Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Formalization for SMC protocols #136

Draft
wants to merge 138 commits into
base: master
Choose a base branch
from
Draft

Formalization for SMC protocols #136

wants to merge 138 commits into from

Conversation

weng-chenghui
Copy link

@weng-chenghui weng-chenghui commented Jan 3, 2025
edited
Loading

This is the pull-request contains all formalization work in: "Toward a Formalization of Secure-Multiparty Computation Stack".

t6s and others added 30 commits July 17, 2024 09:17
@t6s @gregweng
lemma 3.1
3275147
@t6s @gregweng
cleaning
4713b10
@t6s @gregweng
Lemma 3.2
91cef06
@gregweng
Lemma 3.3 in a new file probability/smc.v
22e2c29
@gregweng
WIP: try to prove Lemma 3.4
79fee7c
@gregweng
WIP: lemma 3.4
ae6146a
@gregweng
WIP: try prob + uniform dist
4d2a5da
@t6s @gregweng
pXY_unif
0438fad
@t6s @gregweng
comments
7405564
@t6s @gares
@affeldt-aist @gregweng @weng-chenghui
adapt smc_useful_tools to mc2 (#1)
86a9d01 
* port to MC2 (affeldt-aist#116)

---------

Co-authored-by: Reynald Affeldt <[email protected]>
Co-authored-by: Takafumi Saikawa <[email protected]>

* changelog

* fix

* lemma 3.1

* cleaning

* Lemma 3.2

* Lemma 3.3 in a new file probability/smc.v

* WIP: try to prove Lemma 3.4

* WIP: lemma 3.4

* WIP: try prob + uniform dist

* pXY_unif

* comments

* mc2

---------

Co-authored-by: Enrico Tassi <[email protected]>
Co-authored-by: Reynald Affeldt <[email protected]>
Co-authored-by: Greg Weng <[email protected]>
Co-authored-by: weng-chenghui <[email protected]>
@gregweng
WIP: cpr_eqE_mul
1ae2f57
@gregweng
WIP: progress but not yet finished lemma 3.5
d11ba90
@gregweng
WIP: lemma 3.5 with a new approach
5979d82 
Based on the relation between restricted distribution and conditional probability,
re-use lemma 3.4 as much as possible.
@gregweng
WIP: checking how to prove fdist_cond Y0 |= X' _|_ Z'
654ba1c
@gregweng
By a lemma with graphoid lemmas, prove lemma 3.5
9571191
@garrigue @gregweng
clean up lemma_3_5 (#2)
2dc2086 
* clean up lemma_3_5

* prove Z_X_indep

* remove more dead code
@garrigue @gregweng
simplify proof of lemma_3_5 (#3)
d39e077
@gregweng
Lemma 3.6 and Theorem 3.7, before the entropy part
3e13173
@gregweng
Proved Theorem 3.7 (masked condition removal) entropy version
66b7a15
@gregweng
Rebase: unto infotheo master
3c9709d
@gregweng
WIP: how to handle forall and one instance of it?
26691ff
@gregweng
WIP: cannot swap two assumption in one implication?
144f02e
@gregweng
WIP: discussed about how to continue proofs
d7371ba
@gregweng
WIP: fun_cond_entropy_eq0
fd67582
@gregweng
WIP: try to continue fun_cond_entropy_eq0
3186927
@gregweng
add some comments
9bb3a81
@gregweng
WIP: stuck because associativity in distribution expressions
eb1a3cc
@gregweng
WIP: fun cond removal entropy
9bc2aa9
@gregweng
fun_cond_removal_entropy
ddef3cf
@gregweng
WIP: want to prove pi2 but need joint_entropy_indeRV first
5a67d2e
garrigue and others added 24 commits December 23, 2024 22:37
@garrigue
remove unneeded funext
e2ff392
@gregweng
Added is_scalar_product to the interpreter file
2515e1d
@gregweng
Remove the trace definition before we really need it
c7d7e7b
@gregweng
Proved is_scalar_product in smc_interpreter.v
33c2cb6
@gregweng
Simplify the Lemma smc_scalar_productP
d115195
@gregweng
WIP: fail at the ps2_unif in smc_interpreter.v
151ef25
@gregweng
Rename in traces_ok
d0e7660
@gregweng
Fix the card of 'rV[TX]_n
392195b
@gregweng
WIP: Encountered type issue between add_RV_unif (finZmodType) and VX …
a2054fd 
…(finType)
@gregweng
Renaming some eqn proofs
dd5cf2f
@gregweng
Renaming
fa397f0
@gregweng
WIP: add_RV_unif type issue
b7c2583
@garrigue
Fix interpreter, adding Fail for safety
f50c440
@t6s
x2s2_x1'_indepP
cde2fc8
@gregweng
Move proba/smc.v to smc/smc_proba.v
f6db9b5
@gregweng
WIP: about how to express mutual independence for arbitrary lengthed …
4d53176 
…+ mixed types RV2
@gregweng
WIP: proving bob is leakage free
b80d33e
@t6s
Ltac1
970b544
@gregweng
WIP: r2 inde of x2 s2 x1 s1
5327b2c
@gregweng
Add SMC party experiments
badbf9f
@gregweng
Experiment: inde_between_parties
ae6b710
@t6s
rename
f9cbf79
@t6s
fix
0e27315
@gregweng
WIP: two lemmas in smc_proba.v: RV2_indeC should be provable; not sur…
f87f021 
…e about RV2_inde_reduce
@garrigue
Copy link
Collaborator

For these two lemmas, I think the graphoid axioms suffice.

garrigue
garrigue reviewed Jan 14, 2025
View reviewed changes
Copy link
Collaborator

@garrigue garrigue left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually, no graphoid axiom needed here.

smc/smc_proba.v
Lemma RV2_indeC :
P |= [% X, X] _|_ [% Y, Z] ->
P |= [% X, Y] _|_ [% X, Z].
Proof.
Copy link
Collaborator

@garrigue garrigue Jan 14, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Certainly not provable: assuming P |= X _|_ Y we can derive P |= [%X, X] _|_ [% Y, Y], but P |= [% X, Y] _|_ [% X, Y] definitely looks impossible.

smc/smc_proba.v Outdated

Lemma RV2_inde_reduce :
P |= X _|_ Y ->
P |= [% X, X] _|_ Y.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just use index_rv_comp with f = fun x => (x, x) and g' = idfun.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@garrigue garrigue garrigue left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@weng-chenghui @garrigue @t6s @gregweng