Skip to content

cmu-cryptosystems/FABLE-AE

BranchesTags

Repository files navigation

The Artifact of FABLE: Batched Evaluation on Confidential Lookup Tables in 2PC

This is the artifact evaluation repository of the USENIX Security '25 paper "FABLE: Batched Evaluation on Confidential Lookup Tables in 2PC".

The main implementation is at https://github.com/cmu-cryptosystems/FABLE, and the paper can be found at https://eprint.iacr.org/2025/1081.

This version is for functionality and reproducibility evaluation, where we provide

  1. The code for the FABLE protocol plus the two applications.
  2. The instructions to build and execute the protocol.
  3. The instructions to reproduce all experiments in the paper.
  4. The scripts to plot all figures and report the speedup of the FABLE protocol over the baselines.

Artifact Organization

This artifact is organized as two folders:

  1. The FABLE folder, which contains the code for FABLE (FABLE/src) and the unit tests (FABLE/test).
  2. The FABLE-AE folder, which contains the instructions and scripts to run the experiments in its root directory. FABLE-AE/Crypten contains the scripts to benchmark the Crypten baseline and FABLE-AE/ORAMs contains the benchmark results for the ORAM baseline.

Dependency Installation

Please use Docker to install the dependencies. To do this, first build a Docker image with the Dockerfile in the FABLE folder, and then build a Docker image for AE using the Dockerfile in the FABLE-AE folder. Assume you are in the root directory of the artifact (i.e., the parent directory of FABLE-AE), then you can run:

sudo docker build ./FABLE -t fable:1.0
sudo docker build ./FABLE-AE -t fable-ae:1.0

The image fable:1.0 contains all dependencies and a built FABLE in /workspace/FABLE. The image fable-ae:1.0 contains some extra dependencies for reproduction.

Main Experiments

To reproduce the main experiments, first create a container on two machines:

sudo docker run -it --net=host --cap-add=NET_ADMIN -v $PWD/FABLE-AE:/workspace/AE -w /workspace/AE fable-ae:1.0

Then run

bash main_experiments.sh 1 0.0.0.0

and

bash main_experiments.sh 2 $HOST

On two machines, where $HOST is the IP address of the machine running the first command. The logs will be written to logs/main in FABLE-AE.

This step takes around 30 human-minutes, 10 compute-hour, and 1GB disk.

Baseline

SPLUT

To reproduce the splut baseline, run

bash baseline_splut.sh 1 0.0.0.0

and

bash baseline_splut.sh 2 $HOST

On two machines, where $HOST is the IP address of the machine running the first command. The logs will be written to logs/baseline in FABLE-AE.

This step only takes around half an hour to finish.

FLORAM and 2P-DUORAM

FLORAM and 2P-DUORAM are benchmarked using their official implementation. You can skip this step if you would like to use the results we provided in ORAMs/floram.json and ORAMs/duoram.json.

To do this, exit the docker for FABLE-AE and build their docker with

sudo bash FABLE-AE/ORAMs/build-dockers.sh

Then run the experiments with

sudo bash FABLE-AE/ORAMs/repro-dockers.sh

This step takes around 30 human-minutes and 1.5 compute-hour.

Plots

Before creating the plots, we need to transfer the logs from the client to the server. To do this, launch

bash sync_log_serv.sh

on the client (the second machine), and run

bash sync_log_recv.sh $CLIENT

on the server (the first machine), where $CLIENT is the IP address of the client.

To plot the figures, please make sure that you are inside the container fable-ae, as it contains the necessary plotting scripts. Then run

  1. python3 microbench.py, which will produce FABLE-AE/plots/runtime_vs_threads.pdf (Figure 4).
  2. python3 draw.py, which will produce
    1. FABLE-AE/plots/time_lutsize_network_clipped.pdf (Figure 5)
    2. FABLE-AE/plots/24_time_bs.pdf (Figure 6)
    3. FABLE-AE/plots/comm.pdf (Figure 7)
    4. FABLE-AE/plots/time_lutsize_network.pdf (Figure 8) You can add --doram-baseline to python3 draw.py if you prefer to use the reproduced FLORAM and DUORAM numbers instead of the ones we provided.

You may also want to reproduce our tables (in markdown format) with python3 breakdown_table.py and python3 breakdown_table.py --aes. The first one gives the result with LowMC as the OPRF and the second one gives the result with AES as the OPRF. Table 4 in the paper is produced by merging the two tables.

Applications

To reproduce the applications, run

bash applications.sh 1 0.0.0.0

and

bash applications.sh 2 $HOST

On two machines, where $HOST is the IP address of the machine running the first command.

This step takes around 30 human-minutes and 1.5 compute-hour.

Afterwards, you can run python3 read_app_speedup.py to see the speedup for both applications.

Benchmark the Crypten baseline on your own

Note: Similar to DORAMs, we use a separate environment to benchmark to performance of the Crypten baseline. If you prefer to benchmark the baselines on your own, feel free to follow the instructions:

To build the docker,

sudo docker build FABLE-AE/Crypten -t crypten

Then launch the docker with

sudo docker run -it --net=host --cap-add=NET_ADMIN -v $PWD/FABLE-AE:/workspace/AE -w /workspace/AE crypten

To reproduce the performance, run

bash Crypten/reproduce.sh 0 $HOST $CLIENT

and

bash Crypten/reproduce.sh 1 $HOST $CLIENT

on the host and the client respectively.

This step takes around 30 human-minutes and 1.5 compute-hour.

Afterwards, you should be able to pass --crypten-baseline to python3 read_app_speedup.py to see the speedup with your benchmarked results.

About

Artifact Evaluation Repository for FABLE.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages