Tuesday, October 02, 2018 3:58:51 AM
http://blog.onboardsecurity.com/blog/secure-multiparty-computation?utm_source=hs_email&utm_medium=email&utm_content=66323839&_hsenc=p2ANqtz-96uoSQ2theB79pR1NSJcgk6TW4_tMpKUMNL_cxKIPsa9VYjmcuUKNsst3FSgZ1TiHD5sGzI8L_GieeN_40Y6GCvBCUkA&_hsmi=66323839
Recently, our customer, Rivetz, announced their Dual Roots of Trust solution to protect private keys in a mobile phone, even if one of the systems is compromised. The Rivetz software generates and distributes the private key between the two roots – the Trusted Execution Environment (TEE) running in ARM TrustZone and the SIM card. This means that both roots would have to be compromised in order to get the user’s private key. Since the TEE is controlled by the phone manufacturer and the SIM is controlled by the mobile carrier, the user’s data is also protected from insider attacks or a vendor security breach.
However, the parties involved (SIM and TEE) are required to delete certain keys after a given operation. Thus, the next time they perform that operation, they are forced to carry out all the steps and not simply re-use data from last operation. The security of this solution boils down to each party trusting the other to delete the keys. The trust that the TEE and SIM have correctly carried out the procedure is pretty solid, but what if there is a way to implement that dual root of trust scheme without having to trust the other root at all?
Researchers at OnBoard Security have come up with a way to do just that with a cryptographicpicture copy technique called Secure Multiparty Computation, which can be efficiently realized using Yao’s Garbled Circuits in the two-party case. Secure Computation-based patented solutions were originally developed by our team to improve privacy while reducing complexity of the Secure Credential Management System (SCMS) in Vehicle-to-Everything (V2X) communications. Through our security consulting work with Rivetz, it became clear that Secure Multiparty Computation could improve Rivetz’s innovative solution as well.
What is Secure Multiparty Computation and Yao’s Garbled Circuit?
Secure Multiparty Computation is a method for parties to jointly compute any arbitrary function over their private inputs while keeping them private, and without the involvement of a trusted third party. Andrew Chi-Chih Yao presented the first solution to this problem for the two-party case back in 1982, and the solution is popularly known as Yao’s Garbled Circuit protocol. Two-party computation is best illustrated by Yao’s Millionaires’ Problem. In that example, two millionaires want to discover who is richer without revealing their own worth to the other. The millionaires simply execute the Garbled Circuit protocol which reveals the answer but nothing else about the two parties’ wealth. This slide deck explains more about Garbled Circuits.
In the Rivetz application, the two parties are the TEE and the SIM and the function being computed would be the operations they want to perform, such as encryption and decryption. Neither party has to trust the other one and neither gets exposure to the inputs of the other party. This is an even more secure solution that ensures the private key is truly secure.
Secure multiparty computation is a growing field with applications in blockchain, secure supply chain management, academic research, transportation, financial and a host of other markets. OnBoard Security researchers have a wealth of knowledge about this cryptographic protocol along with some patented implementation techniques. To find out how Secure Multiparty Computation and Garbled Circuits could help you, contact sales@onboardsecurity.com
Recent WYY News
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 08:45:16 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 08:40:58 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 08/22/2024 10:53:23 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 08/19/2024 01:00:30 PM
- WidePoint to Present at the 2024 Gateway Conference on September 4 at 9:00 a.m. Pacific Time • GlobeNewswire Inc. • 08/06/2024 01:00:00 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:42:06 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:37:38 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:35:59 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:33:49 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:30:40 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:27:45 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:25:57 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 07/24/2024 08:23:23 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 05/20/2024 12:31:59 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 05/20/2024 11:31:09 AM
- Form 8-K - Current report • Edgar (US Regulatory) • 03/04/2024 02:07:32 PM
- Form SC 13G/A - Statement of acquisition of beneficial ownership by individuals: [Amend] • Edgar (US Regulatory) • 02/06/2024 10:26:31 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 01/29/2024 02:30:35 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 12/29/2023 05:15:13 PM
- Form 4/A - Statement of changes in beneficial ownership of securities: [Amend] • Edgar (US Regulatory) • 12/27/2023 09:41:01 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 11/16/2023 01:31:32 PM
- Form 10-Q - Quarterly report [Sections 13 or 15(d)] • Edgar (US Regulatory) • 11/14/2023 09:02:27 PM
- Form 8-K - Current report • Edgar (US Regulatory) • 10/16/2023 12:30:16 PM
VHAI - Vocodia Partners with Leading Political Super PACs to Revolutionize Fundraising Efforts • VHAI • Sep 19, 2024 11:48 AM
Dear Cashmere Group Holding Co. AKA Swifty Global Signs Binding Letter of Intent to be Acquired by Signing Day Sports • DRCR • Sep 19, 2024 10:26 AM
HealthLynked Launches Virtual Urgent Care Through Partnership with Lyric Health. • HLYK • Sep 19, 2024 8:00 AM
Element79 Gold Corp. Appoints Kevin Arias as Advisor to the Board of Directors, Strengthening Strategic Leadership • ELMGF • Sep 18, 2024 10:29 AM
Mawson Finland Limited Further Expands the Known Mineralized Zones at Rajapalot: Palokas step-out drills 7 metres @ 9.1 g/t gold & 706 ppm cobalt • MFL • Sep 17, 2024 9:02 AM
PickleJar Announces Integration With OptCulture to Deliver Holistic Fan Experiences at Venue Point of Sale • PKLE • Sep 17, 2024 8:00 AM