Revision #2 Authors: Ilan Komargodski, Yael Tauman Kalai

Accepted on: 10th May 2018 22:05

Downloads: 984

Keywords:

We show how to compress communication in selection protocols, where the goal is to agree on a sequence of random bits using only a broadcast channel. More specifically, we present a generic method for converting any selection protocol, into another selection protocol where each message is short while preserving the same number of rounds, the same output distribution, and the same resilience to error. Assuming that the output of the protocol lies in some universe of size $M$, in our resulting protocol each message consists of only $polylog(M,n,d)$ many bits, where $n$ is the number of parties and $d$ is the number of rounds. Our transformation works in the presence of either static or adaptive Byzantine faults.

As a corollary, we conclude that for any $poly(n)$-round collective coin-flipping protocol, leader election protocol, or general selection protocols, messages of length $polylog(n)$ suffice (in the presence of either static or adaptive Byzantine faults).

Revision #1 Authors: Ilan Komargodski, Yael Tauman Kalai

Accepted on: 4th August 2015 12:22

Downloads: 1031

Keywords:

We show how to compress communication in distributed protocols in which parties do not have private inputs. More specifically, we present a generic method for converting any protocol in which parties do not have private inputs, into another protocol where each message is "short" while preserving the same number of rounds, the same communication pattern, the same output distribution, and the same resilience to error. Assuming that the output lies in some universe of size $M$, in our resulting protocol each message consists of only $\polylog(M,n,d)$ many bits, where $n$ is the number of parties and $d$ is the number of rounds. Our transformation works in the full information model, in the presence of either static or adaptive Byzantine faults.

In particular, our result implies that for any such $\poly(n)$-round distributed protocol which generates outputs in a universe of size $\poly(n)$, long messages are not needed, and messages of length $\polylog(n)$ suffice. In other words, in this regime, any distributed task that can be solved in the $\mathcal{LOCAL}$ model, can also be solved in the $\mathcal{CONGEST}$ model with the same round complexity and security guarantees.

As a corollary, we conclude that for any $\poly(n)$-round collective coin-flipping protocol, leader election protocol, or selection protocols, messages of length $\polylog(n)$ suffice (in the presence of either static or adaptive Byzantine faults).

A simplification of the proof.

TR15-092 Authors: Yael Tauman Kalai, Ilan Komargodski

Publication: 8th June 2015 03:43

Downloads: 1584

Keywords:

We show how to compress communication in distributed protocols in which parties do not have private inputs. More specifically, we present a generic method for converting any protocol in which parties do not have private inputs, into another protocol where each message is "short" while preserving the same number of rounds, the same communication pattern, the same output distribution, and the same resilience to error. Assuming that the output lies in some universe of size $M$, in our resulting protocol each message consists of only $\polylog(M,n,d)$ many bits, where $n$ is the number of parties and $d$ is the number of rounds. Our transformation works in the full information model, in the presence of either static or adaptive Byzantine faults.

In particular, our result implies that for any such $\poly(n)$-round distributed protocol which generates outputs in a universe of size $\poly(n)$, long messages are not needed, and messages of length $\polylog(n)$ suffice. In other words, in this regime, any distributed task that can be solved in the $\mathcal{LOCAL}$ model, can also be solved in the $\mathcal{CONGEST}$ model with the same round complexity and security guarantees.

As a corollary, we conclude that for any $\poly(n)$-round collective coin-flipping protocol, leader election protocol, or selection protocols, messages of length $\polylog(n)$ suffice (in the presence of either static or adaptive Byzantine faults).