Skip to content

EasySMPC - No-Code Secure Multi-Party Computation

License

Notifications You must be signed in to change notification settings

BIH-MI/easy-smpc

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

EasySMPC - No-Code Secure Multi-Party Computation

EasySMPC is an app for securely summing up distributed confidential data using Secure Multi-Party Computation (SMPC). It is designed to enable simple statistical analysis with maximum usability, easy access and a strict no-coding approach. Your parents should be able to use this and so should your physician!



Prerequisites

EasySMPC requires Java, at least in version 13. The Java runtime is bundled in our Installer package.

To compile the app from source in addition to the Java JDK the Maven build system is required.

Installation

EasySMPC does not need an installation and can be used as a Java jar package. However, to increase portability we packaged the nessecary Java runtime with our application in an installer to build an executable for Linux, Windows and Mac OSX. This installer does not need any administrator priviledges and should be run as a user. The installers for Windows and MacOS are not signed. Thus a respective message while installing must be confirmed.

Get binary installer

Check out our releases page for Windows, Linux and MacOS executables.

Build from Source

To build the executable yourself, please clone this repository and build with maven (mvn package). The assembled executable should be in the target directory. At present time some tests occasionaly fail. We're looking into that. Until those tests are passing please compile with mvn package -DskipTests.

To build the installer please build the jar package as described above and then use the supplied scripts for your target platform. E.g.:

cd installer && ./linux.sh

Features

EasySMPC was built to allow non-technical personell in medical research perform simple analysis without sharing their input data. We tried to achieve a very low threshold of technical prerequisites by using email as an, in most cases, already established and configured communication medium.

  • Easy to use
  • Communication using established channels, e.g. emails
  • Excel and CSV import and export
  • Automation of the protocol using a shared IMAP-Mailbox
  • Automatic Proxy-Detection

Security

EasySMPC uses Arithmetic Secret Sharing [DZS15], the arithmetic extension of the GMW-Protocol [GMW87] to achieve the private computation of the sums. It uses a ring of size Ring size formula, the 12th Mersenne prime.

We are working on

  • Differential Privacy
  • Automate email communication with private mailboxes
  • Support for decimal numbers
  • Use EasySMPC with Slack/Mattermost/IRC/...
  • Examples and Getting Started guides
  • Further Documentation

Screenshot

Screenshot

Quick start guide

  1. As a study initiator, click on Create new project and enter the names of all participants, their e-mail addresses, the variables to sum up and your own confidential data. For performing the computation, you can choose between an automatic or a manual mode.

    a) In manual mode the users need to exchange all messages by sending and receiving e-mails manually.

    b) In automatic mode participants receive and import the initial message manually into EasySMPC (see 2). All further messages are exchanged automatically via a shared mailbox. The required credentials and connection details have been defined when initiating the study and are disclosed to all participants. Thus, personal mailboxes must not be used. Freemail providers such as Gmail are a good option. Some providers impose limitations, e.g. a maximum of 15 IMAP connections with Gmail, which can slow down the process of data exchange. Note: the automatic mode does not bear a risk to the confidentiality of the data entered by the participants.

  2. As a participant, you copy the message you received via email into the clipboard, click on Participate in project in EasySMPC and paste the content. You will now see the study definition and can enter your own confidential data.

  3. As an initiator or participant, you now click on proceed. If running in automated mode, EasySMPC will automatically perform all steps until the final result is displayed. If running in manual mode, all users need to send and receive e-mails prepared by EasySMPC to perform the computation.

  4. The final perspective shows the result of the secure addition of all variables.

Contact

If you have questions or problems, we would like to invite you to open an issue at Github. This allows other users to collaborate and (hopefully) answer your question in a timely manner. If your request contains confidential information or is not suited for a public issue, send us an email.

EasySMPC's core development team consists of:

License

This software is licensed under the Apache License 2.0. The full text is accessible in the LICENSE file.

EasySMPC uses the following dependencies:

Acknowledgments

This project is partly financed by the "Collaboration on Rare Diseases" of the Medical Informatics Initiative, funded by the German Federal Ministry of Education and Research (BMBF).

About

EasySMPC - No-Code Secure Multi-Party Computation

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Java 99.1%
  • Other 0.9%