When performing secure multiparty computation, tasks may often be simple or difficult depending on the representation chosen. Hence, being able to switch representation efficiently may allow more efficient protocols. We present a new protocol for bit-decomposition: converting a ring element x ∈ ℤM to its binary representation, x (logM)-1,...,x 0. The protocol can be based on arbitrary secure arithmetic in ℤM; this is achievable for Shamir shared values as well as (threshold) Paillier encrypted ones, implying solutions for both these popular MPC primitives. For additively homomorphic primitives (which is typical, and the case for both examples) the solution is constant-rounds and requires only O(logM) secure ring multiplications. The solution is secure against active adversaries assuming the existence of additional primitives. These exist for both the Shamir sharing based approach as well as the Paillier based one. © 2010 Springer-Verlag.
CITATION STYLE
Reistad, T., & Toft, T. (2010). Linear, constant-rounds bit-decomposition. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5984 LNCS, pp. 245–257). https://doi.org/10.1007/978-3-642-14423-3_17
Mendeley helps you to discover research relevant for your work.