PICCO is a general-purpose compiler that implements a hybrid secret-sharing protocol. It extends C with public and private keywords. The main software contribution are a source-to-source compiler from their extension of C to a native C implementation of MPC and an IO utility that produces and reconstructs secret shared data.
The MPC protocol uses an information-theoretic primitive for multiplication and custom primitives (using cryptographic assumptions) for other operations. It supports an arbitrary number of parties and requires an honest majority.
PICCO supports pointers to private data and dynamic memory allocation using C-like syntax. We were unable to implement programs using several of their secure types, including booleans or 1-bit integers and fixed-point numbers.
PICCO was developed by Yihua Zhang, Aaron Steele, and Marina Blanton at the University of Notre Dame.
Our recommendation: PICCO is appropriate for developers and academics who require a true multi-party implementation. In particular, it provides a flexible computation configuration.
Create a Docker image. This will take a moment. You only have to do this once.
$ docker build -t picco .
Spin up a Docker container from the image.
$ docker run -it --rm picco
We've stored our examples in /root/source. To run an example, go to the
appropriate directory.
$ cd <ex>
$ ls
makefile <ex>.c <ex>.cpp secure_servers smc-compute smc_config util_config
$ ls secure_servers
keys <ex> run_config share1 share2 share3
We have done the following steps (see install.sh for details)
- Converted PICCO code (
<ex>.c) to native C++ (<ex>.cpp) - Produced secure executable (
secure_servers/<ex>) - Generated key pairs for three servers (
secure_servers/keys/)
First, you must generate input and shares for the correct number of servers
(we use 3 computation servers, 1-2 input parties, and 1 output party in our
examples. These parameters are set in the smc_config file).
The PICCO developers describe the correct input file format in their README.
We also provide a script that can generate inputs for mult3 and innerprod (generating inputs for xtabs is currently not supported).
Run this script by executing cd /root/source/; python3 geninput.py -e <ex>.
This generates input values for <ex> and stores them into <ex>/data/input.<ID>.dat.
These input values need to be split into shares.
PICCO's authors provide a convenient command for this.
Change directories to the example you want to execute (cd <ex>) and run:
$ picco-utility -I <input ID> <input file> utility_config secure_servers/share
For example, in order to generate input shares for the mult3 example, the following steps are necessary:
cd /root/source/
python3 geninput.py -e mult3
cd mult3
picco-utility -I 1 data/input.A.dat utility_config secure_server/share
To run the computation, enter the secure_server directory and start the servers. If you get an error (ERROR, on binding, Error connecting 111 - Connection refused , ERROR, connecting to node: Connection refused) or if the program hangs, kill the processes and try again. Note that order matters here: the highest-numbered server must be started first.
$ cd secure_server
$ ./mult3 3 ../run_config keys/private3.pem 1 1 share3 output &
$ ./mult3 2 ../run_config keys/private2.pem 1 1 share2 output &
$ ./mult3 1 ../run_config keys/private1.pem 1 1 share1 output &
Then, share a secure seed to run the computation. Technically you have to do this for each server. In this setup, all servers are running on the same host so you only have to run it once.
$ picco-seed ../run_config ../utility_config
Finally, reconstruct the secret-shared outputs for each output party (in our examples, there is only one)
$ picco-utility -O 1 output ../utility_config result
The result of the computation is in the file result.
We provide a script that performs the steps for running examples for you. In order to run an example, enter
cd /root/source
./run_example.sh <ex>
The contents of run_example.sh should also give you an idea of the steps needed to run programs in PICCO.
We've hardcoded a configuration for our sample programs, but PICCO is configurable. They include extensive documentation on configuring, compiling, and running examples in their README