Correction to: Actively Secure Setup for SPDZ
摘要
We present the first actively secure, practical protocol to generate the distributed secret keys needed in the SPDZ offline protocol. As an added bonus, our protocol results in the resulting distribution of the public and secret keys are such that the associated SHE ‘noise’ analysis is the same as if the distributed keys were generated by a trusted setup. We implemented the presented protocol for distributed BGV key generation within the
This version contains differences from the original version due to an attack on the method in the original version discovered by Victor Treinsoutrot. In this revised version, we describe a fix (due to Carsten Baum) which would result in a roughly twofold performance loss in our protocol. This revised version does not update the running times of the protocol precisely, but estimates the expected running time from extrapolating micro-benchmarks. The new expected run times are roughly two times slower than those in the previous version.