基于可信执行环境的安全多方计算协议

doi:10.3969/j.issn.1671-1122.2025.09.011

信息网络安全 ›› 2025, Vol. 25 ›› Issue (9): 1439-1446.doi: 10.3969/j.issn.1671-1122.2025.09.011

基于可信执行环境的安全多方计算协议

拾以娟¹, 周丹平¹, 范磊², 刘茵³()

1.江南计算技术研究所，无锡 214128
2.上海交通大学网络空间安全学院，上海 200240
3.数据工程与先进计算国家重点实验室，无锡 214083

收稿日期:2025-06-15 出版日期:2025-09-10 发布日期:2025-09-18
通讯作者: 刘茵 6223152003@stu.jiangnan.edu.cn
作者简介:拾以娟（1977—），女，江苏，高级工程师，博士，主要研究方向为信息安全、数据安全|周丹平（1970—），男，江西，正高级工程师，本科，CCF会员，主要研究方向为网络空间安全|范磊（1975—），男，上海，副教授，博士，主要研究方向为密码协议、网络安全|刘茵（1990—），女，山东，工程师，硕士研究生，主要研究方向为信息安全、人工智能

Secure Multi-Party Computation Protocol Based on Trusted Execution Environment

SHI Yijuan¹, ZHOU Danping¹, FAN Lei², LIU Yin³()

1. Jiangnan Institute of Computing Technology, Wuxi 214128, China
2. School of Cyber Science and Engineering, Shanghai Jiao Tong University, Shanghai 200240, China
3. State Key Laboratory of Mathematical Engineering and Advanced Computing, Wuxi 214083, China

Received:2025-06-15 Online:2025-09-10 Published:2025-09-18

摘要/Abstract

摘要：

随着信息系统中的数据价值日益凸显，如何在充分挖掘数据价值的同时保障数据隐私安全成为关键问题。安全多方计算技术能够在双方不直接共享数据的条件下实现协同计算，是实现数据隐私保护的重要技术之一。然而，传统的安全多方计算技术依赖于复杂的密码协议，通信和计算复杂度均较高，严重制约了其在实际场景中的应用落地。文章基于可信执行环境的原生安全机制，提出一种外包型安全多方计算协议。该协议不仅满足隐私性、正确性和输入独立性等安全要求，还具有较高的运行效率和可扩展性，为构建实用的安全多方计算系统提供了一种技术路径，能够有效降低安全多方计算的实际部署成本与应用门槛，对推动隐私计算产业化具有重要实践价值。

关键词: 隐私计算, 可信执行环境, 安全多方计算

Abstract:

As data becomes increasingly valuable in information systems, privacy protection must be addressed alongside data utilization. Secure multi-party computation enables collaborative computation without direct data sharing between parties, serving as a crucial technology for privacy-preserving. Traditional multi-party computation relies on complex cryptographic protocols, incurring high communication and computational overheads that hinder practical deployment. This paper proposed an outsourced multi-party computation protocol based on the native security mechanisms of trusted execution environment. It not only ensures security properties such as privacy, correctness, and input independence, but also achieves high efficiency and scalability. The proposed protocol offers a new technical path for secure and practical multi-party computation systems, and lowers deployment barriers. It provides the practical meaning for the privacy computing.

Key words: privacy computing, trusted execution environment, secure multi-party computation

中图分类号:

TP309

拾以娟, 周丹平, 范磊, 刘茵. 基于可信执行环境的安全多方计算协议[J]. 信息网络安全, 2025, 25(9): 1439-1446.

SHI Yijuan, ZHOU Danping, FAN Lei, LIU Yin. Secure Multi-Party Computation Protocol Based on Trusted Execution Environment[J]. Netinfo Security, 2025, 25(9): 1439-1446.

图/表 3

参考文献 22

[1]	FENG Dengguo, ZHANG Min, LI Hao. Big Data Security and Privacy Protection[J]. Chinese Journal of Computers, 2014, 37(1): 246-258.
	冯登国, 张敏, 李昊. 大数据安全与隐私保护[J]. 计算机学报, 2014, 37(1): 246-258.
[2]	TANG Chunming, LIN Xuhui. Protocol of Privacy-Preserving Set Intersection Computation[J]. Netinfo Security, 2020, 20(1): 9-15.
	唐春明, 林旭慧. 隐私保护集合交集计算协议[J]. 信息网络安全, 2020, 20(1): 9-15.
[3]	FENG Dengguo, YANG Kang. Concretely Efficient Secure Multi-Party Computation Protocols: Survey and More[EB/OL]. (2022-06-14)[2025-06-02]. https://doaj.org/article/5cca8bd884a04430a75a15f52e2edd5c.
[4]	AGRAWAL N, SHAHIN S A, KUSNER M J, et al. QUOTIENT: Two-Party Secure Neural Network Training and Prediction[C]// ACM. 2019 ACM SIGSAC Conference on Computer and Communications Security. New York: ACM, 2019: 1231-1247.
[5]	GARG S, JAIN A, MUKHERJEE P, et al. Scalable Multiparty Computation from Non-Linear Secret Sharing[C]// Springer. CRYPTO 2024. Heidelberg: Springer, 2024: 384-417.
[6]	YAO A C. Protocols for Secure Computations[C]// IEEE. 23rd Annual Symposium on Foundations of Computer Science (SFCS 1982). New York: IEEE, 1982: 160-164.
[7]	YAO A C. How to Generate and Exchange Secrets[C]// IEEE. 27th Annual Symposium on Foundations of Computer Science (SFCS 1986). New York: IEEE, 1986: 162-167.
[8]	EVANS D, KOLESNIKOV V, ROSULEK M. A Pragmatic Introduction to Secure Multi-Party Computation[M]. Boston: Now Foundations and Trends, 2018.
[9]	CHOI J I, BUTLER K R B. Secure Multiparty Computation and Trusted Hardware: Examining Adoption Challenges and Opportunities[J]. Security and Communication Networks, 2019, 64(5): 18-21.
[10]	SABT M, ACHEMLAL M, BOUABDALLAH A. Trusted Execution Environment: What It is, and What It is Not[C]// IEEE. 2015 IEEE Trustcom/BigDataSE/ISPA. New York: IEEE, 2015: 57-64.
[11]	KÜÇÜK K A, PAVERD A, MARTIN A, et al. Exploring the Use of Intel SGX for Secure Many-Party Applications[C]// ACM. The 1st Workshop on System Software for Trusted Execution. New York: ACM, 2016: 1-6.
[12]	ANATI I, GUERON S, JOHNSON S, et al. Innovative Technology for CPU Based Attestation and Sealing[C]// ACM. 2nd International Workshop on Hardware and Architectural Support for Security and Privacy. New York: ACM, 2013: 1-7.
[13]	PASS R, SHI E, TRAMÈR F. Formal Abstractions for Attested Execution Secure Processors[C]// Springer. EUROCRYPT 2017. Heidelberg: Springer, 2017: 260-289.
[14]	CANETTI R. Universally Composable Security: A New Paradigm for Cryptographic Protocols[C]// IEEE. The 42nd IEEE Symposium on Foundations of Computer Science. New York: IEEE, 2001: 136-145.
[15]	CHOUDHURI A R, GREEN M, JAIN A, et al. Fairness in an Unfair World: Fair Multiparty Computation from Public Bulletin Boards[C]// ACM. 2017 ACM SIGSAC Conference on Computer and Communications Security. New York: ACM, 2017: 719-728.
[16]	GARFINKEL T, PFAFF B, CHOW J, et al. Terra: A Virtual Machine-Based Platform for Trusted Computing[C]// ACM. The Nineteenth ACM Symposium on Operating Systems Principles. New York: ACM, 2003: 193-206.
[17]	VASUDEVAN A, OWUSU E, ZHOU Zongwei, et al. Trustworthy Execution on Mobile Devices: What Security Properties Can My Mobile Platform Give Me[C]// Springer. Trust and Trustworthy Computing. Heidelberg: Springer, 2012: 159-178.
[18]	GlobalPlatform. TEE System Architecture[EB/OL]. (2022-05-16)[2025-06-02]. https://globalplatform.org/wp-content/uploads/2022/05/GPD_SPE_009-GPD_TEE_SystemArchitecture_v1.3_PublicRelease_signed.pdf.
[19]	LI Xiaoguo, ZHAO Bowen, YANG Guomin, et al. A Survey of Secure Computation Using Trusted Execution Environments[EB/OL]. (2023-02-23)[2025-06-02]. https://doi.org/10.48550/arXiv.2302.12150.
[20]	ARBAUGH W A, FARBER D J, SMITH J M. A Secure and Reliable Bootstrap Architecture[C]// IEEE. 1997 IEEE Symposium on Security and Privacy. New York: IEEE, 1997: 65-71.
[21]	BARTUSEK J, BERGAMASCHI T, KHOURY S, et al. On the Communication Complexity of Secure Multi-Party Computation with Aborts[C]// ACM. The 43rd ACM Symposium on Principles of Distributed Computing. New York: ACM, 2024: 480-491.
[22]	NOAH A, OKUNOLA A. A Comparative Analysis of Homomorphic Encryption and Secure Multi-Party Computation for Preserving Data Privacy in Cloud-Based Financial Services Authors[EB/OL]. (2025-05-28)[2025-06-02]. https://www.researchgate.net/publication/392165415_A_Comparative_Analysis_of_Homomorphic_Encryption_and_Secure_Multi-Party_Computation_for_Preserving_Data_Privacy_in_Cloud-Based_Financial_Services.

基于可信执行环境的安全多方计算协议

Secure Multi-Party Computation Protocol Based on Trusted Execution Environment

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 3

参考文献 22

相关文章 15

编辑推荐

Metrics

本文评价

[1]	问闻, 刘钦菊, 邝琳, 任雪静. 隐私保护体系下网络威胁情报共享的研究现状和方案设计[J]. 信息网络安全, 2024, 24(7): 1129-1137.
[2]	孙钰, 熊高剑, 刘潇, 李燕. 基于可信执行环境的安全推理研究进展[J]. 信息网络安全, 2024, 24(12): 1799-1818.
[3]	王南, 袁也, 杨浩然, 文周之, 苏明, 刘晓光. 环保大数据在区块链中的隐私计算[J]. 信息网络安全, 2024, 24(10): 1515-1527.
[4]	唐雨, 张驰. 一种基于Intel SGX的信息中心网络隐私保护方案[J]. 信息网络安全, 2023, 23(6): 55-65.
[5]	李增鹏, 王梅, 陈梦佳. 新形态伪随机函数研究[J]. 信息网络安全, 2023, 23(5): 11-21.
[6]	孙永奇, 宋泽文, 朱卫国, 赵思聪. 基于安全多方计算的图像分类方法[J]. 信息网络安全, 2023, 23(11): 27-37.
[7]	KELEKET GOMA Christy Junior Yannick, 易文哲, 王鹃. 一种基于SGX的轻量Fabric链码可信执行环境构建方法[J]. 信息网络安全, 2022, 22(7): 73-83.
[8]	尤玮婧, 刘丽敏, 马悦, 韩东. 基于安全硬件的云端数据机密性验证方案[J]. 信息网络安全, 2020, 20(12): 1-8.
[9]	唐春明, 林旭慧. 隐私保护集合交集计算协议[J]. 信息网络安全, 2020, 20(1): 9-15.
[10]	刘志娟, 高隽, 丁启枫, 王跃武. 移动终端TEE技术进展研究[J]. 信息网络安全, 2018, 18(2): 84-91.
[11]	陈付龙, 张紫阳, 王涛春, 谢冬. 一种基于联络信号的物联网安全身份认证方法[J]. 信息网络安全, 2018, 18(11): 40-48.
[12]	范冠男, 董攀. 基于TrustZone的可信执行环境构建技术研究[J]. 信息网络安全, 2016, 16(3): 21-27.
[13]	陈莉;林柏钢. 基于分布式线性方程组求解的安全多方计算协议[J]. , 2013, 13(9): 0-0.
[14]	刘镪;唐春明;胡杏;张永强. 多租赁用户模型下有效安全外包计算[J]. , 2013, 13(9): 0-0.
[15]	封化民;孙轶茹;孙莹. 基于身份认证加密的匿名私钥共享方案[J]. , 2013, 13(11): 0-0.