BEGIN:VCALENDAR VERSION:2.0 PRODID:-//project/author//NONSGML v1.0//EN CALSCALE:GREGORIAN BEGIN:VEVENT DTEND:20221014T120000Z UID:354f8fd503df8fef2ef3229b612b9ce3-343 DTSTAMP:19700101T120011Z DESCRIPTION:Fully-Secure MPC with Minimal Trust URL;VALUE=URI:https://www.csa.iisc.ac.in/newweb/event/343/fully-secure-mpc-with-minimal-trust/ SUMMARY:The task of achieving full security (with guaranteed output delivery) in secure multiparty computation (MPC) is a long-studied problem. Known impossibility results (Cleve, STOC 86) rule out general solutions in the dishonest majority setting. In this work, we consider solutions that use an external trusted party (TP) to bypass the impossibility results, and study the minimal requirements needed from this trusted party. In particular, we restrict ourselves to the extreme setting where the size of the TP is independent of the size of the functionality to be computed (called “small” TP) and this TP is invoked only once during the protocol execution. We present several positive and negative results for fully-secure MPC in this setting. -- For a natural class of protocols, specifically, those with a universal output decoder, we show that the size of the TP must necessarily be exponential in the number of parties. This result holds irrespective of the computational assumptions used in the protocol. We additionally rule out the possibility of achieving information-theoretic full security (without the restriction of using a universal output decoder) using a “small” TP in the plain model (i.e., without any setup). -- In order to get around the above negative result, we consider protocols without a universal output decoder. The main positive result in our work is a construction of such a fully-secure MPC protocol assuming the existence of a succinct Functional Encryption scheme. -- Finally, we explore the possibility of achieving full-security with a semi-honest TP that could collude with other malicious parties (which form a dishonest majority). In this setting, we show that even fairness is impossible to achieve regardless of the “small TP” requirement. DTSTART:20221014T120000Z END:VEVENT END:VCALENDAR