Differentially Private Secure Multiplication with Erasures and Adversaries
Haoyang Hu, Viveck R. Cadambe
TL;DR
The paper tackles private distributed multiplication in an honest-minority setting by embedding differential privacy into a polynomial-based scheme that preserves the robustness of Reed–Solomon codes. It designs an encoding with layered real-valued noise to achieve T-node ε-DP while tolerating up to E erasures and A adversaries, and analyzes both privacy and accuracy. A key contribution is a real-domain Berlekamp–Welch–based error correction that enables adversarial detection and recovery without sacrificing the DP-utility tradeoff, with theoretical guarantees and numerical validation. The results extend DP-secure computation to scenarios with erasures and active adversaries, approaching the fundamental converse bounds and enabling practical, resilient private computation over the real field.
Abstract
We consider a private distributed multiplication problem involving N computation nodes and T colluding nodes. Shamir's secret sharing algorithm provides perfect information-theoretic privacy, while requiring an honest majority, i.e., N \ge 2T + 1. Recent work has investigated approximate computation and characterized privacy-accuracy trade-offs for the honest minority setting N \le 2T for real-valued data, quantifying privacy leakage via the differential privacy (DP) framework and accuracy via the mean squared error. However, it does not incorporate the error correction capabilities of Shamir's secret-sharing algorithm. This paper develops a new polynomial-based coding scheme for secure multiplication with an honest minority, and characterizes its achievable privacy-utility tradeoff, showing that the tradeoff can approach the converse bound as closely as desired. Unlike previous schemes, the proposed scheme inherits the capability of the Reed-Solomon (RS) code to tolerate erasures and adversaries. We utilize a modified Berlekamp-Welch algorithm over the real number field to detect adversarial nodes.
