the opportunity to make informed choices so that they may pursue healthy, active and positive ageing.�۝ (Ageing in an Inclusive Society, Office of the First Minister and Deputy First Minister, 2005) Action planning and maintaining momentum across government in relation to this strategy has proved to be slower than anticipated. It is proposed to refresh this Strategy in line with Opportunity Age ��� meeting the challenges of ageing in the 21st Century (9). There are a number of policy levers elsewhere which can also be used to promote the positive aspects of an ageing society. The Investing for Health (10) and A Healthier Future:A 20 Year Vision for Health and Well-being in Northern Ireland (11), seek to ensure that the overall vision for health and wellbeing is achievable and provides a useful framework for ageing policy and research in the health area. These health initiatives have the potential to positively impact on the quality of life of older people and provide a useful framework for improving current policy and practice. In addition to public policy initiatives, the anti-discrimination frameworks in terms of employment in Northern Ireland cover age as well as a range of other grounds. Goods facilitates and services are currently excluded from the Employment Equality (age) Regulations (NI) 2006 (12). Supplementing the anti-discrimination measures, Section 75 of the Northern Ireland Act 1998 (13), unique to Northern Ireland, places a statutory obligation on public authorities in fulfilling their functions to promote equality of opportunity across nine grounds, one of which is age(14). This positive duty has the potential to make a real difference to the lives of older people in Northern Ireland. Those affected by policy decisions must be consulted and their interests taken into account. This provides an opportunity for older people and their representatives to participate in public policy-making, right from the start of the process. Policy and Research Interface ���Ageing research is vital as decisions in relation to policy and practice and resource allocation will be made on the best available information�۝. (CARDI�۪s Strategic Plan 2008-2011) As outlined earlier, CARDI has been established to bridge the gap to ensure that research reaches those involved in making policy decisions. CARDI is stimulating the ageing research agenda in Ireland through a specific research fund that has a policy and practice focus. My work is presently focusing on helping to build a greater awareness of the key policy levers and providing opportunities for those within research and policy to develop closer links. The development of this shared understanding by establishing these links between researchers and policy makers is seen as the best predictor for research utilization. It is important to acknowledge and recognise that researchers and policy makers operate in different institutional, political and cultural contexts. Research however needs to ���resonate�۪ with the contextual factors in which policy makers operate. Conclusions Those working within the public policy field recognise all too often that the development of government policies and initiatives in respect of age does not guarantee that they will result in changes in actual provision of services, despite Government recommendations and commitments. The identification of public policy initiatives as they relate to age has the potential to highlight persistent and entrenched difficulties that social policy has previously failed to address. Furthermore, the identification of these difficulties can maximise the opportunities for progressing these across government. A focus on developing effective and meaningful targets to ensure measurable outcomes in public policy for older people can assist in this. Access to sound, credible and up-to-date evidence will be vital in this respect. As well as a commitment to working across departmental boundaries to effect change. Further details: If you would like to discuss this paper or for further information about CARDI please contact: Judith Cross, Policy Officer, Centre for Ageing Research and Development in Ireland CARDI). t: +44 (0) 28 9069 0066; m: +353 (0) 867 904 171; e: judith@cardi.ie ; or visit our website at: www.cardi.ie References 1) Centre for Ageing Research and Development in Ireland (2008) Strategic Plan 2008-2011. Belfast. CARDI 2) The Agreement: Agreement Reached in the Multi-Party Negotiations. Belfast 1998 3) Madrid International Plan of Action on Ageing. http://www.un.org/ageing/ 4) UN Programme on Ageing (2007) Research Agenda on Ageing for the 21st Century: 2007 Update. New York. New York. UN Programme on Ageing and the International Association of Gerontology and Geriatrics. 5) The Pensions Act 2007 Chapter 22 6) Office of the First Minister and deputy First Minister (2005). Ageing in an Inclusive Society. Belfast. OFMDFM Central Anti-Poverty Unit. 7) Office of the First Minister and deputy First Minister (2005). Lifetime Opportunities: Government�۪s Anti-Poverty and Social Inclusion Strategy for Northern Ireland. Belfast. OFMDFM Central Anti-Poverty Unit. 8) Northern Ireland Executive (2008) Building a Better Future: Programme for Government 2008-2011. Belfast. OFMDFM Economic Policy Unit. 9) Department for Work and Pensions, (2005) Opportunity Age: Meeting the Challenges of Ageing in the 21 st Century. London. DWP. 10) Department of Health, Social Services and Public Safety (DHSS&PS) (2002) Investing for Health. Belfast. DHSS&PS. 11) Department of Health, Social Services and Public Safety (DHSS&PS) (2005) A Healthier Future:A 20 Year Vision for Health and Well-being in Northern Ireland Belfast. DHSS&PS. �� 12) The Employment Equality (Age) Regulations (Northern Ireland) 2006 SR2006 No.261 13) The Northern Ireland Act 1998, Part VII, S75 14) The nine grounds covered under S75 of the Northern Ireland Act are: gender, religion, race, sexual orientation, those with dependents, disability, political opinion, marital status and age.

Democratisation via elections in an African 'narco state'?

Recent development cooperation with Guinea-Bissau, focussing on good governance, state-building and conflict prevention, did not contribute to democratization nor to the stabilization of volatile political, military and economic structures. Both the portrayal of Guinea-Bissau as failed ‘narco state' as well as Western aid meant to stabilize this state by multi-party elections are based on doubtful concepts and assumptions. Certainly, the impact of drug trafficking could endanger democratization and state-building if continued unchecked. However, the most pressing need is not state-building, facilitated by external aid, yet poorly rooted in the social and political fabric of the country, but nation-building from below as a pre-condition for the creation of viable state institutions.