TinyGarble2 is a C++ framework for privacy-preserving computation through the Yao’s Garbled Circuit (GC) protocol in both the honest-but-curious and the malicious security models. The framework provides a rich library with arithmetic and logic building blocks for developing GC-based secure applications. It offers abstractions among three layers: the C++ program, the GC back-end and the Boolean logic representation of the function being computed. TinyGarble2 thus allows the most optimized versions of all pertinent components. These abstractions, coupled with secure share transfer among the functions make TinyGarble2 the fastest and most memory-efficient GC framework. In addition, the framework provides a library for Convolutional Neural Networks (CNN).
This work was inspired in part by TinyGarble (S&P'15) from the ACES Lab at UCSD. TinyGarble2 is a research tool, not meant to be used for commercial purposes. Please, refer to:
Siam Hussain and Baiyu Li and Farinaz Koushanfar and Rosario Cammarota. TinyGarble2: Smart, Efficient, and Scalable Yao’s Garble Circuit. 2020 ACM Workshop on Privacy-Preserving Machine Learning in Practice (PPMLP'20)
@misc{cryptoeprint:2020:1181,
author = {Siam Hussain and Baiyu Li and Farinaz Koushanfar and Rosario Cammarota},
title = {TinyGarble2: Smart, Efficient, and Scalable Yao’s Garble Circuit},
howpublished = {Cryptology ePrint Archive, Report 2020/1181},
year = {2020},
note = {\url{https://eprint.iacr.org/2020/1181}},
}The installation procedure below is tested with Linux Ubuntu 18.04, on x86_64 processor, and a system with 8GB RAM. For manual installation of the framework, refer to Manual Installation Procedure.
-
For first time set up, run
./setup.sh. It installs the required packages. It also clones and makes the required libraries - emp-tool and emp-ot, which are adapted from the emp-toolkit. -
After the set up, run
./config.shfollowed bymakeif required to build TinyGarble2.
You can also run TinyGarble2 in a docker.
-
Download the Dockerfile and build the image with
docker build -t tinygarble2:latest <download-directory>. (Note: If the browswer appends a ".txt" extension after "Dockerfile" during dlownload, please remove the extension.)Or
-
Pull the image from docker hub with
docker pull siamumar/ubuntu18.04-tinygarble2:latest. Please remember to rungit pullandmakeinside the docker container to have the latest version of TinyGarble2.
To create a container from the image, run docker run -it <REPOSITORY> /bin/bash. <REPOSITORY> is either tinygarble2 or siamumar/ubuntu18.04-tinygarble2 depending on whether it is built locally or pulled from the docker hub. You can list all docker images with docker images.
- Run
./bin/test_TinyGarble.shto test build for correctness. It runs evaluation on precompiled netlists.
./bin/test_TinyGarble.sh # test GC back-end in malicious setting
./bin/test_TinyGarble.sh --sh # test GC back-end in semi-honest setting
./bin/test_TinyGarble.sh --pi # test programming interface in malicious setting
./bin/test_TinyGarble.sh --pi --sh # test programming interface in semi-honest setting
- Run
./bin/eval_TinyGarbleto evaluate the GC back-end on benchmark functions.
./bin/eval_TinyGarble
-h [ --help ] produce help message
-p [ --port ] arg (=1234) socket port
-s [ --server_ip ] arg (=127.0.0.1) server's IP.
-i [ --input ] arg (=0) hexadecimal input (little endian),
without init.
-j [ --init ] arg (=0) hexadecimal init (little endian).
-r [ --repeat ] arg (=1) number of times to repeat the run
-f [ --file ] arg (=bin/benchmarks.txt)
netlist, cycles, output_mode are read from this file
-t [ --num_eval ] arg (=10) number of runs to average evaluation over
--sh semi-honest security model
Run ./bin/eval_TinyGarble to run GC protcol on a netlist.
A large library of pre-compiled netlists are provided in tinygarble/netlists_pi
These netlists are required for the programming interface. It is also possible to run them directly through the GC back-end with the following command.
./bin/TinyGarble
-h [ --help ] produce help message
-k [ --party ] arg (=1) party id: 1 for garbler, 2 for evaluator
-n [ --netlist ] arg (=tinygarble/netlists_pi/add_8bit.emp.bin)
circuit file address.
-p [ --port ] arg (=1234) socket port
-s [ --server_ip ] arg (=127.0.0.1) server's IP.
-i [ --input ] arg (=0) hexadecimal input (little endian), without init.
-j [ --init ] arg (=0) hexadecimal init (little endian).
-c [ --cycles ] arg (=1) number of cycles to run
-r [ --repeat ] arg (=1) number of times to repeat the run
-m [ --output_mode ] arg (=0) 0: reveal output at every cycle
1: reveal output at last cycle
2: transfer output to next netlist at every cycle
3: transfer output to next netlist at last cycle
-f [ --file ] arg netlist, input, init, cycles, repeat, output_mode
are read from this file,
ignores command line inputs for these fields
--sh semi-honest security model
--oo report output only
The total execution runs for cycles*repeat times. The DFFs reset to init after every cycles run.
-
millionaire.cpp presents a minimal working example with the programming interface of TinyGarble2. It is an implementation of the Yao's Millionaire's Problem through this framework. In the following, we explain different components of the code.
First, we instantiate the program interface for the desired security model. This is the only place of the code where the security model is specified.
partyis eitherALICE(garbler) orBOB(evaluator) - taken as input from the terminal.#if SEC_SH TinyGarblePI_SH* TGPI = new TinyGarblePI_SH(io, party); #else TinyGarblePI* TGPI = new TinyGarblePI(io, party); #endif
Then we take respective input from the terminal. This part is specific to this particular problem, not dependent on the TinyGarble2 structure.
if (TGPI->party == ALICE) cin >> a; else cin >> b;
The next task is to create secret variables corresponding to the inputs. This is done through three steps as shown: (i) regsiter the respective values (the bit width of each variable is set at this step), (ii) generate and transfer the corresponding labels, (iii) retreieve the labels to the respective secret variable. Note that in the code snippet above, each party inputs only one number. In the code snippet that follows, the value of
ais read only if the party is ALICE and the value ofbis read only if the party is BOB; otherwise they are ignored by the program. The first argument ofTGPI->TG_int_init( , , )refers to the owner of that particular secret variable.auto a_x = TGPI->TG_int_init(ALICE, bit_width, a); auto b_x = TGPI->TG_int_init(BOB, bit_width, b); TGPI->gen_input_labels(); TGPI->retrieve_input_labels(a_x, ALICE, bit_width); TGPI->retrieve_input_labels(b_x, BOB, bit_width);
Once the input labels are created and transferred, we can perform computaions on them. In this particular example, we compare the values of the two secret variables
a_xandb_xand store the Boolean (1-bit) result in a new secret variableres_x. Note that the declaration ofres_xdo not specify a owner since this is shared between ALICE and BOB. Moreover, the labels ofres_xare computed through GC, therefore its declaraion does not need to be followed bygen_input_labels()auto res_x = TGPI->TG_int(1); TGPI->lt(res_x, a_x, b_x, bit_width);
Since
res_xis the final output in this example, ALICE and BOB combines the shares to reveal its input.int64_t res = TGPI->reveal(res_x, 1, false);
To run the above program,
On Alice's terminal
./bin/millionaireOn Bob's terminal
./bin/millionaire -k 2It will prompt to input the respective wealths. Upon receiving the input, the output will be displayed.
-
To see the usage of all the available functions of TinyGarble2, have a look at unit_test. To run the unit tests follow instructions at Test and Evaluation.
-
cnn_layers presents more complex examples based on the programming interface. It provides implementations of basic building blocks required for CNN inference. Currently it supports only the honest-but-curious security model.
-
Please see LeNet.cpp for an example of CNN inference through TinyGarble2. To run the program,
On Alice's terminal
./bin/LeNet < test/LenetSmall_mnist_img_A.inpOn Bob's terminal
./bin/LeNet -k 2 < test/LenetSmall_mnist_img_B.inpLenetSmall_mnist_img_A.inp holds the trained weight parameters of the CNN and LenetSmall_mnist_img_B.inp holds an example image. This particular image belongs to class 2.
First, clone the repositories:
git clone https://github.com/IntelLabs/TinyGarble2.0.git
git clone https://github.com/IntelLabs/emp-tool.git
git clone https://github.com/IntelLabs/emp-ot.git
Second, install the dependencies:
sudo ./TinyGarble2.0/install_scripts/install_dependencies.sh
Third, install emp-tool:
cd emp-tool
cmake . -DCMAKE_INSTALL_PREFIX=<install_path>
make -j
make install -j
cd ..
Fourth, install emp-ot:
cd emp-ot
cmake . -DCMAKE_INSTALL_PREFIX=<install_path>
make -j
make install -j
cd ..
Finally, install TinyGarble2.0:
cd TinyGarble2.0
cmake . -DCMAKE_INSTALL_PREFIX=<install_path>
make -j
make install -j
Note: Specifying -DCMAKE_INSTALL_PREFIX=<install_path> in the instructions above is only needed to change the default system installation directory.
Please send email to rosario.cammarota@intel.com, and siamumar@ucsd.edu.