A Protocol for Secure Multi-Party Computation for Preserving Privacy during Data Mining
Durgesh Kumar Mishra, Manohar Chandwani
Acropolis Institute of Technology and Research, Indore, MP, India
IET-DAVV, Indore, MP, India
IJCSIS FULL PAPER DOWNLOAD (Click)
1. INTRODUCTION
The SMC has been a problem that has attracted the attention of scholars and the industry for quite some time. Ironically, it has always been perceived as a problem. Although a vast amount of work has been done upon the subject, the perpetual implementation of the endeavors has only yielded a perennial hornet’s nest. Having said that, it should be acknowledged that to compute results upon data whose source is not known is not child’s play; and the works undertaken until now have served a great purpose in enlightening the industry of the subtleties of this so-called SMC problem.
Here we are proposing a new protocol Encrytpo_Random through we which intend to put forward what we perceive, to be the most appropriate and seemingly plausible solution to the SMC conundrum. The methodology followed is quite elementary yet very comprehensible. The protocol works on a two layer basis; it consists of the parties (1st layer) who aspire to draw out a result collectively and being apprehensive of each-others intentions appoint an assumedly unbiased third party (2nd layer) to carry out the computation and announce the result. A proposal sounds overtly hyperbolic without a thorough layout of the architecture to aptly implement it. Thus, we also present a meticulously worked-out architecture to realize the protocol and also to showcase and answer the pertinent queries that are bound to arise in the minds of the audience.
The modus-operandi of the protocol deters the bodies involved to exhibit any malicious conduct by presenting thoroughly planned impediments in the path of the transfer of data among themselves. The security of information of the parties is of utmost importance in any approach seeking to solve the SMC enigma. In our protocol we have taken adequate precautions so as to guarantee the security of data of the involved parties. Instead of sending the entire data blocks the parties break them into packets and randomly distribute amongst themselves. Thus the parties do not get to know whose data packets they are forwarding and in stark contrast the third party doesn’t have even a Lilliputian hint as to whose data packet a particular party is sending. This necessitates the need of a secure channel to transfer the data packets which have been dealt with in the deftly formed and apposite architecture. To further conceal the identity of the data packets we apply an encrypting function upon the data packets; these encrypting functions also reach to the third party through the same path and are used to decode the packets and rearrange them to form data blocks.
2. BACKGROUND
The SMC came to the fore-front as the Millionaires problem described by Yao in [8]. U.Maurer considered the general SMC protocols [7]. For specific tasks like online auctions, public voting or online updating of the data there exist very efficient and effective protocols. General SMC protocols are less effective than special purpose protocols. Maurer also defined the different types of security in databases [5]. Privacy preserving data mining using SMC has great importance and many applications have been developed [9, 14]. Du et al. reviewed the various industrial problems and listed them in [1, 3]. Some of the existing protocols are in the form of the circuit evaluation protocols, and encryption with homomorphism schemes. Security is defined relatively to an ideal-world specification involving a trusted party: any thing the adversary can achieve in the ideal world he can also achieve in the real world.
The first general constant round protocol for secure two-party computations was given by Yoa [16]. Yoa’s original protocol considered only the case of semi-honest parties; an extension to the case of malicious party was given by Lindell [17]. Goldreich et al. showed the existence of a secure solution of SMC problem [6]. The size of the protocol depends on the number of parties involved in the computation process.
A new concept was put forward by D.K.Mishra [16] through his multi-layer protocols. Initially a two-layer protocol along with a tentative architecture for its implementation was proposed. This two-layer protocol was improvised by a three-layer protocol in which an anonymizer layer was added in between the parties and the third party. This new layer hid the information of the parties from the third party, who computes the data and provides the result. In the next paper [17], this three-layer protocol, was further extended into a four-layer protocol in which a packet layer was introduced. This new concept provided security to the data from most of the malicious activity, even if the third party is not a trusted one.
The magnanimity and the complexity of this protocol present an unusual paradox. On one hand owing to its compounded and uncanny nature, this protocol prevents most of the unscrupulous activities; but on the other hand, its intricate technicalities make it very difficult to actually implement it. Another disadvantage of this protocol is that, the anonymzier-layer has been assumed to be incorruptible; if in case it becomes malicious then many an information leak can occur.
So to solve this problem we propose a new protocol, which involves only: (1.) The Parties that wish to compute results and (2.) the Trusted Third Party (TTP), that which computes the result for these Parties. We consider the third party as a trusted one on account that it computes the results correctly.
The International Journal of Computer Science and Information Security (IJCSIS) is one of the leading international journals for publishing novel ideas, state-of-the-art research results and fundamental advances in all aspects of computer science and information & communication security. IJCSIS is a peer reviewed international journal with a key objective to provide the academic and industrial community a medium for presenting original research and applications related to Computer Science and Information Security.
If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
If you enjoyed this post, make sure you subscribe to my RSS feed!
Related Posts - Speed Up Windows without Letting the Productivity to Suffer A person who talks about speeding up computer usually refers to the operating system that his/her PC uses. Windows operation system is a foundation which is necessary for your computer. It helps to run all the necessary software such as word processing programs, spreadsheet, video players and graphic design programs.That......
- Defender 2009 – A Rogue Security Program Defender 2009 is a rogue security program that wants users to believe it is capable of removing spyware, viruses, parasites and other security threats from their PC. Hackers design these malicious applications in hopes of frightening you enough that you will purchase their product. This one is not capable of......
- Security in E-Business Security in E-Business: An Introduction A central issue in the commercial use of the Internet is security. Surveys state that the economic success of electronic business applications is inhibited because the Internet lacks appropriate security measures. One way to increase the trust of consumers in electronic business applications is......
- Computer Security: Protecting Your Data Computer Security has become increasingly important as more and more companies rely on software to run their business. This article will provide you information about computer security and how you can use it to protect your data. Whether you’re a business owner, an executive, or an IT manager, the following......
- Boosting Data Security with a Secure USB Drive It is becoming very clear that the best way to boost security of mobile data is through the use of a secure USB drive. As each week goes by more and more information becomes mobile and is available through many diverse mediums; internet, flash drives, etc. This naturally is going......
Related Websites - Top 10 Selection Criteria for Outsourced Electronic Medical Billing Software as a Service (SaaS) Software as a Service (SaaS) is the new generation of ASP model designed to reduce the exorbitant costs of specialized medical practice management software. SaaS model is available for all aspects of medical practice management, including scheduling, billing, and electronic medical records (EMR), which are mission-critical for high quality clinical......
-
Tutorial: Amazon.com Search API The Anatomy of a Basic Product Search Engine. Note: due to changes in the authentication process for Amazon Web Services API, the REST request method described in this tutorial needs to be updated. I will be making changes to the content in the near future. As discussed in my...... - Cisco PIX Technology Ciso PIX Security Appliance.Cisco PIX Security applications can enforce policies on users and applications.Cisco PIX can protect you from many different network and Internet based attacks.Cisco PIX offers secure connectivity, using methods such as SSHv2 Secure Shell Two and VPN virtual private networks.This is fairly easy to setup.Cisco PIX......
-
Alp-N-Rock Luxe Clothing for Men and Women Simply put, I have found my new favorite shirts. From their unbelievably soft feel against the body to their unique and dynamic design, Alp-N-Rock luxe clothing for men and women clothing sets the mark for all contemporary high-end resort inspired fashion. Often, my expectations are far too high. As such,...... - 8 Strategies For Improving Corporate Cell Phone Security Today's corporate cell phone users are accustomed to an enormous amount of functionality from their hand held wireless devices. A wide variety of features, coupled with broadband connectivity, allows for quick and easy access to email, file transfers, internet browsing, etc. - from almost any location.As the functionality of......
« Should the Software Antivirus & Internet Security? | Home | Data Security In Todays Computing »
Leave a Comment