Language-Based Security for Low-Level MPC
Christian Skalka, Joseph P. Near
TL;DR
This work presents a language-based framework for defining and verifying low-level probabilistic MPC protocols. It introduces the Overture protocol language and a Prelude metalanguage, formalizes confidentiality and integrity hyperproperties (conditional noninterference, gradual release, robust declassification) in a probabilistic setting, and develops automated verification tactics in $\mathbb{F}_2$. It demonstrates end-to-end verification on concrete MPC primitives and 2-party constructions like GMW and BDOZ, connecting low-level protocol design to standard security models (passive and malicious). The approach supports mechanized reasoning and automation, enabling scalable verification and providing a foundation for future extensions to concurrency, larger fields, and UC-style security.
Abstract
Secure Multi-Party Computation (MPC) is an important enabling technology for data privacy in modern distributed applications. Currently, proof methods for low-level MPC protocols are primarily manual and thus tedious and error-prone, and are also non-standardized and unfamiliar to most PL theorists. As a step towards better language support and language-based enforcement, we develop a new staged PL for defining a variety of low-level probabilistic MPC protocols. We also formulate a collection of confidentiality and integrity hyperproperties for our language model that are familiar from information flow, including conditional noninterference, gradual release, and robust declassification. We demonstrate their relation to standard MPC threat models of passive and malicious security, and how they can be leveraged in security verification of protocols. To prove these properties we develop automated tactics in $\mathbb{F}_2$ that can be integrated with separation logic-style reasoning.