Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MaskedLARK: No interaction between the helpers → no input validation? #25

Open
csharrison opened this issue Jul 23, 2021 · 1 comment
Open

MaskedLARK: No interaction between the helpers → no input validation? #25

csharrison opened this issue Jul 23, 2021 · 1 comment

Comments

@csharrison
Copy link

In the MaskedLARK proposal, there is a claim that helpers do not need to communicate. I think this opens up attacks that can be done by dishonest clients sending invalid secret shares that don’t sum up to proper ranges (binary, etc). Adding interaction can prevent this bad outcome (via more complex MPC) and reduce the “blast radius” of a single corrupted record.

I think this should be considered as an extension to the proposal.
@jpfeiffe
Copy link

This is currently a problem, yes -- we hadn't considered it explicitly with this draft. We've thought a bit and the only solution that was proposed included having a shared SK between the pairs of helpers. This is (in our view) too strong of an assumption that none of the helpers would share SK with the ad server.

Given the importance here, we will need to probably incorporate this in the next iteration of the proposal.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@csharrison @jpfeiffe