Research

Linear-Time Maliciously Secure Shuffle Advances Secret Sharing Protocols

This new protocol is the first to achieve linear end-to-end time for maliciously secure, constant-round secret-shared shuffling, enabling practical, private computation primitives.
November 30, 20253 min

A sophisticated, silver-toned modular device, featuring a prominent circular interface with a blue accent and various rectangular inputs, is dynamically positioned amidst a flowing, translucent blue material. The device's sleek, futuristic design suggests advanced technological capabilities, with the blue element appearing to interact with its structure
A close-up view presents two sophisticated, white and metallic mechanical connectors, with one end displaying a vibrant blue illuminated core, positioned as if about to interlock. The background features blurred, similarly designed components, suggesting a larger, interconnected system

Briefing

A foundational challenge in Secure Multi-Party Computation (MPC) is the efficient and robust shuffling of secret-shared data, a necessary primitive for secure sorting and anonymous systems. This research introduces a novel protocol that solves this problem by converting a constant-round, delegated Fisher-Yates shuffle into a maliciously secure equivalent. The core breakthrough is the demonstration of the first protocol to achieve linear end-to-end time for a two-party secret-shared shuffle while maintaining a constant-round complexity. This result establishes a new, highly efficient building block for MPC, fundamentally accelerating the deployment of complex, privacy-preserving applications where the integrity of the shuffle is paramount against active adversaries.

The image displays a sophisticated, multi-faceted device with a central transparent dome revealing glowing blue circuitry. Surrounding this core is a polished silver casing, suggesting advanced technological design

Context

Before this work, securely shuffling a list of secret shares was a vital, yet computationally burdensome, sub-protocol in various MPC applications. Existing approaches either provided only passive security, failing against an actively cheating party, or introduced excessive communication complexity, resulting in prohibitive latency. The prevailing theoretical limitation was the inability to simultaneously guarantee malicious security, constant-round communication, and optimal linear performance, forcing system designers to compromise on either robustness or speed for core privacy-preserving operations.

The image showcases a detailed, abstract representation of an interconnected network, featuring translucent blue conduits joined by metallic cylindrical connectors. A vibrant blue substance appears to flow through the central transparent structures, suggesting dynamic movement within the system

Analysis

The paper’s core mechanism centers on a transformation of the well-known Fisher-Yates shuffling algorithm, typically used in a delegated manner with rerandomizable encryption. The protocol integrates a proof of correct shuffling into the constant-round structure, leveraging the algebraic properties of the underlying homomorphic encryption system. Specifically, it proves security under the linear-only assumption , a standard cryptographic premise.

The result is a protocol that mathematically ensures the two parties correctly and secretly permute the shared list. The key difference from prior work is that the malicious security layer is achieved without incurring a super-linear performance penalty, making the construction practically viable for large datasets.

The image displays a high-tech modular hardware component, featuring a central translucent blue unit flanked by two silver metallic modules. The blue core exhibits internal structures, suggesting complex data processing, while the silver modules have ribbed designs, possibly for heat dissipation or connectivity

Parameters

  • End-to-End Performance → Linear end-to-end time. This signifies the protocol’s runtime scales optimally with the size of the list being shuffled.
  • Security Guarantee → Malicious security. The protocol remains secure even if one party actively deviates from the specified cryptographic steps.
  • Round Complexity → Constant-round protocol. The number of communication rounds does not increase with the size of the input list.
  • Primary Assumption → Linear-only assumption. This is the core cryptographic hardness assumption required on the homomorphic encryption scheme for the security proof to hold.

A sophisticated digital rendering displays two futuristic, cylindrical modules, predominantly white with translucent blue sections, linked by a glowing central connector. Intricate geometric patterns and visible internal components characterize these high-tech units, set against a smooth blue-gray background

Outlook

This foundational cryptographic advance directly lowers the computational barrier for complex privacy applications. In the next three to five years, this linear-time shuffle primitive will be integrated into next-generation secure computation frameworks, enabling the practical realization of large-scale secure sorting for decentralized exchanges, highly efficient oblivious RAM for private data storage, and robust anonymous broadcast systems. The research opens a new avenue for exploring how to achieve optimal performance for other fundamental MPC sub-protocols under the strongest adversarial models.

The protocol establishes a new, highly efficient security benchmark for secret-shared primitives, accelerating the architectural roadmap for practical, robust, and privacy-preserving decentralized systems.

secure multiparty computation, mpc protocol, secret sharing scheme, maliciously secure, linear end-to-end time, constant-round protocol, cryptographic primitive, rerandomizable encryption, delegated fisher-yates, oblivious ram, anonymous broadcast, homomorphic encryption assumption, verifiable computation, privacy preserving Signal Acquired from → IACR ePrint Archive

Micro Crypto News Feeds

computation

Definition ∞ Computation refers to the process of performing calculations and executing algorithms, often utilizing specialized hardware or software.

malicious security

Definition ∞ Malicious security in cryptography refers to a security model that considers an adversary capable of arbitrary, harmful behavior.

homomorphic encryption

Definition ∞ Homomorphic encryption is a form of encryption that allows computations to be performed on encrypted data without decrypting it first.

performance

Definition ∞ Performance refers to the effectiveness and efficiency with which a system, asset, or protocol operates.

protocol

Definition ∞ A protocol is a set of rules governing data exchange or communication between systems.

security

Definition ∞ Security refers to the measures and protocols designed to protect assets, networks, and data from unauthorized access, theft, or damage.

oblivious ram

Definition ∞ Oblivious RAM, or ORAM, is a cryptographic primitive designed to conceal memory access patterns from an untrusted server.

Tags:

Tags: