This library provides the semi-honest and malicious implementation for Mostree (DPF-based) in a three-party setting.
The repo includes the following application:
- Decision tree (inference)
- DPF keys generation and verification
- Oblivious selection protocol (Semi-honest/Malicious)
- Multiplication operation on GF2E (Semi-honest/Malicious)
- MUX (Semi-honest/Malicious)
- Comparison operation on boolean shared (Semi-honest/Malicious)
- And operation on boolean shared (Semi-honest/Malicious)
- Negate operation on boolean shared (Semi-honest/Malicious)
A tutorial can be found here. It includes a description of how to use the API and a discussion at the end on how the framework is implemented.
This project is has been tested on Ubuntu 20.04. The dependencies are:
- libOTe
- Boost ( networking Boost 1.75.0)
- function2
- Eigen
- NTL ( Polynomial )
- emp-tool (for offline preprocessing benchmark)
- aby3 [ options ]
- backward [ options ]
- gcc 9.4.0
- python 3
Complete the above third-party dependency and be installed in deps/build/.
- Install libraries from apt-get
[sudo] apt-get update
[sudo] apt-get install git python3 wget build-essential libssl-dev g++ python-dev autotools-dev libicu-dev libbz2-dev libboost-all-dev libgmp-dev
- Install Cmake
wget https://github.com/Kitware/CMake/releases/download/v3.27.3/cmake-3.27.3.tar.gz
tar -zxvf cmake-3.27.3.tar.gz
cd cmake-3.27.3
./bootstrap
make
make install
- install boost
wget https://boostorg.jfrog.io/artifactory/main/release/1.75.0/source/boost_1_75_0.tar.bz2
tar -xvf boost_1_75_0.tar.bz2
cd boost_1_75_0
./bootstrap.sh --prefix=/usr/
./b2 install
- install NTL
wget https://libntl.org/ntl-11.5.1.tar.gz
gunzip ntl-11.5.1.tar.gz
tar xf ntl-11.5.1.tar
cd ntl-11.5.1/src
./configure
make
make install
- ABY3
git clone https://github.com/ladnir/aby3.git
cd aby3
python3 build.py --setup
python3 build.py
- emp-toolkit (for offline preprocessing)
wget https://raw.githubusercontent.com/emp-toolkit/emp-readme/master/scripts/install.py
python install.py --deps --tool
Build
git clone https://github.com/Jbai795/Mostree-pub
cd Mostree-pub
python3 build.py
Run
NOTE: Run programs within diectory ./out/build/linux/bin/ in the main directory Mostree-pub/, otherwise you will encounter errors.
- Standalone: log benchmark info in one terminal
cd ./out/build/linux/bin
./mostree-main -travel
- Multi terminals
cd ./out/build/linux/bin
./mostree-main -travel -p 0 # terminal 0
./mostree-main -travel -p 1 # terminal 1
./mostree-main -travel -p 2 # terminal 2
Note: This part, including the following commands and included Dockerfile in the main directory, is contributed from our anonymous reviewers. A big thank to our anonymous reviewers!
To build the docker image (Docker version >=23.X.X.X) use the following command:
docker build --no-cache -t mostree --load .After building the docker image, one can use the command to run the image to test/simulate the linux tc command for the bandwidth.
docker run --cap-add=NET_ADMIN -it mostreeWe provide benchmark of Mostree over seven decision tree models from UCI repository. Benchmark configurations can be found in Mostree-pub/ss3-dtree/main-dtree.cpp. In the following, we first overview involved parameters and then show how to set these parameters from commanline, from which one can test Mostree in different settings.
The arrary filename shows seven trees.
const char *filename[7] = {
"wine",
"breast",
"digits",
"spambase",
"diabetes",
"boston",
"mnist"
};To benchmarn Mostree over different tress, configure modelid at line 49. For example, if one want to run Mostree over digits, set
//modify here if testing other trees
int modelid = 2;Our implementation supports both semi-honest and malicious security. To evaluate Mostree with malicious security, just set MALICIOUS = 1. If MALICIOUS = 0, then Mostree will run with semi-honest security.
Besides evaluating Mostree over real UCI datasets, one can also check scalability of Mostree using fake datasets. This can be done by setting SCALABILITY=1.
bool SCALABILITY = 1; // 1 means testing for scalability using fake data, 0 means testing real datasets
// set modelid = 2 if SCALABILITY = 1All above configuration can be done by using command-line parameters when running mostree-main as follows:
mostree-main -travel [-p pid -i mid -s -m]
#-p pid: specifies the party running the propram. If you run mostree-main in one single terminal, do not use.
#-i mid: sets `modelid = mid`. If unset, the default `modelid` value is 2;
#-s : run scalability benchmark.
#-m : run with malcious security. If unset, the program will run with semi-honest security. For example, to benchmark mostree-main with malicious security over mnist in one terminal, run:
mostree-main -travel -i 6 -m # `-i 6` specify `modelid = 6`, `-m` is set for malicious security. To check scalibility of Mostree with semi-honest security in one terminal, run:
mostree-main -travel -s #-m is unset for semi-honest security, -s is set for testing scalibility. This part is about running time and communication performance from offline correlation generation for oblivious selection. We note that DPF-based preprocessing is suitable for oblivious selection over vectors of large dimension. Therefore, the dealer uses DPF-based preproprocessing for digits, spambase, diabetes, Boston, and mnist. For small models wine and breast, the dealer simply distributes random one-hot vectors in the offline phase.
NOTE: Currently we have not merged this preprocessing into Mostree (Mostree assumes the one-hot vectors are already generated when running the online evaluation phase). Nevertheless, this part is sufficient for benchmark purposes.
The commandline parameters for offline_batch_gen are as follows:
offline_batch_gen -offline [-p pid -i mid]
# -p pid: specifies the party running the propram;
# -i mid: sets `modelid = mid`. If unset, the default value of `modelid` is 2;One can run offline_batch_geneither in standalone or multi-terminal settins:
- Standalone: offline preprocessing for
mnistin one terminal
cd ./out/build/linux/bin
./offline_batch_gen -offline -i 5 # setting `-i 5`` corresponses to runing `Boston` tree.- Multi terminals: offline preprocessing for
mnistin multi terminals
cd ./out/build/linux/bin
./offline_batch_gen -offline -p 0 -i 5 # terminal 0
./offline_batch_gen -offline -p 1 -i 5 # terminal 1
./offline_batch_gen -offline -p 2 -i 5 # terminal 2
We provide a bash script \benchmark_offline.sh to print all benchmark info for UCI tree models:
./benchmark_offline.sh
--------------------------------- begin modelid = 0 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.623 offline_benchmark:61] Offline benchmark for Model: wine]
[09-21 23:31:32.624 offline_benchmark:62] Party 0 preprocessing time is: 2604 microseconds
[09-21 23:31:32.624 offline_benchmark:63] Party 0 sent data: 216 bytes
--------------------------------- end modelid = 0 -------------------------------------
--------------------------------- begin modelid = 1 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.663 offline_benchmark:61] Offline benchmark for Model: breast]
[09-21 23:31:32.663 offline_benchmark:62] Party 0 preprocessing time is: 894 microseconds
[09-21 23:31:32.663 offline_benchmark:63] Party 0 sent data: 296 bytes
--------------------------------- end modelid = 1 -------------------------------------
--------------------------------- begin modelid = 2 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.703 offline_benchmark:61] Offline benchmark for Model: digits]
[09-21 23:31:32.704 offline_benchmark:62] Party 0 preprocessing time is: 3576 microseconds
[09-21 23:31:32.704 offline_benchmark:63] Party 0 sent data: 3334 bytes
--------------------------------- end modelid = 2 -------------------------------------
--------------------------------- begin modelid = 3 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.745 offline_benchmark:61] Offline benchmark for Model: spambase]
[09-21 23:31:32.745 offline_benchmark:62] Party 0 preprocessing time is: 2490 microseconds
[09-21 23:31:32.746 offline_benchmark:63] Party 0 sent data: 3158 bytes
--------------------------------- end modelid = 3 -------------------------------------
--------------------------------- begin modelid = 4 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.787 offline_benchmark:61] Offline benchmark for Model: diabetes]
[09-21 23:31:32.787 offline_benchmark:62] Party 0 preprocessing time is: 3543 microseconds
[09-21 23:31:32.787 offline_benchmark:63] Party 0 sent data: 7176 bytes
--------------------------------- end modelid = 4 -------------------------------------
--------------------------------- begin modelid = 5 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.830 offline_benchmark:61] Offline benchmark for Model: boston]
[09-21 23:31:32.831 offline_benchmark:62] Party 0 preprocessing time is: 4707 microseconds
[09-21 23:31:32.831 offline_benchmark:63] Party 0 sent data: 7684 bytes
--------------------------------- end modelid = 5 -------------------------------------
--------------------------------- begin modelid = 6 -----------------------------------
connected
connected
connected
connected
connected
connected
[09-21 23:31:32.878 offline_benchmark:61] Offline benchmark for Model: mnist]
[09-21 23:31:32.879 offline_benchmark:62] Party 0 preprocessing time is: 7084 microseconds
[09-21 23:31:32.879 offline_benchmark:63] Party 0 sent data: 7304 bytes
--------------------------------- end modelid = 6 -------------------------------------To test mostree under different network setting, we use the following tc commands to simulate different network settings.
LAN, RTT:0.1ms, 1Gbps
sudo tc qdisc add dev lo root netem delay 0.04ms rate 1024mbit
MAN, RTT:6ms, 100Mbps
sudo tc qdisc add dev lo root netem delay 3ms rate 100mbit
WAN, RTT:80ms, 40Mbps
sudo tc qdisc add dev lo root netem delay 40ms rate 40mbit
ping localhost to see RTT
ping localhost -c 6
delete simulated configuration: (must delete the old one before setting new simulation)
sudo tc qdisc delete dev lo root netem delay 0.04ms rate 1024mbit
This code is just a proof-of-concept for benchmarking purposes. It has not had any security review, has a number of implementational TODOs, and thus, should not be directly used in any real-world applications.
Contact Jianli Bai(jbai795@aucklanduni.ac.nz), Xiaowu Zhang(muou55555@gmail.com) or Xiangfu Song(bintasong@amail.com) for any assistance on building or running the library.
@misc{mostree-main,
author = {Jianli Bai, Xiaowu Zhang, Xiangfu Song},
title = {{Mostree: Malicious Secure Private Decision Tree Evaluation with Sublinear Communication}},
howpublished = {\url{https://github.com/Jbai795/Mostree-pub}},
}
