TY - GEN
T1 - Variance
T2 - 3rd IEEE International Conference on Blockchain, Blockchain 2020
AU - Holmes, Joshua
AU - Dagher, Gaby G.
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/11
Y1 - 2020/11
N2 - Secure multiparty protocols are useful tools for parties wishing to jointly compute a function while keeping their input data secret. The millionaires' problem is the first secure two-party computation problem, where the goal is to securely compare two private numbers without a trusted third-party. There have been several solutions to the problem; however, these solutions are either insecure in the malicious model or cannot verify the validity of inputs. In this paper, we introduce Variance, a privacy-preserving two-party protocol for solving Yao's millionaires' problem in a Bitcoin setting, in which each party controls several Bitcoin accounts (single and multi signature addresses) and they want to find out who owns more bitcoins without revealing (1) how many accounts they own or the addresses associated with their accounts, (2) the balance of any of their accounts, and (3) their total wealth of bitcoins while assuring the other party that they are not claiming more bitcoin than they possess. We utilize zero knowledge proofs to provide a solution to the problem, and subsequently prove that Variance is secure against active adversaries in the malicious model.
AB - Secure multiparty protocols are useful tools for parties wishing to jointly compute a function while keeping their input data secret. The millionaires' problem is the first secure two-party computation problem, where the goal is to securely compare two private numbers without a trusted third-party. There have been several solutions to the problem; however, these solutions are either insecure in the malicious model or cannot verify the validity of inputs. In this paper, we introduce Variance, a privacy-preserving two-party protocol for solving Yao's millionaires' problem in a Bitcoin setting, in which each party controls several Bitcoin accounts (single and multi signature addresses) and they want to find out who owns more bitcoins without revealing (1) how many accounts they own or the addresses associated with their accounts, (2) the balance of any of their accounts, and (3) their total wealth of bitcoins while assuring the other party that they are not claiming more bitcoin than they possess. We utilize zero knowledge proofs to provide a solution to the problem, and subsequently prove that Variance is secure against active adversaries in the malicious model.
KW - Bitcoin
KW - blockchain
KW - proof of asset
UR - http://www.scopus.com/inward/record.url?scp=85099201680&partnerID=8YFLogxK
U2 - 10.1109/Blockchain50366.2020.00016
DO - 10.1109/Blockchain50366.2020.00016
M3 - Conference contribution
AN - SCOPUS:85099201680
T3 - Proceedings - 2020 IEEE International Conference on Blockchain, Blockchain 2020
SP - 62
EP - 71
BT - Proceedings - 2020 IEEE International Conference on Blockchain, Blockchain 2020
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 2 November 2020 through 6 November 2020
ER -