A communication-privacy tradeoff for modular addition

Benny Chor; Eyal Kushilevitz

doi:10.1016/0020-0190(93)90120-X

A communication-privacy tradeoff for modular addition

Benny Chor^*, Eyal Kushilevitz

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

50 Scopus citations

Abstract

We consider the following problem: A set of n parties, each holding an input value x_i∈{0, 1,...,m-1}, wishes to distributively compute the sum of their input values modulo the integer m, (i.e, ∑ⁿ_i=1x_i mod m). The parties wish to compute this sum t-privately. That is, in a way that no coalition of size at most t can infer any additional information, other than what follows from their input values and the computed sum. We present an oblivious protocol which computes the sum t-privately, using n·⌈(t+1)/2⌉ messages. This protocol requires fewer messages than the known private protocols for modular addition. Then, we show that this protocol is in a sense optimal, by proving a tight lower bound of ⌈n·(t+1)/2⌉ messages for any oblivious protocol that computes the sum t-privately.

Original language	English
Pages (from-to)	205-210
Number of pages	6
Journal	Information Processing Letters
Volume	45
Issue number	4
DOIs	https://doi.org/10.1016/0020-0190(93)90120-X
State	Published - 22 Mar 1993
Externally published	Yes

Funding

Funders	Funder number
US-Israel BSF	ONR-N0001491-J-1981 CCR-90-07677, 88-00282

Keywords

Distributed computing
message complexity
modular sum
private computation

Access to Document

10.1016/0020-0190(93)90120-X

Cite this

@article{edf0cf5c02194243a9c420d91c667110,

title = "A communication-privacy tradeoff for modular addition",

abstract = "We consider the following problem: A set of n parties, each holding an input value xi∈{0, 1,...,m-1}, wishes to distributively compute the sum of their input values modulo the integer m, (i.e, ∑ni=1xi mod m). The parties wish to compute this sum t-privately. That is, in a way that no coalition of size at most t can infer any additional information, other than what follows from their input values and the computed sum. We present an oblivious protocol which computes the sum t-privately, using n·⌈(t+1)/2⌉ messages. This protocol requires fewer messages than the known private protocols for modular addition. Then, we show that this protocol is in a sense optimal, by proving a tight lower bound of ⌈n·(t+1)/2⌉ messages for any oblivious protocol that computes the sum t-privately.",

keywords = "Distributed computing, message complexity, modular sum, private computation",

author = "Benny Chor and Eyal Kushilevitz",

note = "Funding Information: Correspondence to: B. Chor, Department of Computer Science, Technion - Israel Institute of Technology, Technion City, Haifa 32000, Israel. * Research supported by US-Israel BSF Grant 88-00282. Email: [email protected]. * * Research supported by ONR-N0001491-J-1981 CCR-90-07677. Email: [email protected].",

year = "1993",

month = mar,

day = "22",

doi = "10.1016/0020-0190(93)90120-X",

language = "אנגלית",

volume = "45",

pages = "205--210",

journal = "Information Processing Letters",

issn = "0020-0190",

publisher = "Elsevier B.V.",

number = "4",

}

TY - JOUR

T1 - A communication-privacy tradeoff for modular addition

AU - Chor, Benny

AU - Kushilevitz, Eyal

N1 - Funding Information: Correspondence to: B. Chor, Department of Computer Science, Technion - Israel Institute of Technology, Technion City, Haifa 32000, Israel. * Research supported by US-Israel BSF Grant 88-00282. Email: [email protected]. * * Research supported by ONR-N0001491-J-1981 CCR-90-07677. Email: [email protected].

PY - 1993/3/22

Y1 - 1993/3/22

N2 - We consider the following problem: A set of n parties, each holding an input value xi∈{0, 1,...,m-1}, wishes to distributively compute the sum of their input values modulo the integer m, (i.e, ∑ni=1xi mod m). The parties wish to compute this sum t-privately. That is, in a way that no coalition of size at most t can infer any additional information, other than what follows from their input values and the computed sum. We present an oblivious protocol which computes the sum t-privately, using n·⌈(t+1)/2⌉ messages. This protocol requires fewer messages than the known private protocols for modular addition. Then, we show that this protocol is in a sense optimal, by proving a tight lower bound of ⌈n·(t+1)/2⌉ messages for any oblivious protocol that computes the sum t-privately.

AB - We consider the following problem: A set of n parties, each holding an input value xi∈{0, 1,...,m-1}, wishes to distributively compute the sum of their input values modulo the integer m, (i.e, ∑ni=1xi mod m). The parties wish to compute this sum t-privately. That is, in a way that no coalition of size at most t can infer any additional information, other than what follows from their input values and the computed sum. We present an oblivious protocol which computes the sum t-privately, using n·⌈(t+1)/2⌉ messages. This protocol requires fewer messages than the known private protocols for modular addition. Then, we show that this protocol is in a sense optimal, by proving a tight lower bound of ⌈n·(t+1)/2⌉ messages for any oblivious protocol that computes the sum t-privately.

KW - Distributed computing

KW - message complexity

KW - modular sum

KW - private computation

UR - http://www.scopus.com/inward/record.url?scp=0040655149&partnerID=8YFLogxK

U2 - 10.1016/0020-0190(93)90120-X

DO - 10.1016/0020-0190(93)90120-X

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:0040655149

SN - 0020-0190

VL - 45

SP - 205

EP - 210

JO - Information Processing Letters

JF - Information Processing Letters

IS - 4

ER -

A communication-privacy tradeoff for modular addition

Abstract

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Cite this