Inferensys

Glossary

Multi-Party Computation (MPC)

Multi-party computation (MPC) is a cryptographic protocol that enables multiple parties to jointly compute a function over their private inputs while keeping those inputs completely secret from one another.
Cinematic overhead of a WeWork creative suite room with multiple curved monitors showing AI decision dashboards, executives in casual attire reviewing data, dramatic pendant lighting.
DISTRIBUTED CRYPTOGRAPHIC PROTOCOL

What is Multi-Party Computation (MPC)?

Multi-Party Computation (MPC) is a subfield of cryptography that enables a group of mutually distrusting parties to jointly compute a function over their private inputs while guaranteeing that no party learns anything beyond the final output.

Multi-Party Computation (MPC) is a cryptographic protocol where multiple parties compute a function over their private data without revealing individual inputs. Unlike Homomorphic Encryption, which protects data from a single server, MPC distributes trust by splitting secret data into mathematically randomized shares held by non-colluding nodes, ensuring no single entity can reconstruct the original information.

In modern privacy-preserving machine learning, Hybrid MPC-HE Protocols are critical for secure inference. Linear layers are processed efficiently using Homomorphic Encryption, while non-linear activation functions are evaluated using MPC protocols like Garbled Circuits or Secret Sharing. This architecture prevents the model host from seeing user data and prevents the user from extracting proprietary model weights.

CRYPTOGRAPHIC PRIMITIVES

Key Features of MPC

Multi-Party Computation (MPC) enables mutually distrusting parties to jointly compute a function over their private inputs without revealing those inputs to one another. The following cards break down the core architectural properties, security models, and operational mechanisms that define modern MPC protocols.

01

Secret Sharing

The foundational building block of most MPC protocols. A private input value is split into mathematically random shares distributed among computing parties. No single share reveals anything about the original input; the secret can only be reconstructed when a threshold of shares is combined.

  • Additive sharing: A value x is split into n random shares that sum to x modulo a prime field.
  • Shamir's Secret Sharing: Uses polynomial interpolation; any t+1 out of n shares can reconstruct the secret, while t or fewer reveal nothing.
  • Shares enable computation because parties can perform local operations on their fragments that, when recombined, yield the correct result of the joint function.
t+1 of n
Threshold Reconstruction
02

Garbled Circuits

A two-party MPC protocol where one party, the garbler, encrypts a boolean circuit representing the target function. The other party, the evaluator, obliviously evaluates the encrypted circuit using their own private inputs without learning the circuit's internal wires.

  • The garbler assigns two random cryptographic labels to each wire (representing 0 and 1).
  • Each logic gate is replaced with an encrypted truth table that only reveals the correct output label given valid input labels.
  • Oblivious Transfer (OT) is used to securely deliver the evaluator's input labels without the garbler learning which labels were selected.
  • Highly efficient for functions expressible as shallow boolean circuits; often used in Hybrid MPC-HE Protocols for non-linear operations.
Constant Round
Communication Complexity
03

Honest-Majority vs. Dishonest-Majority

MPC protocols are categorized by their adversarial model, which defines how many corrupted parties the system can tolerate while maintaining security guarantees.

  • Honest-Majority: Assumes a strict majority of computing parties follow the protocol correctly. Enables extremely fast, information-theoretically secure protocols using secret sharing. Typically tolerates up to n/2 passive corruptions or n/3 active corruptions.
  • Dishonest-Majority: Assumes an adversary may corrupt all but one party. Requires computationally secure primitives like garbled circuits or Threshold FHE. Significantly higher computational overhead but provides security under the strongest threat models.
  • The choice directly impacts latency, throughput, and the trust assumptions required of the deployment environment.
n-1
Max Corruptions (Dishonest)
04

Input Privacy & Guaranteed Output Delivery

MPC provides two critical security properties that distinguish it from other privacy technologies. Input privacy ensures that no party learns anything about another party's private data beyond what is inferable from the designated function output.

  • Guaranteed Output Delivery (GOD): The strongest correctness guarantee. All honest parties are assured of receiving the correct computation result, regardless of adversarial behavior by corrupted parties.
  • Fairness: A weaker property ensuring that if any party learns the output, all parties learn it. Prevents an adversary from aborting the protocol after receiving the result while denying it to honest participants.
  • Abort security: The weakest model; a corrupted party can force the protocol to halt without output, but cannot violate input privacy or cause incorrect results to be accepted.
Information-Theoretic
Privacy Guarantee (Honest-Maj)
MULTI-PARTY COMPUTATION

Frequently Asked Questions

Clear, technically precise answers to the most common questions about how Multi-Party Computation secures distributed computation and enables privacy-preserving AI.

Multi-Party Computation (MPC) is a cryptographic protocol that enables a group of mutually distrusting parties to jointly compute a function over their private inputs without revealing those inputs to one another. The protocol works by first transforming the function into a boolean or arithmetic circuit. Each party then secretly shares its private input with the others using a scheme like Shamir's Secret Sharing or additive secret sharing, ensuring no single party can reconstruct the original value. The parties then interactively evaluate the circuit gate-by-gate, exchanging messages that are computationally indistinguishable from random, until the final output is revealed. A canonical example is the Yao's Millionaires' Problem, where two millionaires determine who is richer without disclosing their actual net worth. Modern MPC implementations, such as SPDZ and ABY3, operate in the dishonest-majority setting, providing security even if all but one party is actively malicious.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.