A Protocol for Secure Multi-Party Computation for Preserving Privacy during Data Mining
Durgesh Kumar Mishra, Manohar Chandwani
Acropolis Institute of Technology and Research, Indore, MP, India
IET-DAVV, Indore, MP, India
IJCSIS FULL PAPER DOWNLOAD (Click)
1. INTRODUCTION
The SMC has been a problem that has attracted the attention of scholars and the industry for quite some time. Ironically, it has always been perceived as a problem. Although a vast amount of work has been done upon the subject, the perpetual implementation of the endeavors has only yielded a perennial hornet’s nest. Having said that, it should be acknowledged that to compute results upon data whose source is not known is not child’s play; and the works undertaken until now have served a great purpose in enlightening the industry of the subtleties of this so-called SMC problem.
Here we are proposing a new protocol Encrytpo_Random through we which intend to put forward what we perceive, to be the most appropriate and seemingly plausible solution to the SMC conundrum. The methodology followed is quite elementary yet very comprehensible. The protocol works on a two layer basis; it consists of the parties (1st layer) who aspire to draw out a result collectively and being apprehensive of each-others intentions appoint an assumedly unbiased third party (2nd layer) to carry out the computation and announce the result. A proposal sounds overtly hyperbolic without a thorough layout of the architecture to aptly implement it. Thus, we also present a meticulously worked-out architecture to realize the protocol and also to showcase and answer the pertinent queries that are bound to arise in the minds of the audience.
The modus-operandi of the protocol deters the bodies involved to exhibit any malicious conduct by presenting thoroughly planned impediments in the path of the transfer of data among themselves. The security of information of the parties is of utmost importance in any approach seeking to solve the SMC enigma. In our protocol we have taken adequate precautions so as to guarantee the security of data of the involved parties. Instead of sending the entire data blocks the parties break them into packets and randomly distribute amongst themselves. Thus the parties do not get to know whose data packets they are forwarding and in stark contrast the third party doesn’t have even a Lilliputian hint as to whose data packet a particular party is sending. This necessitates the need of a secure channel to transfer the data packets which have been dealt with in the deftly formed and apposite architecture. To further conceal the identity of the data packets we apply an encrypting function upon the data packets; these encrypting functions also reach to the third party through the same path and are used to decode the packets and rearrange them to form data blocks.
2. BACKGROUND
The SMC came to the fore-front as the Millionaires problem described by Yao in [8]. U.Maurer considered the general SMC protocols [7]. For specific tasks like online auctions, public voting or online updating of the data there exist very efficient and effective protocols. General SMC protocols are less effective than special purpose protocols. Maurer also defined the different types of security in databases [5]. Privacy preserving data mining using SMC has great importance and many applications have been developed [9, 14]. Du et al. reviewed the various industrial problems and listed them in [1, 3]. Some of the existing protocols are in the form of the circuit evaluation protocols, and encryption with homomorphism schemes. Security is defined relatively to an ideal-world specification involving a trusted party: any thing the adversary can achieve in the ideal world he can also achieve in the real world.
The first general constant round protocol for secure two-party computations was given by Yoa [16]. Yoa’s original protocol considered only the case of semi-honest parties; an extension to the case of malicious party was given by Lindell [17]. Goldreich et al. showed the existence of a secure solution of SMC problem [6]. The size of the protocol depends on the number of parties involved in the computation process.
A new concept was put forward by D.K.Mishra [16] through his multi-layer protocols. Initially a two-layer protocol along with a tentative architecture for its implementation was proposed. This two-layer protocol was improvised by a three-layer protocol in which an anonymizer layer was added in between the parties and the third party. This new layer hid the information of the parties from the third party, who computes the data and provides the result. In the next paper [17], this three-layer protocol, was further extended into a four-layer protocol in which a packet layer was introduced. This new concept provided security to the data from most of the malicious activity, even if the third party is not a trusted one.
The magnanimity and the complexity of this protocol present an unusual paradox. On one hand owing to its compounded and uncanny nature, this protocol prevents most of the unscrupulous activities; but on the other hand, its intricate technicalities make it very difficult to actually implement it. Another disadvantage of this protocol is that, the anonymzier-layer has been assumed to be incorruptible; if in case it becomes malicious then many an information leak can occur.
So to solve this problem we propose a new protocol, which involves only: (1.) The Parties that wish to compute results and (2.) the Trusted Third Party (TTP), that which computes the result for these Parties. We consider the third party as a trusted one on account that it computes the results correctly.
The International Journal of Computer Science and Information Security (IJCSIS) is one of the leading international journals for publishing novel ideas, state-of-the-art research results and fundamental advances in all aspects of computer science and information & communication security. IJCSIS is a peer reviewed international journal with a key objective to provide the academic and industrial community a medium for presenting original research and applications related to Computer Science and Information Security.
Welcome back! You may want to subscribe to my RSS feed. Thanks for visiting!
If you enjoyed this post, make sure you subscribe to my RSS feed!
Related Posts - Information Security Software : E-Signatures E-Commerce (EC) The conducting of business communication and transactions over networks and through computers. As most restrictively defined, electronic commerce is the buying and selling of goods and services, and the transfer of funds, through digital communications. However EC also includes all inter-company and intra-company functions (such as marketing, finance,......
- Speed Up Windows without Letting the Productivity to Suffer A person who talks about speeding up computer usually refers to the operating system that his/her PC uses. Windows operation system is a foundation which is necessary for your computer. It helps to run all the necessary software such as word processing programs, spreadsheet, video players and graphic design programs.That......
- Think of it As a Safety Net Unless you are an IT or MIS technician or manager, you may have never heard of proxy servers. Most non-technical employees don't know the ins and outs of the technology systems they work with on a daily basis. In non-technical language, proxy servers are controllers or intermediaries, and can be......
- Computer Security: Protecting Your Data Computer Security has become increasingly important as more and more companies rely on software to run their business. This article will provide you information about computer security and how you can use it to protect your data. Whether you’re a business owner, an executive, or an IT manager, the following......
- What Are the PC Security Tools That I Need? PC security is very important for those who have a PC and internet connection. In year 2000, the Byzantine Bloomberg network was attacked by two Kazakhstan hackers and demanded that Bloomberg pay $200,000 if they want their data back. Byzantine Bloomberg can easily pay the ransom, however, the CEO decided......
Related Websites - Cisco PIX Technology Ciso PIX Security Appliance.Cisco PIX Security applications can enforce policies on users and applications.Cisco PIX can protect you from many different network and Internet based attacks.Cisco PIX offers secure connectivity, using methods such as SSHv2 Secure Shell Two and VPN virtual private networks.This is fairly easy to setup.Cisco PIX......
-
Save Time, Money and Space in Over 80 Ways If you're looking for handy gadgets, tools and various items that can save you time, money or space (or all three!) this list of more than 80 top products is just what you need. Everyone's got saving money on their minds these days. Some of us are always looking to...... -
Alp-N-Rock Luxe Clothing for Men and Women Simply put, I have found my new favorite shirts. From their unbelievably soft feel against the body to their unique and dynamic design, Alp-N-Rock luxe clothing for men and women clothing sets the mark for all contemporary high-end resort inspired fashion. Often, my expectations are far too high. As such,...... - Enterprise Application Integration The Enterprise Application Integration (EAI) is defined as the process of integrating enterprise computer applications using computer software resources, mostly organizations have two type of applications front office and back office applications, to integrate them in such a way that they can communicate with each other when needed either......
- Remote Backup Securely Moves Your Data Where You Need It, When You Need It Not long ago, the thought of sending private and critical data across the Internet was radical and dangerous. In addition, leaving that data in the hands of a third party was unthinkable.Now, the most logical choice for a small to mid-sized business is to outsource data protection to managed......
« Should the Software Antivirus & Internet Security? | Home | Data Security In Todays Computing »
Leave a Comment