Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Special Topics on Privacy and Public Auditability — Event 6

Event #6's theme: Community Efforts on Advanced Cryptographic Techniques

Featured topics: FHE, MPC, ZKP, ABE, Threshold Crypto, PAKE.

Structure: Welcome/introduction; 6 invited talks; panel conversation.

Date and time: July 25th (Tuesday), 2023, 09:30–15:00 EDT.

Location: Virtual event (video conference).

Attendance: Open and free to the public, upon registration.

Format: Webinar (presenters can share video and audio; attendees can use text for questions and comments).


Welcome and introduction

1st session of invited talks. Session chair: René Peralta (NIST)

2nd session of invited talks. Session chair: Lily Chen (NIST)

3rd session of invited talks. Session chair: Angela Robinson (NIST)

Panel conversation. Session chair: Luís Brandão (NIST/Strativia)
  • 14:00–15:00+: Panel conversation on Community Efforts on Advanced Cryptography.  Panelists (one speaker from each previous talk): Kurt Rohloff (Duality Technologies), Andrei Lapets (MPC Alliance and Magnite), Mary Maller (Ethereum Foundation and PQShield), Giovanni Bartolomeo (CNIT), Nick Sullivan (Cryptography Consulting LLC), Rosario Cammarota (Intel Labs). [Slide] [Video to appear]

Number of registrations (not counting the speakers and moderators)

  • 326 registrations, of which 26 were during the event.
  • Across 33 countries: US (199), UK (19), India (18), Canada (16), Netherlands (13), Germany (11), Singapore (6), ...
  • By email address domain: 58 with a country top-level domain, 32 .gov, 25 .edu, 8 .org, 49 from popular personal email providers, 134 from other .com, 20 from others

Number of distinct participants logged in during the event

  • 198 distinct participants in real time (including speakers and moderators)
  • 7 external speakers: (for invited talks)
  • 5 internal: host / welcomer / session chairs
  • 186 attendees, of which 178 were logged in for more than 10 min, with an average of 3h18m logged in (within the window 09:30–15:15 EDT)

List of invited external speakers (ordered alphabetically by last name)

  • Giovanni Bartolomeo (Consorzio Nazionale Interuniversitario per le Telecomunicazioni, Italy)
  • Rosario Cammarota (Intel Labs, USA)
  • Andrei Lapets (MPC Alliance and Magnite)
  • Mary Maller (Ethereum Foundation and PQShield, UK)
  • Paola de Perthuis (Cosmian and École Normale Supérieure de Paris, France)
  • Kurt Rohloff (Duality Technologies, USA)
  • Nick Sullivan (Cryptography Consulting LLC, USA)

List of bios (provided by the speakers/panelists)

  • Giovanni Bartolomeo: PhD in Telecom Engineering, currently serving as an IT Officer at the Italian Government. Research affiliate at Consorzio Nazionale Interuniversitario per le Telecomunicazioni, he has been team leader in ETSI STF529 and member of ETSI TC CYBER, ETSI TC HF, ETSI STF342, OASIS XDI/XRI TC. His main research interests include semantics, data analytics, cybersecurity, data privacy.
  • Rosario Cammarota, "Ro," is a Principal Engineer and Chief Scientist of Privacy-Enhanced Computing Research in the Emerging Security Lab at Intel Labs. He leads Privacy-Enhanced Computing Research, with a focus on the theory, application, and standardization of processing encrypted data.
  • Dr. Andrei Lapets is VP of Engineering and Applied Cryptography at Magnite, focused on adapting secure MPC and homomorphic encryption to digital advertising, and an MPC Alliance board member. He was formerly Associate Professor of the Practice in Computer Science at Boston University, where he led and co-led NSF- and IARPA-sponsored MPC research and deployment efforts, with an emphasis on usability and web-based delivery.
  • Mary Maller is a researcher in cryptography and an expert in zero-knowledge proofs. She works at the Ethereum Foundation and at PQShield. She is also an Editor and Contributor of the ZKProof effort on standardising zero-knowledge.
  • Paola de Perthuis: PhD student in Cryptography at Cosmian and the École Normale Supérieure (ENS) of Paris. Previous research engineer at the LIP6 Computer Science Department in Paris, generalist Engineer from Centrale Lyon, with additional Master's in Data Science. Member of ETSI in the CYBER Quantum-Safe Cryptography (QSC) group (since mid-2023). Research interests: Verifiable Computations over Encrypted Data, Functional Encryption, Public-Key Encryption.
  • Dr. Kurt Rohloff is the Co-founder and CTO of Duality Technologies, a start-up focused on developing privacy technologies including fully homomorphic encryption to protect collaboration on privacy-sensitive data.  He is a co-founder of the OpenFHE open-source software library for Fully Homomorphic Encryption.  He has been supporting DoD and DARPA efforts to develop and apply fully homomorphic encryption since 2010.
  • Nick Sullivan is an independent security consultant and Principal at Cryptography Consulting LLC. He is known for his work in security and cryptography at Apple and Cloudflare, having published dozens of peer-reviewed papers and RFCs. He also volunteers as Co-Chair of the Crypto Forum Research Group (CFRG) and on the steering committee at the Real World Crypto conference.

Internal host, welcomer, and session chairs

About STPPA: In the "Special Topics on Privacy and Public Auditability" series, the NIST privacy-enhancing cryptography (PEC) project hosts talks on various interconnected topics related to privacy and public auditability. A main goal of the STPPA series is to gather reference material about "PEC tools", which may facilitate future reflections on aspects of standardization and of development of recommendations/guidelines about advanced cryptography, namely for uses related to privacy and public auditability. Each event intends to convey basic technical background, incite curiosity, suggest research questions and discuss applications, with an emphasis on the role of cryptographic tools.

Selected Presentations
July 25, 2023 Type
9:30 AM STPPA #6 Welcome and Introduction
Matthew Scholl - NIST
Luís T. A. N. Brandão - NIST/Strativia

Abstract. Welcome to STPPA#6: the 6th event of the Special Topics on Privacy and Public Auditability (STPPA)! The event has the them "Community Efforts on Advanced Cryptographic Techniques", and it includes invited talks about various efforts (such as by HomomorphicEncryption, MPC Alliance, ZKProof, ETSI, CFRG and ISO/IEC) for standardization or development of reference material about advanced cryptographic techniques (such as FHE, MPC, ZKP, ABE, PAKE and threshold cryptography).This introductory session includes two parts:

  1. Welcoming from the Chief of the Computer security Division, including some words about the NIST-ITL context and interest in emerging privacy-enhancing cryptography.
  2. A brief introduction of the STPPA series context, in the scope of the NIST project on privacy-enhancing cryptography (PEC), and more specific notes about the STPPA6 event, including the alignment of its topics with the upcoming NIST First Call for Multi-Party Threshold Schemes.

[Slides] [Video]

10:00 AM The Community and the Applied Fully Homomorphic Encryption Standardization Efforts
Kurt Rohloff - Duality Technologies

Abstract. In this talk we will introduce the community. was started as an industry consortium to jump-start the standardization process for Fully Homomorphic Encryption, with participation from large industry, start-ups, government and academia.  The community hosts biannual meetings that have created international standards for the FHE protocols and their security settings.  These early efforts have resulted in widely cited and generally agreed-upon security settings for FHE, and has heavily influenced the ISO in their drafting of an FHE standard.

[Slides] [Video]

10:30 AM Industry Adoption and Standardization Efforts by the MPC Alliance and its Members
Andrei Lapets - MPC Alliance and Magnite

Abstract. This talk introduces the MPC Alliance, a consortium of organizations focusing on the development of secure multi-party computation (MPC) and its application to use cases within and across industries. Most member organizations fall into two areas of emphasis (security and data privacy), with some representing specific verticals of application and others providing more general-purpose software, services, and infrastructure. The presentation reviews past activities of the MPC Alliance as a whole (including survey and feedback efforts, conferences, and other engagements), as well as the work and contributions of individual member organizations within standards-setting programs and industry bodies. The value of MPC standardization is emphasized, with MPC being vetted -- and in some cases being deployed in production -- within multiple industries.

[Slides] [Video]

11:15 AM The ZKProof Process Towards Standardising Zero-Knowledge
Mary Maller - Ethereum Foundation and PQShield

Abstract. ZKProof is a global movement to standardise and mainstream advanced cryptography by building a community-driven trust ecosystem.  In this talk I discuss the applications, structure and community behind zero-knowledge proofs.

[Slides] [Video]

11:45 AM Cryptographic access control by attributes — ongoing standards development at ETSI
Giovanni Bartolomeo - Consorzio Nazionale Interuniversitario per le Telecomunicazioni
Paola de Perthuis - Cosmian and École Normale Supérieure de Paris

Abstract: Over the last two decades, Attribute-Based Encryption (ABE in short) has been raising academic and industrial interest because of its capability of going beyond the "unveil all or nothing” approach which traditional public key cryptography offers. With the aim of facilitating conformance and interoperability of real-world deployments, in 2018 ETSI — the EU-recognized standards Body for telecommunications, broadcasting and electronic communications — released the first technical specifications proposing ABE as a technique to implement distributed, fine-grained attribute-based access control via cryptography. Addressing some potential use cases, this talk will illustrate ETSI TS 103 532, which standardizes four well-consolidated ciphertext policy and key policy ABE schemas, with two different levels of security and two different functionalities (key exchange/message encryption). The talk will address the main achievements, known limitations and challenges at the present time. In parallel to standardization of more traditional Attribute-Based Encryption schemas, the talk will also introduce the work of ETSI TC CYBER QSC group on solutions using attribute subset covers in pre and post-quantum hybridized key encapsulation mechanisms, which prove to be very efficient and effective when not all combinations of attributes are required in the encryption or key policies.

[Slides] [Video]

12:45 PM Specifying Cryptography for use in Internet Protocols at the CFRG: Current Efforts
Nick Sullivan - Cryptography Consulting LLC

Abstract. This talk focuses on the latest work on cryptography for use in internet protocols by the Cryptographic Forum Research Group (CFRG), a research group within the Internet Research Task Force (IRTF), a sister organization to the Internet Engineering Task Force (IETF). The presentation summarizes previously published RFCs by the group and ongoing work on advanced cryptographic techniques such as pairing-friendly curves, threshold encryption, and Password-Authenticated Key Exchanges (PAKEs). This talk emphasizes the practical applications and benefits of these techniques in enhancing security, confidentiality, and integrity in internet protocols. This talk emphasizes the importance of peer-reviewed standards and showcases lessons learned by the CFRG. Attendees will gain insights into the cutting-edge work being done in advanced cryptography for internet protocols and the impact on securing digital communications.

[Slides] [Video]

1:15 PM Efforts on Standardizing Fully Homomorphic Encryption at ISO/IEC
Rosario Cammarota - Intel Labs

Abstract. Fully Homomorphic Encryption (FHE) empowers users to delegate computation to the cloud. It allows the processing of encrypted inputs without the need for decryption and returns encrypted outputs to intended recipients. However, the industry's adoption of FHE has been slow due to several reasons. First, processing encrypted data incurs a significant performance tax, even for simple operations. Cipher operations can be several orders of magnitude slower than clear-text operations on existing hardware. Second, there is a shortage of automation tools for translating data and applications to enable FHE. Third, there is a lack of standards and best practices for secure FHE deployment, particularly in combination with other confidential computing techniques. In this talk, we will concentrate on the progress made in standardizing FHE under the guidance of ISO/IEC JTC1 SC27, the Joint Technical Committee of the International Organization for Standardization and the International Electrotechnical Commission, since its inception.

2:00 PM Panel conversation about promotion of advanced cryptography
Kurt Rohloff - Duality Technologies
Andrei Lapets - MPC Alliance and Magnite
Mary Maller - Ethereum Foundation and PQShield
Giovanni Bartolomeo - Consorzio Nazionale Interuniversitario per le Telecomunicazioni
Nick Sullivan - Cryptography Consulting LLC
Rosario Cammarota - Intel Labs
Luís T. A. N. Brandão - NIST/Strativia

Abstract. In this panel conversation at STPPA#6, we gather a speaker from each of the six invited talks to follow up with various questions, answers and comments about promotion of advanced cryptography. Addressed topics may include: lessons learned, development of reference material and standards, applications for privacy and auditability, adoption plans, vision for the future.




Event Details

Starts: July 25, 2023 - 09:30 AM EDT
Ends: July 25, 2023 - 03:00 PM EDT
2023-July-25th, Virtual

Format: Virtual Type: Webinar

Attendance Type: Open to public
Audience Type: Industry,Government,Academia,Other

Parent Project

See: Privacy-Enhancing Cryptography

Related Topics

Security and Privacy: cryptography

Created June 15, 2023, Updated August 08, 2023