MASCOT: Faster Malicious Arithmetic Secure Computation with Oblivious Transfer

Marcel Keller, Emmanuela Orsini, Peter Scholl

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

243 Citations (Scopus)


We consider the task of secure multi-party computation of arithmetic circuits over a finite field. Unlike Boolean circuits, arithmetic circuits allow natural computations on integers to be expressed easily and efficiently. In the strongest setting of malicious security with a dishonest majority - where any number of parties may deviate arbitrarily from the protocol - most existing protocols require expensive public-key cryptography for each multiplication in the preprocessing stage of the protocol, which leads to a high total cost. We present a new protocol that overcomes this limitation by using oblivious transfer to perform secure multiplications in general finite fields with reduced communication and computation. Our protocol is based on an arithmetic view of oblivious transfer, with careful consistency checks and other techniques to obtain malicious security at a cost of less than 6 times that of semi-honest security. We describe a highly optimized implementation together with experimental results for up to five parties. By making extensive use of parallelism and SSE instructions, we improve upon previous runtimes for MPC over arithmetic circuits by more than 200 times.

Original languageEnglish
Title of host publicationCCS '16
Subtitle of host publicationProceedings of the 23rd ACM SIGSAC Conference on Computer and Communications Security
PublisherAssociation for Computing Machinery (ACM)
Number of pages13
ISBN (Print)9781450341394
Publication statusPublished - 24 Oct 2016
Event23rd ACM Conference on Computer and Communications Security, CCS 2016 - Vienna, Austria
Duration: 24 Oct 201628 Oct 2016


Conference23rd ACM Conference on Computer and Communications Security, CCS 2016


  • Multi-party computation
  • Oblivious transfer


Dive into the research topics of 'MASCOT: Faster Malicious Arithmetic Secure Computation with Oblivious Transfer'. Together they form a unique fingerprint.
  • IRIS - MPC

    Smart, N. P.


    Project: Research

Cite this