Client-Aided Secure Two-Party Computation of Dynamic Controllers
Kaoru Teranishi, Takashi Tanaka
TL;DR
The paper addresses privately computing discrete-time dynamic controllers by introducing a secret-sharing based two-party computation that outsources controller evaluation to two servers while keeping parameters, states, and signals secret. It keyly combines a truncation-based overflow prevention scheme with Beaver-triple based arithmetic to realize controller updates without state decryption or input re-encryption, achieving performance arbitrarily close to the unencrypted controller given sufficient fixed-point precision. The authors analyze and compare the computational and communication costs against single-server HE-based schemes, and propose improvements via Brunovsky normal form and cryptographic primitives to reduce communication. Numerical demonstrations with PID and observer-based controllers corroborate feasibility and show controllability within the prescribed error bounds, while outlining future work toward MPC and active adversary resistance.
Abstract
In this paper, we propose a secure two-party computation protocol for dynamic controllers using a secret sharing scheme. The proposed protocol realizes outsourcing of controller computation to two servers, while controller parameters, states, inputs, and outputs are kept secret against the servers. Unlike previous encrypted controls in a single-server setting, the proposed method can operate a dynamic controller for an infinite time horizon without controller state decryption or input re-encryption. We show that the control performance achievable by the proposed protocol can be made arbitrarily close to that attained by the unencrypted controller. Furthermore, system-theoretic and cryptographic modifications of the protocol are presented to improve the communication complexity. The feasibility of the protocol is demonstrated through numerical examples of PID and observer-based controls.