-
Notifications
You must be signed in to change notification settings - Fork 111
Sharemind
A high-level language (SecreC 2) compiles to an intermediate representation made up of various macros (oblivious shuffle, multiplication, floating point operations, etc.). Runs a 3-party additive secure computation.
There are at least 3 available versions of the software. The public SDK is only for the high-level language, and does not include any cryptographic back-end. The academic license has a slower back-end. The enterprise version has a formal verification of the intermediate representation and might be a little better. Experimental but non-public versions include other secure computation protocols, like a 2-party additive, maybe Yao's garbled circuits.
The academic version we've received has extended documentation (link below). There is built-in support for pointwise array operations (SIMD). It has a strong, static typing system, including the aforementioned array support, and all primitive data is private.
The current setup is compatible with the open source 2017.12 release (we had new linking errors with 2018.06) and the 2018.03 academic license release (2018.06 changes client code formatting to some degree).
Threshold: Most Sharemind papers ([BNTW'10], Section 1; [Jaak's thesis], Section 2.1.5) refer to a 3-of-3 additive sharing scheme. I'm not sure if this is still the case in the implementation, but I suspect it is. The earliest papers [BLW'08] reference threshold schemes, but I don't think they were implemented.
Requires an academic/enterprise license to get access.
Extensive documentation for secrec language, less for c boilerplate necessary to make client programs run.
Built-in support for floats.
Errors are informative, usually.
The open-source Sharemind SDK is really under-documented (especially compared to everything else). I compiled it successfully but there's no docs re: what compilation actually produces. Found a couple executables but they don't have man pages, dunno what to pass to them, etc.
Two programs need to be separately compiled and run: a C file that passes in values, and a sc
file that defines the secure computation.
Implemented.
This is one of their examples included with the software package.
Implemented.
Jaak's thesis
BLW'08: original Sharemind paper
online docs
BNTW'10: Improved protocols for the Sharemind virtual machine. Bogdanov, Niitsoo, Toft, and Willemson.