1. Patent Search
  2. Details

METHOD, DEVICE, AND STORAGE MEDIUM FOR DETERMINING EXTREMUM BASED ON SECURE MULTI-PARTY COMPUTATION

20230283461 · 2023-09-07

    Inventors

    Cpc classification

    International classification

    Abstract

    Method for determining an extremum based on secure multi-party computation includes: acquiring a t.sup.th mean obtained in t.sup.th round federated computation; performing (t+1).sup.th round federated computation based on valid node data of an i.sup.th node device in response to the valid node data of the i.sup.th node device being greater than the t.sup.th mean; performing the (t+1).sup.th round federated computation based on invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean; and determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    Claims

    1. A method for determining an extremum based on secure multi-party computation, executed by an i.sup.th node device in a federated computation system, the federated computation system comprising n node devices, n being an integer greater than 2, i being a positive integer less than or equal to n, and the method comprising: acquiring a t.sup.th mean obtained in t.sup.th round federated computation, the t.sup.th mean being calculated based on n node data of the n node devices and an average coefficient, the n node data comprising m valid node data, the average coefficient being decreased progressively along with increasing of the round number of federated computation, t being a positive integer less than n−1, and m being a positive integer less than or equal to n; performing (t+1).sup.th round federated computation based on the valid node data of the i.sup.th node device in response to the valid node data of the i.sup.th node device being greater than the t.sup.th mean; performing the (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean; and determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    2. The method according to claim 1, wherein performing the (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean comprises: performing (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node being less than the t.sup.th mean, and determining that the valid node data corresponding to the i.sup.th node device is not the extremum; and performing (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being equal to the t.sup.th mean, and determining the extremum based on a relationship between a (t+1).sup.th mean and the invalid node data.

    3. The method according to claim 2, wherein determining the extremum based on the relationship between the (t+1).sup.th mean and the invalid node data, comprises: determining that the valid node data corresponding to the i.sup.th node device is not the extremum in response to the (t+1).sup.th mean being greater than the invalid node data; determining that the valid node data of the i.sup.th node device is the extremum in response to the (t+1).sup.th mean being equal to the invalid node data, and t+1 is n−1; and determining the extremum based on a relationship between the invalid node data and a mean obtained through subsequent federated computation in response to the (t+1).sup.th mean being equal to the invalid node data and t+1 is less than n−1.

    4. The method according to claim 1, wherein the i.sup.th node device is a first node device, and acquiring the t.sup.th mean obtained in the t.sup.th round federated computation comprises: generating a first random number; calculating the sum of first node data and the first random number to serve as a first data sum, and transmitting the first data sum to a second node device, wherein the second node device is configured to calculate a second data sum and transmit the second data sum to a third node device, and the second data sum is the sum of the first data sum and second node data, wherein a j.sup.th node data is valid node data or invalid node data of a j.sup.th node device, and j is a positive integer less than or equal to n. receiving an n.sup.th data sum transmitted by an n.sup.th node device, the n.sup.th data sum being the sum of n node data and the first random number; and determining the t.sup.th mean based on the n.sup.th data sum and the first random number.

    5. The method according to claim 4, further comprising: receiving a (j−1).sup.th data sum transmitted by a (j−1).sup.th node device, the (j−1).sup.th data sum being the sum of the first random number and the first node data to the (j−1).sup.th node data, and j being an integer greater than 1 and less than or equal to n; determining a j.sup.th data sum based on the (j−1).sup.th data sum, the j.sup.th data sum being the sum of the (j−1).sup.th data sum and the j.sup.th node data; transmitting the j.sup.th data sum to a (j+1).sup.th node device when j is not equal to n; and transmitting the j.sup.th data sum to the first node device when j is equal to n.

    6. The method according to claim 1, wherein acquiring the t.sup.th mean obtained in the t.sup.th round federated computation comprises: generating n−1 random numbers, the sum of the n−1 random numbers being i.sup.th node data, and the i.sup.th node data being valid node data or invalid node data of the i.sup.th node device; respectively transmitting the n−1 random numbers to the rest of n−1 node devices, each node device receiving one random number transmitted by the i.sup.th node device; receiving the random numbers respectively transmitted by the rest of the n−1 node devices and calculating the sum of the received n−1 random numbers to serve as an i.sup.th data sum; respectively transmitting the i.sup.th data sum to the rest of n−1 node devices; and receiving n−1 data sums transmitted by the rest of n−1 node devices, and determining the t.sup.th mean based on the received n−1 data sums and the i.sup.th data sum.

    7. The method according to claim 1, wherein t+1 is n−1, and after acquiring the t.sup.th mean obtained in the t.sup.th round federated computation, the method further comprises: generating a second random number, the second random number being a positive number; transmitting the second random number to an (i+1).sup.th node device, the (i+1).sup.th node device being configured to calculate a first data product and transmit the first data product to an (i+2).sup.th node device, the first data product being the product of the second random number and valid node data of the (i+1) node device; receiving an (n−1).sup.th data product transmitted by an (i−1).sup.th node device, the (n−1).sup.th data product being the product of valid node data of n−1 node devices except the i.sup.th node device in the n node devices and the second random number; determining a value comparison operator according to a difference between the valid node data of the i.sup.th node device to the power of n−1 and the (n−1).sup.th data product; and determining that the valid node data corresponding to the i.sup.th node device is the extremum in response to the value comparison operator being greater than or equal to zero and i.sup.th node data is greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation, the i.sup.th node data being valid node data or invalid node data.

    8. The method according to claim 1, wherein n is 3, t+1 is 2, the i.sup.th node device is a second node device, and after acquiring the t.sup.th mean obtained in the t.sup.th round federated computation, the method further comprises: generating a third random number, the third random number being a positive number; and transmitting the third random number or a reciprocal of the third random number to a third node device, and transmitting a first product to a first node device, the first product being the product of the third random number and valid node data of a second node device, the third node device being configured to calculate a second product and transmit the second product to the first node device, the second product is the product of the reciprocal of the third random number and valid node data of the third node device, the first node device being configured to receive the first product and the second product and calculate a first value comparison operator based on the first product and the second product, the first value comparison operator being a difference between the square of valid node data of the first node device and a third product, and the third product being the product of the second node data and the third node data.

    9. The method according to claim 8, further comprising: receiving a fourth product transmitted by the third node device and a fifth product transmitted by the first node device, the third node device being configured to generate a fourth random number and transmit the fourth random number to the first node device, the first node device being configured to determine the fifth product based on the fourth random number, the fourth product being the product of the valid node data of the third node device and the fourth random number, and the fifth product being the product of the reciprocal of the fourth random data and the valid node data of the first node device; calculating a second value comparison operator based on the fourth product and the fifth product, the second value comparison operator being the difference between the square of the valid node data of the second node device and a sixth product, and the sixth product being the product of the valid node data of the first node device and the valid node data of the third node device; and determining that the valid node data corresponding to the second node device is the extremum in response to the second data comparison operator being greater than or equal to zero and the second node data being greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation, the second node data being the valid node data or the invalid node data of the second node device.

    10. The method according to claim 1, further comprising: dividing n node devices into at least one layer of device groups according to a group division mode in response to n being greater than 3, each layer of device groups comprising at least three device groups of a previous layer, and each device group in a first layer of device groups being composed of one or at least three node devices, performing federated computation among device groups in an (m+1).sup.th layer based on valid node data of the i.sup.th node device in response to the valid node data of the i.sup.th node device being an extremum of a party group, wherein the i.sup.th node device is located in device groups in an m.sup.th layer, and m being a positive integer; and determining that the valid node data of the i.sup.th node device is an extremum of n valid node data of the n node devices in response to the valid node data of the i.sup.th node device being the extremum of the valid node data in device groups of a last layer.

    11. The method according to claim 1, wherein before the acquiring a t.sup.th mean obtained in t.sup.th round federated computation, the method further comprises: determining original valid node data of the i.sup.th node device as the valid node data of the i.sup.th node device in response to a maximum value computation instruction; and the determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation comprises: determining that original valid node data of the i.sup.th node device is a maximum value in response to the valid node data of the i.sup.th node device being greater than or equal to the (n−1).sup.th mean after (n−1).sup.th round federated computation.

    12. The method according to claim 1, further comprising: determining an opposite number of original valid node data of the i.sup.th node device as the valid node data of the i.sup.th node device in response to a minimum value computation instruction; and the determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation comprises: determining that the original valid node data of the i.sup.th node device is a minimum value in response to the valid node data of the i.sup.th node device being greater than or equal to the (n−1).sup.th mean after (n−1).sup.th round federated computation.

    13. A computer device, comprising a processor and a memory, the memory storing at least one instruction, at least one program, a code set or an instruction set, and the at least one instruction, the at least one program, the code set or the instruction set being loaded and executed by the processor to implement a method for determining an extremum based on secure multi-party computation, executed by an i.sup.th node device in a federated computation system, the federated computation system comprising n node devices, n being an integer greater than 2, i being a positive integer less than or equal to n, and the method comprising: acquiring a t.sup.th mean obtained in t.sup.th round federated computation, the t.sup.th mean being calculated based on n node data of the n node devices and an average coefficient, the n node data comprising m valid node data, the average coefficient being decreased progressively along with increasing of the round number of federated computation, t being a positive integer less than n−1, and m being a positive integer less than or equal to n; performing (t+1).sup.th round federated computation based on the valid node data of the i.sup.th node device in response to the valid node data of the i.sup.th node device being greater than the t.sup.th mean; performing the (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean; and determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    14. The device according to claim 13, wherein performing the (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean comprises: performing (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node being less than the t.sup.th mean, and determining that the valid node data corresponding to the i.sup.th node device is not the extremum; and performing (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being equal to the t.sup.th mean, and determining the extremum based on a relationship between a (t+1).sup.th mean and the invalid node data.

    15. The device according to claim 14, wherein determining the extremum based on the relationship between the (t+1).sup.th mean and the invalid node data comprises: determining that the valid node data corresponding to the i.sup.th node device is not the extremum in response to the (t+1).sup.th mean being greater than the invalid node data; determining that the valid node data of the i.sup.th node device is the extremum in response to the (t+1).sup.th mean being equal to the invalid node data, and t+1 is n−1; and determining the extremum based on a relationship between the invalid node data and a mean obtained through subsequent federated computation in response to the (t+1).sup.th mean being equal to the invalid node data and t+1 is less than n−1.

    16. The device according to claim 13, wherein the i.sup.th node device is a first node device, and acquiring the t.sup.th mean obtained in the t.sup.th round federated computation comprises: generating a first random number; calculating the sum of first node data and the first random number to serve as a first data sum, and transmitting the first data sum to a second node device, wherein the second node device is configured to calculate a second data sum and transmit the second data sum to a third node device, and the second data sum is the sum of the first data sum and second node data, wherein a j.sup.th node data is valid node data or invalid node data of a j.sup.th node device, and j is a positive integer less than or equal to n. receiving an n.sup.th data sum transmitted by an n.sup.th node device, the n.sup.th data sum being the sum of n node data and the first random number; and determining the t.sup.th mean based on the n.sup.th data sum and the first random number.

    17. The device according to claim 16, wherein the method further comprises: receiving a (j−1).sup.th data sum transmitted by a (j−1).sup.th node device, the (j−1).sup.th data sum being the sum of the first random number and the first node data to the (j−1).sup.th node data, and j being an integer greater than 1 and less than or equal to n; determining a j.sup.th data sum based on the (j−1).sup.th data sum, the j.sup.th data sum being the sum of the (j−1).sup.th data sum and the j.sup.th node data; transmitting the j.sup.th data sum to a (j+1).sup.th node device when j is not equal to n; and transmitting the j.sup.th data sum to the first node device when j is equal to n.

    18. The device according to claim 13, wherein acquiring the t.sup.th mean obtained in the t.sup.th round federated computation comprises: generating n−1 random numbers, the sum of the n−1 random numbers being i.sup.th node data, and the i.sup.th node data being valid node data or invalid node data of the i.sup.th node device; respectively transmitting the n−1 random numbers to the rest of n−1 node devices, each node device receiving one random number transmitted by the i.sup.th node device; receiving the random numbers respectively transmitted by the rest of the n−1 node devices and calculating the sum of the received n−1 random numbers to serve as an i.sup.th data sum; respectively transmitting the i.sup.th data sum to the rest of n−1 node devices; and receiving n−1 data sums transmitted by the rest of n−1 node devices, and determining the t.sup.th mean based on the received n−1 data sums and the i.sup.th data sum.

    19. The device according to claim 13, wherein t+1 is n−1, and after acquiring the t.sup.th mean obtained in the t.sup.th round federated computation, the method further comprises: generating a second random number, the second random number being a positive number; transmitting the second random number to an (i+1).sup.th node device, the (i+1).sup.th node device being configured to calculate a first data product and transmit the first data product to an (i+2).sup.th node device, the first data product being the product of the second random number and valid node data of the (i+1) node device; receiving an (n−1).sup.th data product transmitted by an (i−1).sup.th node device, the (n−1).sup.th data product being the product of valid node data of n−1 node devices except the i.sup.th node device in the n node devices and the second random number; determining a value comparison operator according to a difference between the valid node data of the i.sup.th node device to the power of n−1 and the (n−1).sup.th data product; and determining that the valid node data corresponding to the i.sup.th node device is the extremum in response to the value comparison operator being greater than or equal to zero and i.sup.th node data is greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation, the i.sup.th node data being valid node data or invalid node data.

    20. A non-transitory computer-readable storage medium, storing at least one computer program, the computer program being loaded and executed by a processor to implement a method for determining an extremum based on secure multi-party computation, executed by an i.sup.th node device in a federated computation system, the federated computation system comprising n node devices, n being an integer greater than 2, i being a positive integer less than or equal to n, and the method comprising: acquiring a t.sup.th mean obtained in t.sup.th round federated computation, the t.sup.th mean being calculated based on n node data of the n node devices and an average coefficient, the n node data comprising m valid node data, the average coefficient being decreased progressively along with increasing of the round number of federated computation, t being a positive integer less than n−1, and m being a positive integer less than or equal to n; performing (t+1).sup.th round federated computation based on the valid node data of the i.sup.th node device in response to the valid node data of the i.sup.th node device being greater than the t.sup.th mean; performing the (t+1).sup.th round federated computation based on the invalid node data in response to the valid node data of the i.sup.th node device being less than or equal to the t.sup.th mean; and determining that the valid node data of the i.sup.th node device is the extremum in response to the valid node data of the i.sup.th node device being greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    Description

    BRIEF DESCRIPTION OF THE DRAWINGS

    [0012] FIG. 1 is a schematic diagram of an implementation environment according to an embodiment of the present disclosure.

    [0013] FIG. 2 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0014] FIG. 3 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0015] FIG. 4 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0016] FIG. 5 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0017] FIG. 6 is a schematic diagram of secure mean computation by three parties according to an embodiment of the present disclosure.

    [0018] FIG. 7 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0019] FIG. 8 is a schematic diagram of secure mean computation by three parties according to an embodiment of the present disclosure.

    [0020] FIG. 9 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0021] FIG. 10 is a schematic diagram of secure extremum determination by three parties according to an embodiment of the present disclosure.

    [0022] FIG. 11 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0023] FIG. 12 is a schematic diagram of secure mean determination by three parties according to an embodiment of the present disclosure.

    [0024] FIG. 13 is a schematic diagram of multi-layer device group division according to an embodiment of the present disclosure.

    [0025] FIG. 14 is a flowchart of a method for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0026] FIG. 15 is a structural block diagram of an apparatus for determining an extremum based on secure multi-party computation according to an embodiment of the present disclosure.

    [0027] FIG. 16 is a structural block diagram of a computer device according to an embodiment of the present disclosure.

    DESCRIPTION OF EMBODIMENTS

    [0028] To make the objectives, technical solutions, and advantages of the present disclosure clearer, the following further describes implementations of the present disclosure in detail with reference to the accompanying drawings.

    [0029] First, several terms involved in the embodiments of the present disclosure are introduced.

    [0030] (1) Secure multi-party computation: There are n parties P.sub.1, P.sub.2 . . . P.sub.n, where the party P.sub.i has input data X.sub.i, and the n parties jointly calculate a function f (X.sub.1, X.sub.2 . . . X.sub.n) without revealing own input data to any other parties or getting assistance of any trusted organization. The secure multi-party computation is supported by a rich theoretical basis, and guarantees input data security by applying cryptography (e.g., homomorphic encryption), secret sharing, differential privacy and other security mechanisms, which is about to enter an engineering and large-scale application stage from a theoretical research stage.

    [0031] (2) Secret sharing: Secret sharing is a cryptographic technique for segment storage of a secret, and aims to prevent the secret from being too intensive so as to spread risks and tolerate intrusion, which is an important means in information security and data privacy. The idea of secret sharing is about splitting the secret in a proper mode, split shares are managed by different parties, while a single party cannot recover secret information, and the secret information can be recovered only when the plurality of parties collaborate. More importantly, when the parties, in any corresponding range, have something wrong, the secret still cannot be completely recovered.

    [0032] In recent years, due to user privacy, data security, compliance, business competition and other factors, it is very hard to integrate, based on compliance, distributed data sources to be computed, analyzed and studied. In the foregoing background, a solution based on secure multi-party computation (MPC) is booming, which can combine the plurality of distributed data sources for federated computation, federated data analysis and federated robot learning without centralizing the distributed data sources. Secure multi-party computation can realize secure data collaboration and fusion application, and combines, based on compliance without exceeding data domains, multi-party data sources for computation, analysis and learning, thereby realizing data value sharing. In related art, the solution for implementing secure multi-party computation usually has problems of high computation complexity and communication overhead, etc.

    [0033] In order to solve the foregoing technical problems, the embodiment of the present disclosure provides a semi-honest security model, under which data of parties is not revealed. The semi-honest security model is also called an honest-but-curious security model, which indicates that both a party A and a party B can strictly obey a data value comparison and equality test protocol, cannot maliciously deviate from the protocol and cannot attack opposite parties maliciously or actively, but the parties can attempt to acquire more information in the protocol execution process.

    [0034] FIG. 1 illustrates a block diagram of a federated computation system according to an embodiment of the present disclosure. The federated computation system includes n node devices (also called parties), namely, a node device P.sub.1, a node device P.sub.2 . . . a node device P.sub.n, where n is an integer greater than 2. Any node device may be an independent physical server, may also be a server cluster constituted by a plurality of physical servers, or a distributed system, and may also be a cloud server providing basic cloud computing services such as cloud services, cloud databases, cloud computing, cloud functions, cloud storage, network services, cloud communication, middleware services, domain name services, security services, content delivery network (CDN), big data and an artificial intelligence platform. Any two node devices have different data sources, such as data sources of different companies, or data sources of different departments of the same company. The different node devices store different data. The different node devices are connected by a wireless network or a wired network.

    [0035] The n node devices respectively store own data which cannot be revealed. When the node devices in the federated computation system have an extremum determining demand, each node device first performs secure multi-party averaging, and then compares own data with a mean, and when the own data is less than the mean, it is determined that the own data is not an extremum. After “obsolete” data is definite in current computation, the “obsolete” data is replaced with invalid node data (e.g., 0) to participate in next-round mean computation, and because data of at least one node device will be “obsoleted” after each-round computation, an average coefficient during mean computation is controlled to be decreased progressively along with increasing of the round number of federated computation, thereby achieving mean computation convergence, and gradually obsoleting the data which is not the extremum. In the process, the data of the parties will not be revealed, meanwhile, the interaction frequency is less, encryption and decryption operations are not needed, and thus, the communication overhead is less, and the computing efficiency is high.

    [0036] In one embodiment, the plurality of node devices in the above federated computation system may constitute a blockchain, the node devices are nodes on the blockchain, and data involved in the secure multi-party extremum determining process can be stored on the blockchain.

    [0037] FIG. 2 illustrates a flowchart of a secure multi-party computation method according to an exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, i is a positive integer less than or equal to n, and the method includes following steps.

    [0038] Step 201: Acquire a t.sup.th mean obtained in t.sup.th round federated computation.

    [0039] The t.sup.th mean is calculated based on n node data of the n node devices and an average coefficient, the n node data includes m valid node data, the average coefficient is decreased progressively along with increasing of the round number of federated computation, t is a positive integer less than n−1, and m is a positive integer less than or equal to n.

    [0040] The node devices in the federated computation system first perform secure multi-party averaging, and then compare own data with a mean (plaintext comparison herein), and when the own data is less than the mean, it is determined that the own data is not an extremum. After “obsolete” data (i.e., less than or equal to the mean) is definite in current computation, the “obsolete” data is replaced with invalid node data (i.e., 0) to participate in next-round mean computation, and because data of at least one node device will be “obsoleted” after each-round federated computation, the average coefficient (i.e., a denominator of mean computation) during mean computation is controlled to be decreased progressively along with increasing of the round number of federated computation, thereby achieving mean computation convergence, and gradually obsoleting the data which is not the extremum.

    [0041] In one embodiment, the federated computation system performs secure multi-party computation based on the node data of the n node devices and the average coefficient to obtain the t.sup.th mean jointly calculated in the current round, namely the t.sup.th round, where the n node data includes valid node data not obsoleted in the previous round and invalid node data, the valid node data is a true value of the data owned by the node devices, and the invalid node data is used for replacing valid node data less than or equal to the mean before t.sup.th-round federated computation, for example, the invalid node data is 0, which means that the corresponding node device does not participate in subsequent mean computation.

    [0042] Exemplarily, the valid node data of at least one node device is less than or equal to the t.sup.th mean after each-round federated computation, that is, at least one valid node data is replaced with invalid node data, but due to privacy of the data, the node devices can only confirm whether the own data is obsoleted or not and cannot know actual obsoleted data (i.e., the number of valid node data less than the mean) after current-round computation, accordingly, the average coefficient is set as (n+1−0, and starting from the second round, at least one data is obsoleted in each-round mean computation, the average coefficient is progressively decreased round by round, thereby ensuring that there are only two valid node data at most in the (n−1).sup.th round. Thus, a computational formula of the t.sup.th mean M.sub.t is M.sub.t=(X.sub.1+X.sub.2+ . . . +X.sub.n)/(n+1−t), where X.sub.i is data (valid node data or invalid node data), for participating in mean computation, of an i.sup.th node device, and Xi is valid node data in the first-round computation process.

    [0043] Step 202: Perform (t+1).sup.th round federated computation based on the valid node data of the i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean.

    [0044] The valid node data of the i.sup.th node device is greater than the t.sup.th mean, which indicates that the valid node data may be the extremum, and thus, the i.sup.th node device can continue to perform next-round (i.e., (t+1).sup.th round) federated computation based on the valid node data thereof until the valid node data is obsoleted, that is, until the valid node data is less than or equal to the mean of a certain round, or the valid node data is determined as the extremum.

    [0045] Step 203: Perform (t+1).sup.th round federated computation based on the invalid node data if the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean.

    [0046] The i.sup.th node device replaces the valid node data with the invalid node device to perform next-round mean computation when the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean.

    [0047] When the valid node data of the i.sup.th node device is less than the t.sup.th mean, the i.sup.th node device can determine that the valid node data is not the extremum, and later, only needs to participate in mean computation based on the invalid node data without value comparison; and when the valid node data of the i.sup.th node device is equal to the t.sup.th mean, there may be a situation that the data is the extremum and valid node data of other node devices is similarly the extremum, that is, the data owned by at least two nodes is maximal and equal to each other; and in order to achieve mean computation convergence and avoid the situation of the mean greater than a maximum value (because the average coefficient is progressively decreased round by round), thus, when the valid node data of the i.sup.th node device is equal to the t.sup.th mean, the i.sup.th node device similarly uses the invalid node data to replace the valid node data for next-round mean computation, but value comparison is still needed.

    [0048] Exemplarily, for four data “1, 2, 3 and 4”, the mean calculated in the first round is 5/2, where 3 and 4 are greater than 5/2, and thus, in the second-round computation, 3 and 4 still participate in computation, 1 and 2 are replaced with 0, the average coefficient is reduced by 1, that is, (0+0+3+4)/3 is calculated.

    [0049] Step 204: Determine that the valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0050] When t is (n−1), at least one valid node data is replaced with the invalid node data in each round, thus, there are only two valid node data at most in the (n−1).sup.th round, in addition, the average coefficient m is 2, and accordingly, an extremum computing result can be obtained after (n−1).sup.th round federated computation is performed. When the valid node data of the i.sup.th node device is greater than the mean in the previous (n−2) rounds and is greater than or equal to (equivalently, there is a situation where two equal maximum values exist) the (n−1).sup.th mean in the (n−1).sup.th round, and thus, the valid node data is the extremum.

    [0051] As such, the mean of the data corresponding to the n node devices is calculated, the node devices compare the own data with the mean of the previous round so as to confirm that the own data is not the extremum when the own data is less than the mean, replace the valid node data with the invalid node data for next-round mean computation when the own data is less than or equal to the mean so that the mean can be converged and gradually approach the extremum, and accordingly, an extremum determining result is obtained in the (n−f1).sup.th round, thereby effectively solving the problem about secure multi-party extremum computation; and in addition, the node devices do not need to reveal privacy data and a value relationship between the data, and based on the secure multi-party mean computation method, do not involve encryption and decryption operations, accordingly, the computation complexity and the communication overhead are low, and the computing efficiency can be improved.

    [0052] When floating-point numbers X.sub.1, X.sub.2 . . . X.sub.n exist in numbers respectively own by the n parties (i.e., the node devices), all data may be first subjected to integer transfer and then subjected to federated computation, and an integer transfer method includes multiplying by a larger integer. For example, the party P.sub.k takes X.sub.k=INT(QX.sub.k), where INT denotes rounding, Q is a larger integer, such as ten to the power of six, and Q is determined based on consultation of the n parties. Then, mean computation and extremum determination are performed based on the rounding numbers. The main objective of integer transfer is to further hide range values of the numbers through modulo operation. Taking secure three-party extremum determination as an example, the three parties consult in computational accuracy Q, and then further need to consult in the value computation range, that is to consult in selecting the integer n (called modulus) to satisfy |X.sub.1+X.sub.2+X.sub.31|<n/2, or |X.sub.1+X.sub.2+X.sub.3|<n/3.

    [0053] In one embodiment, to ensure smooth proceeding of mean computation and value comparison, the valid node data in the present disclosure may adopt positive numbers, and when the data of the node devices is negative numbers, negative number encoding is performed on the data before first-round federated computation, and data obtained after negative number encoding serves as valid node data. If X.sub.k<0, the node device takes X.sub.k=X.sub.k+n, that is, the negative number is encoded (where X.sub.k is data after rounding), and thus, when X.sub.1+X.sub.2+X.sub.3|≥n/2 or .star-solid.X.sub.1+X.sub.2+X.sub.3|≥n/3 occurs during computation, the node device can judge that an actual computing result indicates the negative numbers, that is, the true result is |X.sub.1+X.sub.2+X.sub.3−n.

    [0054] FIG. 3 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, i is a positive integer less than or equal to n, and the method includes following steps.

    [0055] Step 301: Acquire a t.sup.th mean jointly calculated in a t.sup.th round.

    [0056] Step 302: Perform (t+1).sup.th round federated computation based on valid node data of the i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean.

    [0057] Exemplary implementations of step 301 to step 302 may refer to step 201 to step 202 described above, and are not repeated herein.

    [0058] Step 303: Perform (t+1).sup.th round federated computation based on invalid node data if the valid node data of the i.sup.th node device is less than the t.sup.th mean, and determine that the valid node data corresponding to the i.sup.th node device is not an extremum.

    [0059] In one embodiment, the valid node data of the i.sup.th node device is less than the i.sup.th mean, which means that valid node data of other node devices is greater than the valid node data of the i.sup.th node device in the current federated computation process, and thus, the valid data of the i.sup.th node device is not the extremum in this step. In subsequent each-round mean computation, the i.sup.th node device only needs to participate in operation based on the invalid node data, the valid node data does not participate in operation, and there is no need to compare with the mean.

    [0060] Step 304: Perform (t+1).sup.th round federated computation based on the invalid node data if the valid node data of the i.sup.th node device is equal to the t.sup.th mean, and determine the extremum based on a relationship between a (t+1).sup.th mean and the invalid node data.

    [0061] In one embodiment, the valid node data of the i.sup.th node device is equal to the i.sup.th mean, which means that there are two possibilities in the current computation process. One possibility is that the valid node data of the other node devices is greater than the valid node data of the i.sup.th node device and the valid node data of the other node devices is less than the valid node data of the i.sup.th node device, under which the valid node data of the i.sup.th node device is not the extremum, for example, the mean of data “1, 2 and 3” is 2 in the first round; and the other possibility is that the valid node data of the i.sup.th node device is the extremum, and the valid node data of the other node devices is the extremum as well, for example, the mean of data “1, 1, 3 and 3” is 2 in the first round, and computation is performed based on “0, 0, 3 and 3” and the average coefficient being 3 to obtain the mean being 3. Thus, it is unable to directly determine whether the valid node data of the i.sup.th node device is not the extremum, and thus, federated computation is required to continue, and the data is compared with the mean.

    [0062] To ensure that at least one valid node data is “obsoleted” after each-round federated computation and to make computation gradually converged, when the valid node data of the i.sup.th node device is equal to the mean, the i.sup.th node device participates in subsequent federated computation based on the invalid node data.

    [0063] In one embodiment, when the valid node data of the i.sup.th node device is equal to the t.sup.th mean and t is not equal to (n−1), value comparison is performed in subsequent computation. Step 304 includes the following steps.

    [0064] Step 304a: Determine that the valid node data corresponding to the i.sup.th node device is not the extremum if the (t+1).sup.th mean is greater than the invalid node data.

    [0065] After the i.sup.th node device performs, based on the invalid node data (the invalid node data is 0 in the embodiment of the present disclosure), (t+1).sup.th round federated computation, if the (t+1).sup.th mean is greater than the invalid node data, it means that the valid node data (greater than the t.sup.th mean) “wining” in the t.sup.th round exists in the (t+1).sup.th round computing process, and corresponding to the foregoing first possibility, it can be determined that the valid node data in the i.sup.th node device is not the extremum.

    [0066] For example, the mean of data “1, 2, 2 and 3” in the first round is 2, the node device with the valid node data being 2 at the moment cannot determine whether valid node data of other node devices is greater than 2 or not; and computation is performed based on “0, 0, 0 and 3” and the average coefficient being 3 in the second round to obtain the mean being 1, the mean is greater than the invalid node data being 0, and at the moment, it can be determined that the valid node data of the other node devices is greater than 2 in the first round, and thus, the valid node data being 2 is not the extremum.

    [0067] Step 304b: Determine that the valid node data corresponding to the i.sup.th node device is the extremum if the (t+1).sup.th mean is equal to the invalid node data, and t+1 is n−1.

    [0068] After the i.sup.th node device performs (t+1).sup.th round federated computation based on the invalid node data, if the (t+1).sup.th mean is equal to the invalid node data and (t+1) is (n−1), namely, the last round computation, it means that no valid node data exists finally, that is, the extremum in the valid node data has been replaced with the invalid node data, and thus, the valid node data equal to the mean in the previous round is the extremum.

    [0069] Step 304c: Determine the extremum based on a relationship between the invalid node data and a mean obtained through subsequent federated computation if the (t+1).sup.th mean is equal to the invalid node data and t+1 is less than n−1.

    [0070] When the (t+1).sup.th mean is equal to the invalid node data but (t+1) is less than (n−1), that is, final-round federated computation is not reached, it can be determined that the valid node data equal to the t.sup.th mean in the t.sup.th round is a maximum value, but to ensure computation convergence, mean computation is required to continue until the average coefficient is (n−1).

    [0071] In another embodiment, when the valid node data of the i.sup.th node device is equal to the t.sup.th mean and t is equal to (n−1), that is, during final-round computation, it can be directly determined that the valid node data of the i.sup.th node device is the extremum, and the node devices do not perform federated computation any more.

    [0072] Exemplarily, FIG. 4 illustrates a flowchart of performing value comparison and extremum determination based on a mean, and the process includes: Step 401: Calculate a t.sup.th mean based on an average coefficient (n+1-0. Step 402: Judge whether t=1 or X.sub.k≥M.sub.t−1 is satisfied or not, if yes, perform step 403, and if not, perform step 405. Step 403: Judge which one of X.sub.k>M.sub.t and X.sub.k≤M.sub.t is satisfied, if X.sub.k>M.sub.t, perform step 406, and if X.sub.k≤M.sub.t, perform step 404. Step 404: Determine whether t is n−1 or not, if yes, perform step 408, and if not, perform step 405. Step 405: Perform subsequent federated computation based on invalid node data, do not perform value comparison later when X.sub.k<M.sub.t, and perform value comparison based on the invalid node data and the mean when X.sub.k=M.sub.t. Step 406: Judge whether t is (n−1) or not, if yes, perform step 409, and if not, perform step 407. Step 407: Perform (t+1).sup.th round federated computation based on valid node data. Step 408: Judge whether X.sub.k=M.sub.t is satisfied or not, if yes, perform step 409, and if not, determine that valid node data X.sub.k corresponding to a node device P.sub.k is not the extremum, and end the process. Step 409: Determine that the valid node data X.sub.k corresponding to the node device P.sub.k is the extremum. Where t is a round number of federated computation, M.sub.t−1 is a (t−1).sup.th mean obtained through (t−1).sup.th federated computation, and M.sub.t is the t.sup.th mean obtained in t.sup.th round federated computation; and X.sub.k is valid node data of a kth node device.

    [0073] Step 305: Determine that the valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0074] Exemplary implementation of step 305 may refer to above step 203, which is not repeated herein.

    [0075] The node devices judge whether the valid node data is the extremum or not by comparing the valid node data with the t.sub.th mean, replace the valid node data with the invalid node data for subsequent federated computation if the valid node data is less than or equal to the t.sub.th mean, and continue to perform value comparison based on the invalid node data and the subsequent mean when the valid node data is equal to the t.sup.th mean, thereby guaranteeing mean computation convergence, also preventing a possible extremum from being omitted, and ensuring reliability of extremum computation.

    [0076] The above embodiment illustrates the process of determining the extremum based on the secure multi-party computed mean. For secure computation of the mean, the embodiment of the present disclosure provides an implementation. FIG. 5 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by a first node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, and i is a positive integer less than or equal to n. The first node device refers to a node device configured to generate a first random number, and any one of the n node devices may serve as the first node device for mean computation. The method includes the following steps.

    [0077] Step 501: Generate the first random number.

    [0078] The first node device first generates the first random number R.sub.1 after current federated computation starts. The first random number R.sub.1 is a positive number.

    [0079] Step 502: Transmit the first data sum to a second node device.

    [0080] The first data sum is the sum of the first random number and first node data, the second node device is configured to calculate a second data sum and transmit the second data sum to a third node device, and the second data sum is the sum of the first data sum and second node data, where j.sup.th node data is valid node data or invalid node data of a j.sup.th node device, and j is a positive integer less than or equal to n.

    [0081] After the first node device P.sub.1 generates the first random number R.sub.1, the first data sum (R.sub.1+X.sub.1) is transmitted to the second node device P.sub.2. After the second node device P.sub.2 receives the first data sum (R.sub.1+X.sub.1), the second data sum (R.sub.1+X.sub.1+X.sub.2) is calculated based on the first data sum (R.sub.1+X.sub.1) and the second node data X.sub.2 and transmitted to the third node device, and by analogy, an n.sup.th node device finally transmits an n.sup.th data sum (R.sub.1+X.sub.1+X.sub.2+ . . . +X.sub.n) to the first node device.

    [0082] Step 503: Receive the n.sup.th data sum transmitted by the n.sup.th node device.

    [0083] Step 504: Determine a t.sup.th mean based on the n.sup.th data sum and the first random number.

    [0084] After the first node device P.sub.1 receives the n.sup.th data sum (R.sub.1+X.sub.1+X.sub.2+ . . . +X.sub.n) transmitted by the n.sup.th node device, a node data sum (R.sub.1+X.sub.1+X.sub.2+ . . . +X.sub.n−R.sub.1) is calculated to obtain the sum of n node data, and thus, the t.sup.th mean is determined based on an average coefficient (n+1−t) after finishing n-party summation.

    [0085] In one embodiment, after the first node device calculates the t.sup.th mean, the first node device can transmit the t.sup.th mean or an n-party summation result (X.sub.1+X.sub.2+ . . . +X.sub.n) to other node devices, or the first node device transmits the t.sup.th mean or an n-party summation result (X.sub.1+X.sub.2+ . . . +X.sub.n) to the second node device, the second node device transmits those to the third node device, and by analogy, the process continues until the n.sup.th node device receives the t.sup.th mean or the n-party summation result (X.sub.1+X.sub.2+ . . . +X.sub.n). This is not limited in the embodiment of the present disclosure.

    [0086] A data sum transmitting sequence and start-stop positions can be determined by the n node devices through consultation, the sequence can be changed, that is, the n node devices can take turn to be the first node device for mean computation, thereby further improving data security,

    [0087] Step 505: Perform (t+1).sup.th round federated computation based on valid node data of an i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean.

    [0088] Step 506: Perform (t+1).sup.th round federated computation based on the invalid node data if the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean.

    [0089] Step 507: Determine that the valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0090] Exemplary implementations of step 506 to step 507 may refer to step 202 to step 204 described above, and are not repeated herein.

    [0091] In the embodiment of the present disclosure, the first node device is adopted to generate the first random number and transmit the sum of the first random number and the first node data to the second node device, later, the node devices sequentially add, based on the received data sum, the own data and transmit those to the next node device, and finally, the first node device can obtain the data sum of the n node data according to the data sum received by the first node device and the first random number so as to calculate the mean. In the process, each node device cannot obtain the data of any other node device, thereby guaranteeing data security and satisfying demands of secure multi-party computation.

    [0092] The above embodiment illustrates the process of mean computation when the i.sup.th node device is the first node device. To more clearly describe the process, following steps are performed for acquiring the t.sup.th mean by the j.sup.th node device being not the first node device.

    [0093] Step 1: Receive a (j−1).sup.th data sum transmitted by a (j−1).sup.th node device. The (j−1).sup.th data sum is the sum of the first random number and the first node data to (j−1).sup.th node data, and j is an integer greater than 1 and less than or equal to n.

    [0094] Step 2: Determine a j.sup.th data sum based on the (j−1).sup.th data sum. The j.sup.th data sum is the sum of the (j−1).sup.th data sum and j.sup.th node data.

    [0095] Step 3: Transmit the j.sup.th data sum to a (j+1).sup.th node device when j is not equal to n. The j.sup.th data sum is transmitted to the first node device when i is equal to n.

    [0096] Mean computation in the embodiment of the present disclosure is implemented based on a ring topology architecture. Except the first node device, each node device calculates the j.sup.th data sum based on the (j−1).sup.th data sum transmitted by the previous node device and transmits the j.sup.th data sum to the next node device, and finally, the n.sup.th node device transmits the n.sup.th data sum to the first node device to complete a data closed loop. The (j−1).sup.th data sum is the sum of the first random number and the first node data to the (j−1).sup.th node data, namely, (R.sub.1+X.sub.1+X.sub.2+ . . . +X.sub.j−1). The j.sup.th data sum is the sum of the (j−1).sup.th data sum and the j.sup.th node data, namely, the sum (R.sub.1+X.sub.1+X.sub.2+ . . . +X.sub.j−1+X.sub.j) of the first random number and the first node data to the j.sup.th node data.

    [0097] Exemplarily, FIG. 6 illustrates a process of federated computation of a mean when three node devices perform extremum determination. A party P.sub.1 generates a first random number R.sub.1 and transmits (R.sub.1+X.sub.1) to a party P.sub.2. After receiving (R.sub.1+X.sub.1), the party P.sub.2 calculates (R.sub.1+X.sub.1+X.sub.2) and transmits (R.sub.1+X.sub.1+X.sub.2) to a party P.sub.3. After receiving (R.sub.1+X.sub.1+X.sub.2), the party P.sub.3 calculates (R.sub.1+X.sub.1+X.sub.2+X.sub.3) and transmits (R.sub.1+X.sub.1+X.sub.2+X.sub.3) to the party P.sub.1. After receiving (R.sub.1+X.sub.1+X.sub.2+X.sub.3), the party P.sub.1 calculates, based on the first random number R.sub.1, (R.sub.1+X.sub.1+X.sub.2+X.sub.3−R1) to obtain a data sum (X.sub.1+X.sub.2+X.sub.3) of the three parties, and then, calculates a mean of the three parties, namely, (X.sub.1+X.sub.2+X.sub.3)/(n+1−t), where n is 3, and t is a current round number.

    [0098] The above embodiment illustrates the process of secure multi-party mean solving based on the ring topology architecture. In another embodiment, the n node devices may also implement secure multi-party mean solving through a peer-to-peer (P2P) network. FIG. 7 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, and i is a positive integer less than or equal to n. The method includes the following steps.

    [0099] Step 701: Generate n−1 random numbers.

    [0100] The sum of the (n−1) random numbers is i.sup.th node data, and the i.sup.th node data is valid node data or invalid node data of an i.sup.th node device.

    [0101] In the P2P network, during mean computation, each node device generates (n−1) random numbers, and the sum of the n−1 random numbers is the i.sup.th node data, namely, r.sub.1+r.sub.2+ . . . +r.sub.n−1=X.sub.i. The i.sup.th node data is the valid node data or the invalid node data.

    [0102] Step 702: Respectively transmit the n−1 random numbers to the rest of n−1 node devices, where each node device receives one random number transmitted by the i.sup.th node device.

    [0103] The i.sup.th node device respectively transmits the (n−1) node data to the rest of (n−1) node devices, so that each node device receives one random number transmitted by the i.sup.th node device.

    [0104] Step 703: Receive the random numbers respectively transmitted by the rest of n−1 node devices, and calculate the sum of the received n−1 random numbers to serve as an i.sup.th data sum.

    [0105] Because each node device needs to generate the (n−1) random numbers and respectively transmit the (n−1) random numbers to the other node devices, the i.sup.th node device will receive the random numbers respectively transmitted by the other (n−1) node devices, totally, (n−1) random numbers.

    [0106] After the i.sup.th node device receives the (n−1) random numbers, the i.sup.th data sum is calculated, that is, the received n−1 random numbers are added. For example, a first node device calculates the sum of random numbers respectively transmitted by a second node device to an n.sup.th node device to obtain a first data sum.

    [0107] Step 704: Transmit the i.sup.th data sum to the rest of n−1 node devices.

    [0108] After each node device calculates the i.sup.th data sum, the i.sup.th data sum is transmitted to the other (n−1) node devices.

    [0109] Step 705: Receive n−1 data sums transmitted by the rest of n−1 node devices, and determine a t.sup.th mean based on the received n−1 data sums and the i.sup.th data sum.

    [0110] Each node device receives the data sums transmitted by the rest of (n−1) node devices, there are totally (n−1) data sums, the (n−1) data sums and the i.sup.th data sum calculated based on the (n−1) data sums are added to obtain the sum of the n node data, and then the t.sup.th mean is calculated based on the solved sum of the n node data. In the process, the node data is split, and each node device acquires a part of each node data, so as to jointly calculate the mean.

    [0111] Exemplarily, FIG. 8 illustrates a process of secure computation of a mean when three parties perform extremum determination. A party P.sub.1 generates random numbers R.sub.1,2 and R.sub.1,3 which satisfy X.sub.1=R.sub.1,2+R.sub.1,3, and respectively transmits R.sub.1,2 and R.sub.1,3 to a party P.sub.2 and a party P.sub.3. Similarly, the party P.sub.2 generates random numbers R.sub.2,1 and R.sub.2, 3 which satisfy X.sub.2=R.sub.2, 1+R.sub.2, 3, and respectively transmits R.sub.2, 1 and R.sub.2,3 to the party P.sub.1 and the party P.sub.3, and the party P.sub.3 generates random numbers R.sub.3,1 and R.sub.3, 2 which satisfy X.sub.3=R.sub.3, 1+R.sub.3, 2, and respectively transmits R.sub.3, 1 and R.sub.3, 2 to the party P.sub.1 and the party P.sub.2; the party P.sub.1 calculates a first data sum S.sub.1=R.sub.2, 1+R.sub.3, 1, the party P.sub.2 calculates a second data sum S.sub.2=R.sub.1, 2+R.sub.3, 2, and the party P.sub.3 calculates a third data sum S.sub.3=R.sub.2, 3+R.sub.1, 3; the party P.sub.1 transmits S.sub.1 to the party P.sub.2 and the party P.sub.3, the party P.sub.2 transmits S.sub.2 to the party P.sub.1 and the party P.sub.3, and the party P.sub.3 transmits S.sub.3 to the party P.sub.2 and the party P.sub.1; the party P.sub.1, the party P.sub.2 and the party P.sub.3 respectively calculate the sum of the numbers of the three parties: S.sub.1+S.sub.2+S.sub.3=R.sub.2, 1+R.sub.3, 1+R.sub.1,2+R.sub.3,2+R.sub.2,3+R.sub.1,3=X.sub.1+X.sub.2+X.sub.3; and the three parties can calculate a t.sup.th round mean (X.sub.1+X.sub.2+X.sub.3)/(n+1−t.

    [0112] Step 706: Perform (t+1).sup.th round federated computation based on valid node data of an i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean.

    [0113] Step 707: Perform (t+1).sup.th round federated computation based on the invalid node data if the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean.

    [0114] Step 708: Determine that the valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0115] Exemplary implementations of step 706 to step 708 may refer to step 202 to step 204 described above, and are not repeated herein.

    [0116] In the embodiment of the present disclosure, each node device splits the own node data into the n−1 random numbers and respectively transmits the n−1 random numbers to the rest of n−1 node devices, so that each node device is adopted to perform summation operation based on a part of each node data and finally exchanges the solved data sums to obtain the current mean. In the process, each node device cannot acquire complete data of any other node device, thereby ensuring data security, and satisfying demands of secure multi-party computation.

    [0117] In the above various embodiments, there are actually only two valid node data at most to participate in the process of (n−1).sup.th round federated computation, and thus, in the process of (n−1).sup.th round computation, there is a risk of leaking the valid node data of the parties (i.e., one party having the valid node data can calculate the valid node data of the other party according to the (n−1).sup.th mean). Thus, to further enhance security of an extremum determining solution provided by the present disclosure, (n−1).sup.th round value comparison may be performed without adopting the above mean-based computation method, but each node device respectively calculates X.sub.i.sup.n−1−X.sub.1X.sub.2 . . . X.sub.n, where X.sub.i is the valid node data of the node devices, the product behind the minus does not include X.sub.i and is the product of the other (n−1) node data except X.sub.i. If X.sub.i is less than an (n−2).sup.th mean during (n−2).sup.th round computation, the valid node data of the i.sup.th node device is not the extremum; and if X.sub.i is greater than or equal to the (n−2).sup.th mean during (n−2).sup.th round computation and a computing result of X.sub.i.sup.n−1−X.sub.1X.sub.2 . . . X.sub.n in the (n−1).sup.th round is greater than or equal to 0, the valid node data of the i.sup.th node device is the extremum.

    [0118] FIG. 9 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, and i is a positive integer less than or equal to n. When t is n−2 and t+1 is n−1, the method includes the following steps.

    [0119] Step 901: Acquire a t.sup.th mean jointly calculated in a t.sup.th round.

    [0120] Exemplary implementation of step 901 may refer to step 201 described above, which is not repeated herein.

    [0121] Step 902: Generate a second random number. The second random number is a positive number.

    [0122] An i.sup.th node device P.sub.i generates a positive second random number R.sub.2i to protect data privacy.

    [0123] Step 903: Transmit the second random number to an (i+1).sup.th node device.

    [0124] The (i+1).sup.th node device is configured to calculate a first data product R.sub.2iX.sub.i+1 and transmit the first data product to an (i+2).sup.th node device, and the first data product is the product of the second random number and valid node data of the (i+1).sup.th node device.

    [0125] Each node device transmits a data product calculated by the node device to a next node device, later, each node device multiplies the received data product by own valid node data and transmits a computing result to a next node device until an (i−1).sup.th node device calculates an (n−1).sup.th data product R.sub.2i X.sub.1X.sub.2 . . . X.sub.n in which the valid node data X.sub.i of the i.sup.th node device is excluded.

    [0126] Step 904: Receive the (n−1).sup.th data product transmitted by the (i−1).sup.th node device.

    [0127] The (n−1).sup.th data product is the product of the valid node data of the (n−1) node devices except the i.sup.th node device in the n node devices and the second random number, namely, R.sub.2iX.sub.1X.sub.2 . . . X.sub.n.

    [0128] After generating the (n−1).sup.th data product, the (i−1).sup.th node device transmits the (n−1).sup.th data product to the i.sup.th node device.

    [0129] Step 905: Determine a value comparison operator based on the (n−1).sup.th data product.

    [0130] The value comparison operator is a difference between the valid node data corresponding to the i.sup.th node device to the power of (n−1) and the (n−1).sup.th data product.

    [0131] After the i.sup.th node device acquires the (n−1).sup.th data product R.sub.2iX.sub.1X.sub.2 . . . X.sub.n divided by the second random number, and then the symbol (i.e., greater than zero, equal to zero or less than zero) of the value comparison operator X.sub.i.sup.n−t−X.sub.1X.sub.2 . . . X.sub.n is obtained through computation. It's worth noting that computation is performed in an integer domain, |X.sub.1X.sub.2 . . . X.sub.n|<n/2 or |X.sub.1X.sub.2 . . . X.sub.n|<n/3 is required to be satisfied, and |X.sub.i.sup.n−1−X.sub.2X.sub.3 . . . X.sub.n|<n/2 or |X.sub.i.sup.n−1−X.sub.2X.sub.3 . . . X.sub.n|<n/3.

    [0132] Step 906: Determine that the valid node data corresponding to the i.sup.th node device is the extremum if the value comparison operator is greater than or equal to zero and the i.sup.th node data is greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation.

    [0133] Exemplarily, FIG. 10 illustrates a process of determining an (n−1).sup.th round (i.e., a second round) extremum by three parties. A party P.sub.1 generates a second random number R.sub.2 and transmits R.sub.2 to a party P.sub.2; the party P.sub.2 performs computation and transmits R.sub.2X.sub.2 to a party P.sub.3; the party P.sub.3 receives R.sub.2X.sub.2 and transmits R.sub.2X.sub.2X.sub.3 to the party P.sub.1; and the party P.sub.1 receives R.sub.2X.sub.2X.sub.3 and calculates X.sub.1.sup.2−X.sub.2X.sub.3. Similarly, the party P.sub.2 and the party P.sub.3 both execute the above steps and respectively calculate X.sub.2.sup.2−X.sub.1X.sub.3 and X.sub.3.sup.2−X.sub.1X.sub.2.

    [0134] In the embodiment of the present disclosure, when (n−1).sup.th round extremum determination is performed, value comparison is performed without continuing to adopt the mean-based computation method, but the value comparison operator is calculated through a secure multi-party multiplication computation method, which can avoid the situation that the node device having the valid node data can calculate the other valid node data when there are only two valid node data left, thereby further improving data security.

    [0135] The above embodiment illustrates the first process of determining the (n−1).sup.th extremum based on secure multi-party multiplication computation. In one embodiment, specific to the situation of the three parties, namely, n=3, there is a second manner to determine the (n−1).sup.th round (i.e., the second round) extremum. FIG. 11 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, and i is a positive integer less than or equal to n. When n is 3 and t+1 is n−1, the method includes the following steps.

    [0136] Step 1101: Acquire a t.sup.th mean obtained in t.sup.th round federated computation.

    [0137] Exemplary implementation of step 1101 may refer to above step 201, which is not repeated in the embodiment of the present disclosure.

    [0138] Step 1102: Generate a third random number which is a positive number.

    [0139] A second node device generates a third random number R.sub.3 to protect data privacy.

    [0140] Step 1103: Transmit the third random number or a reciprocal of the third random number to a third node device, and transmit a first product to a first node device.

    [0141] The first product is the product of the third random number and valid node data of the second node device. The third node device is configured to calculate a second product and transmit the second product to the first node device. The second product is the product of the reciprocal of the third random number and valid node data of the third node device. The first node device is configured to receive the first product and the second product and calculate a first value comparison operator based on the first product and the second product, the first value comparison operator is a difference between the square of valid node data of the first node device and a third product, and the third product is the product of second node data and third node data.

    [0142] Exemplarily, as shown in FIG. 12, the party P.sub.2 generates the third random number R.sub.3, transmits R.sub.3 or 1/R.sub.3 to the party P.sub.3 and generates the first product R.sub.3X.sub.2 transmitted to the party P.sub.1, meanwhile, after the party P.sub.3 receives R.sub.3 or 1/R.sub.3, the party P.sub.3 generates the second product X.sub.3/R.sub.3 and transmits the second product X.sub.3/R.sub.3 to the party P.sub.1, and thus, the party P.sub.1 can calculate X.sub.2X.sub.3 based on the first product R.sub.3X.sub.2 and the second product X.sub.3/R.sub.3, and then calculates the first data comparison operator X.sub.1.sup.2−X.sub.2X.sub.3.

    [0143] Step 1104: Receive a fourth product transmitted by the third node device and a fifth product transmitted by the first node device.

    [0144] The third node device is configured to generate a fourth random number and transmit the fourth random number to the first node device. The first node device is configured to determine the fifth product based on the fourth random number. The fourth product is the product of the valid node data of the third node device and the fourth random number. The fifth product is the product of the reciprocal of the fourth random data and the valid node data of the first node device.

    [0145] Similarly, when the party P.sub.2 needs to calculate X.sub.2.sup.2−X.sub.1X.sub.3, the party P.sub.3 (or the party P.sub.1) takes charge of generating the fourth random number R.sub.4, the party P.sub.3 performs computation and transmits the fourth product R.sub.4X.sub.3 to the party P.sub.2, the party P.sub.3 transmits the fourth random data R.sub.4 or the reciprocal 1/R.sub.4 of the fourth random number to the party P.sub.1, and the party P.sub.1 performs computation and transmits the fifth product X.sub.1/R.sub.4 to the party P.sub.2.

    [0146] Step 1105: Calculate a second value comparison operator based on the fourth product and the fifth product.

    [0147] The second value comparison operator is the difference between the square of the valid node data of the second node device and a sixth product, and the sixth product is the product of the valid node data of the first node device and the valid node data of the third node device.

    [0148] The party P.sub.2 calculates X.sub.1X.sub.3 based on the fourth product R.sub.4X and the fifth product X.sub.1/R.sub.4, and then calculates the second data comparison operator X.sub.2.sup.2−X.sub.1X.sub.3.

    [0149] Step 1106: Determine that the valid node data corresponding to the second node device is the extremum in response to the second data comparison operator being greater than or equal to zero and the second node data being greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation.

    [0150] The second node data is the valid node data or the invalid node data of the second node device.

    [0151] In the embodiment of the present disclosure, when (n−1).sup.th round extremum determination is performed, value comparison is performed without continuing to adopt the mean-based computation method, but the value comparison operator is calculated through a secure multi-party multiplication computation method, which can avoid the situation that the node device having the valid node data can calculate the other valid node data when there are only two valid node data left, thereby further improving data security.

    [0152] The above embodiment illustrates the process of determining the extremum by the three parties, and actually, when the number of the parties is an odd number, the method can be adopted to perform (n−1).sup.th round extremum determination.

    [0153] It is worth mentioning that except computation of X.sub.i.sup.n−1−X.sub.1X.sub.2 . . . X.sub.n, the node devices can also calculate equations of other forms, such as X.sub.i.sup.2n−2−X.sub.1.sup.2X.sub.2.sup.2 . . . X.sub.n.sup.2, where the product behind the minus does not include X.sub.i.sup.2, and is the product of the square of other (n−1) node data except X.sub.1. The computational formula used by the node devices is not limited in the embodiment of the present disclosure.

    [0154] In one embodiment, when there are a large number of parties, node device division can be performed by adopting a hierarchical mode, and after extremum computation in one layer is finished, computation of a next layer continues, so as to reduce communication overhead and extremum determining duration. For example, when n is 5, the parties can be divided into P.sub.1P.sub.2P.sub.3, P.sub.4, P.sub.5, where each layer has three groups; and when n is 7, the parties can be divided into P.sub.1P.sub.2P.sub.3, P.sub.3P.sub.4P.sub.5 and P.sub.6, each layer has three groups, that is, one party can appear in a plurality of groups, and each group is composed of one or at least three node devices. When n is large, multi-layer grouping can be performed.

    [0155] Before mean computation, the method for determining an extremum based on secure multi-party computation further includes the following steps.

    [0156] Step 4: Divide n node devices into at least one layer of device groups according to a group division mode if n is greater than 3, where each layer of device groups includes at least three device groups of a previous layer, and each device group in a first layer of device groups is composed of one or at least three node devices.

    [0157] For example, when n is 27, nine device groups are divided in a first layer, and each group has three parties, namely, G.sub.1={P.sub.1P.sub.2P.sub.3}, G.sub.2={P.sub.4P.sub.5P.sub.6} . . . G.sub.9−{P.sub.25P.sub.26P.sub.27}; and in grouping of a second layer, the nine groups of the first layer are divided into three groups, and each group of the second layer includes three groups of the first layer, namely, {G.sub.1G.sub.2G.sub.3}, {G.sub.4G.sub.5G.sub.6} and {G.sub.7G.sub.8G.sub.9}.

    [0158] Step 5: Perform federated computation among device groups in an (m+1).sup.th layer based on valid node data of an i.sup.th node device if the valid node data of the i.sup.th node device is an extremum of a party group where the i.sup.th node device is located in device groups in an m.sup.th layer.

    [0159] After at least one owner of the extremum is determined in groups in a lower layer, a group representative is selected therefrom to perform extremum determination among groups of a next layer (i.e., a higher layer). When there are at least two parties having the extremum, one party can be selected according to whether a computing resource of the parties is rich or not, whether network communication is strong or not, reliability, security, computation complexity and other aspects, or is randomly selected, which is not limited in the embodiment of the present disclosure.

    [0160] As shown in FIG. 13, when it is determined that a party P.sub.1 has an extreme in a first device group constituted by the party P.sub.1, a party P.sub.2 and a party P.sub.3, a party P.sub.4 has an extremum in a second device group constituted by the party P.sub.4, a party P.sub.5 and a party P.sub.6 and a party P.sub.7 has an extremum in a third device group constituted by the party P.sub.7, a party P.sub.5 and a party P.sub.9, the party P.sub.1, the party P.sub.4 and the party P.sub.7 perform extremum determination among groups of a next layer.

    [0161] Step 6: Determine that the valid node data of the i.sup.th node device is an extremum of n valid node data in the n node devices if the valid node data of the i.sup.th node device is the extremum of the valid node data in device groups of a last layer.

    [0162] After last-layer extremum determination is performed and final federated computation is completed, if the valid node data of the i.sup.th node device is the extremum, it is determined that the valid node data of the i.sup.th node device is the extremum of the n valid node data in the n node devices.

    [0163] In the embodiment of the present disclosure, when there are a large number of node devices, intragroup extremum determination is first performed in a group division mode, then, extremum determination among the groups is performed, and meanwhile multi-layer grouping can be performed, thereby reducing communication overhead, reducing computation complexity and improving extremum determination efficiency.

    [0164] The above embodiments illustrate the process of determining the extremum based on secure multi-party computation, where the extremum may be a maximum value or a minimum value. If the maximum value is required to be determined, extremum comparison is directly performed according to the above steps, and the obtained extremum is the maximum value; and if the minimum value is required to be determined, the node devices first perform negation operation on local original valid node data, opposite numbers serve as valid node data for extremum comparison, the opposite number extremum is obtained, and then negation operation is performed to determine the minimum value. FIG. 14 illustrates a flowchart of a secure multi-party computation method according to another exemplary embodiment of the present disclosure. The embodiment is described with executing, by an i.sup.th node device in a federated computation system, the method as an example. The federated computation system includes n node devices, n is an integer greater than 2, and i is a positive integer less than or equal to n. When n is 3 and t+1 is n−1, the method includes the following steps.

    [0165] Step 1401: Determine original valid node data of the i.sup.th node device as valid node data of the i.sup.th node device in response to a maximum value computation instruction.

    [0166] Step 1402: Determine an opposite number of the original valid node data of the i.sup.th node device as the valid node data of the i.sup.th node device in response to a minimum value computation instruction.

    [0167] When the maximum value is required to be determined from the data of the n node devices, the node devices can determine the original valid node data as the valid node data for subsequent federated computation; and when the minimum value is required to be determined from the data of the n node devices, the extremum determination is performed by gradually obsoleting the data less than the mean in the above process, and thus, the node devices determine the opposite numbers of the valid node data as the valid node data for subsequent federated computation, and the minimum value is determined by determining the maximum value in the opposite numbers.

    [0168] Step 1403: Acquire a t.sup.th mean obtained in t.sup.th round federated computation.

    [0169] Step 1404: Perform (t+1).sup.th round federated computation based on the valid node data of the i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean.

    [0170] Step 1405: Perform (t+1).sup.th round federated computation based on invalid node data if the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean.

    [0171] Exemplary implementations of step 1403 to step 1405 may refer to step 201 to step 203 described above, and are not repeated herein.

    [0172] Step 1406: Determine that the original valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0173] After (n−1).sup.th round federated computation (i.e., final federated computation), the valid node data of the i.sup.th node device is greater than or equal to the (n−1).sup.th mean, and thus, the valid node data is the maximum value in the n valid node data. Because the valid node data is the original valid node data per se, the original valid node data of the i.sup.th node device is determined as the maximum value.

    [0174] Step 1407: Determine that the original valid node data of the i.sup.th node device is the minimum value if the valid node data of the i.sup.th node device is greater than or equal to the (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0175] After (n−1).sup.th round federated computation, the valid node data of the i.sup.th node device is greater than or equal to the (n−1).sup.th mean, and thus, the valid node data is the maximum value in the n valid node data. Because the valid node data is the opposite number of the original valid node data, the original valid node data of the i.sup.th node device is determined as the minimum value.

    [0176] In the embodiment of the present disclosure, if the minimum value is required to be determined, negation operation can be performed on the original valid node data, the process of determining an extremum based on secure multi-party computation is performed based on the opposite numbers, and the maximum value in the opposite numbers can be determined, that is, the minimum value in the original valid node data is obtained; and if the maximum value is required to be determined, federated computation is directly performed based on the original valid node data, and thus, the solution provided by the present disclosure can satisfy the maximum value determining demand and can also satisfy the minimum value determining demand.

    [0177] FIG. 15 is a structural block diagram of an apparatus for determining an extremum based on secure multi-party computation according to an exemplary embodiment of the present disclosure. The apparatus includes following structures: [0178] a first acquiring module 1501 configured to acquire a t.sup.th mean obtained in t.sup.th round federated computation, where the t.sup.th mean is calculated based on the n node data of n node devices and an average coefficient, the n node data includes m valid node data, the average coefficient is decreased progressively along with the increasing of the round number of federated computation, t is a positive integer less than n−1, and m is a positive integer less than or equal to n; [0179] a first calculation module 1502 configured to perform (t+1).sup.th round federated computation based on valid node data of an i.sup.th node device if the valid node data of the i.sup.th node device is greater than the t.sup.th mean; [0180] a second calculation module 1503 configured to perform (t+1).sup.th round federated computation based on the invalid node data when the valid node data of the i.sup.th node device is less than or equal to the t.sup.th mean; and [0181] a first determining module 1504 configured to determine that the valid node data of the i.sup.th node device is the extremum if the valid node data of the i.sup.th node device is greater than or equal to an (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0182] In one embodiment, the second calculation module 1503 includes: [0183] a first calculation unit configured to perform (t+1).sup.th round federated computation based on the invalid node data when the valid node data of the i.sup.th node device is less than the t.sup.th mean, and determine that the valid node data corresponding to the i.sup.th node device is not the extremum; and [0184] a second calculation unit configured to perform (t+1).sup.th round federated computation based on the invalid node data if the valid node data of the i.sup.th node device is equal to the t.sup.th mean, and determine the extremum based on a relationship between a (t+1).sup.th mean and the invalid node data.

    [0185] In one embodiment, the second calculation unit is further configured to: [0186] determine that the valid node data corresponding to the i.sup.th node device is not the extremum when the (t+1).sup.th mean is greater than the invalid node data; [0187] determine that the valid node data of the i.sup.th node device is the extremum when the (t+1).sup.th mean is equal to the invalid node data, and t+1 is n−1; and [0188] determine the extremum based on a relationship between the invalid node data and a mean obtained through subsequent federated computation when the (t+1).sup.th mean is equal to the invalid node data and t+1 is less than n−1.

    [0189] In one embodiment, the i.sup.th node device is a first node device, and the first acquiring module 1501 includes: [0190] a first generation unit configured to generate a first random number; [0191] a first transmitting unit configured to calculate the sum of first node data and the first random number to serve as a first data sum, and transmit the first data sum to a second node device, where the second node device is configured to calculate a second data sum and transmit the second data sum to a third node device, and the second data sum is the sum of the first data sum and second node data, j.sup.th node data is valid node data or invalid node data of a j.sup.th node device, and j is a positive integer less than or equal to n; [0192] a first receiving unit configured to receive an n.sup.th data sum transmitted by an n.sup.th node device, where the n.sup.th data sum is the sum of n node data and the first random number; and [0193] a first determining unit configured to determine the t.sup.th mean based on the n.sup.th data sum and the first random number.

    [0194] In one embodiment, the first acquiring module 1501 further includes: [0195] a second receiving unit configured to receive a (j−1).sup.th data sum transmitted by a (j−1).sup.th node device, where the (j−1).sup.th data sum is the sum of the first random number and the first node data to (j−1).sup.th node data, and j is an integer greater than 1 and less than or equal to n; [0196] a second determining unit configured to determine a j.sup.th data sum based on the (j−1).sup.th data sum, where the j.sup.th data sum is the sum of the (j−1).sup.th data sum and j.sup.th node data; [0197] a second transmitting unit configured to transmit the j.sup.th data sum to a (j+1).sup.th node device when j is not equal to n, and transmitting the j.sup.th data sum to the first node device when j is equal to n.

    [0198] In one embodiment, the first acquiring module 1501 includes: [0199] a second generation unit configured to generate n−1 random numbers, where the sum of the n−1 random numbers is i.sup.th node data, and the i.sup.th node data is valid node data or invalid node data of the i.sup.th node device; [0200] a third transmitting unit configured to respectively transmit the n−1 random numbers to the rest of n−1 node devices, where each node device receives one random number transmitted by the i.sup.th node device; [0201] a third receiving unit configured to receive the random numbers respectively transmitted by the rest of n−1 node devices, and calculate the sum of the received n−1 random numbers to serve as an i.sup.th data sum; [0202] a fourth transmitting unit configured to respectively transmit the i.sup.th data sum to the rest of n−1 node devices; and [0203] a fourth receiving unit configured to receive n−1 data sums transmitted by the rest of n−1 node devices, and determine the t.sup.th mean based on the received n−1 data sums and the i.sup.th data sum.

    [0204] In one embodiment, t+1 is n−1, and the apparatus further includes: [0205] a first generation module configured to generate a second random number which is a positive number; [0206] a first transmitting module configured to transmit the second random number to an (i+1).sup.th node device, where the (i+1).sup.th node device is configured to calculate a first data product and transmit the first data product to an (i+2).sup.th node device, where the first data product is the product of the second random number and valid node data of the (i+1).sup.th node device; [0207] a first receiving module configured to receive an (n−1).sup.th data product transmitted by an (i−1).sup.th node device, where the (n−1).sup.th data product is the product of valid node data of the n−1 node devices except the i.sup.th node device in the n node devices and the second random number; [0208] a second determining module configured to determine a value comparison operator according to a difference between the valid node data of the i.sup.th node device to the power of n−1 and the (n−1).sup.th data product; and [0209] a third determining module configured to determine that the valid node data corresponding to the i.sup.th node device is the extremum if the value comparison operator is greater than or equal to zero and the i.sup.th node data is greater than or equal to an (n−2).sup.th mean in (n−2).sup.th round federated computation, where the i.sup.th node data is the valid node data or the invalid node data.

    [0210] In one embodiment, n is 3, t+1 is 2, the i.sup.th node device is the second node device, and the apparatus further includes: [0211] a second generation module configured to generate a third random number which is a positive number; [0212] a second transmitting module configured to transmit the third random number or the reciprocal of the third random number to the third node device and transmit a first product to the first node device, where the first product is the product of the third random number and valid node data of the second node device, the third node device is configured to calculate a second product and transmit the second product to the first node device, the second product is the product of the reciprocal of the third random number and valid node data of the third node device, the first node device is configured to receive the first product and the second product and calculate a first value comparison operator based on the first product and the second product, the first value comparison operator is a difference between the square of valid node data of the first node device and a third product, and the third product is the product of second node data and third node data.

    [0213] In one embodiment, the apparatus further includes: [0214] a second receiving module configured to receive a fourth product transmitted by the third node device and a fifth product transmitted by the first node device, where the third node device is configured to generate a fourth random number and transmit the fourth random number to the first node device, the first node device is configured to determine the fifth product based on the fourth random number, the fourth product is the product of the valid node data of the third node device and the fourth random number, and the fifth product is the product of the reciprocal of the fourth random data and the valid node data of the first node device; [0215] a third calculation module configured to calculate a second value comparison operator based on the fourth product and the fifth product, where the second value comparison operator is a difference between the square of the valid node data of the second node device and a sixth product, and the sixth product is the product of the valid node data of the first node device and the valid node data of the third node device; and [0216] a fourth determining module configured to determine that the valid node data corresponding to the second node device is the extremum if the second data comparison operator is greater than or equal to zero and the second node data is greater than or equal to the (n−2).sup.th mean in (n−2).sup.th round federated computation, where the second node data is the valid node data or the invalid node data of the second node device.

    [0217] In one embodiment, the apparatus further includes: [0218] a grouping module configured to divide the n node devices into at least one layer of device groups according to a group division mode if n is greater than 3, where each layer of device groups includes at least three device groups of a previous layer, and each device group in a first layer of device groups is composed of one or at least three node devices; [0219] a fourth calculation module configured to perform federated computation among device groups in an (m+1).sup.th layer based on valid node data of the i.sup.th node device if the valid node data of the i.sup.th node device is an extremum of a party group where the i.sup.th node device is located in device groups in an m.sup.th layer, where m is a positive integer; and [0220] a fifth determining module configured to determine that the valid node data of the i.sup.th node device is an extremum of n valid node data corresponding to the n node devices if the valid node data of the i.sup.th node device is the extremum of valid node data in device groups of a last layer.

    [0221] In one embodiment, the apparatus further includes: [0222] a sixth determining module configured to determine original valid node data of the i.sup.th node device as the valid node data of the i.sup.th node device in response to a maximum value computation instruction; and [0223] the first determining module 1504 further includes: [0224] a third determining unit configured to determine that the original valid node data of the i.sup.th node device is a maximum value if the valid node data of the i.sup.th node device is greater than or equal to the (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0225] In one embodiment, the apparatus further includes: [0226] a seventh determining module configured to determine an opposite number of the original valid node data of the i.sup.th node device as the valid node data of the i.sup.th node device in response to a minimum value computation instruction; and [0227] the first determining module 1504 further includes: [0228] a fourth determining unit configured to determine that the original valid node data of the i.sup.th node device is a minimum value if the valid node data of the i.sup.th node device is greater than or equal to the (n−1).sup.th mean after (n−1).sup.th round federated computation.

    [0229] As such, the mean of the data corresponding to the n node devices is calculated, the node devices compare the own data with the mean jointly calculated in the previous round so as to confirm that the own data is not the extremum when the own data is less than the mean, replace the valid node data with the invalid node data for next-round mean computation when the own data is less than or equal to the mean so that the jointly-calculated mean can be converged and gradually approach the extremum, and accordingly, a result is obtained in the (n−1).sup.th round, thereby effectively solving the problem about secure multi-party extremum computation; and in addition, the node devices do not need to reveal privacy data and a value relationship between the data, and based on the secure multi-party mean computation method, do not involve encryption and decryption operations, accordingly, the computation complexity and the communication overhead are low, and the computing efficiency can be improved.

    [0230] FIG. 16 illustrates a schematic structural diagram of a computer device according to an embodiment of the present disclosure.

    [0231] The computer device 1600 includes a central processing unit (CPU) 1601, a system memory 1604 including a random access memory (RAM)1602 and a read only memory 1603, and a system bus 1605 connecting the system memory 1604 and the central processing unit 1601. The computer device 1600 further includes a basic input/output (I/O) controller 1606 assisting in transmitting information between components in a computer, and a mass storage device 1607 configured to store an operating system 1613, an application 1614, and another program module 1615.

    [0232] The basic input/output system 1606 includes a display 1608 configured to display information, and an input device 1609 configured to input information by a user, such as a mouse and a keyboard. The display 1608 and the input device 1609 are connected to the central processing unit 1601 through an input/output controller 1610 connected to the system bus 1605. The basic input/output system 1606 may further include the input/output controller 1610, for receiving and processing an input from multiple other devices such as the keyboard, the mouse, or an electronic stylus. Similarly, the input/output controller 1610 further provides an output to a display screen, a printer, or another type of output device.

    [0233] The mass storage device 1607 is connected to the central processing unit 1601 by using a mass storage controller (not shown) connected to the system bus 1605. The mass storage device 1607 and a computer-readable medium associated therewith provide non-volatile storage for the computer device 1600. That is, the mass storage device 1607 may include a computer-readable medium (not shown) such as a hard disk or a compact disc read-only memory (CD-ROM) drive.

    [0234] In general, the computer-readable medium may include a computer storage medium and a communication medium. The computer storage medium includes volatile and non-volatile media, and removable and non-removable media implemented by using any method or technology used for storing information such as computer-readable instructions, data structures, program modules, or other data. The computer storage medium includes the RAM, the ROM, an erasable programmable read only memory (EPROM), a flash memory or another solid-state memory technology, a CD-ROM, a digital video disc (DVD) or another optical memory, a tape cartridge, a tape, a magnetic disk memory, or another magnetic storage device. Certainly, a person skilled in the art may learn that the computer storage medium is not limited to the foregoing several types. The system memory 1604 and the mass storage device 1607 may be generally called a memory.

    [0235] According to the embodiments of the present disclosure, the computer device 1600 may further be connected, through a network such as the Internet, to a remote computer on the network to run. That is, the computer device 1600 may be connected to a network 1612 by using a network interface unit 1611 connected to the system bus 1605, or may be connected to another type of network or a remote computer system (not shown) by using the network interface unit 1611.

    [0236] The memory further includes at least one instruction, at least one program, a code set, or an instruction set, and the at least one instruction, the at least one program, the code set, or the instruction set is stored in the memory and configured to be executed by one or more processors to implement the method for determining an extremum based on secure multi-party computation.

    [0237] An embodiment of the present disclosure further provides a computer-readable storage medium. The computer-readable storage medium stores at least one instruction, and the at least one instruction is loaded and executed by a processor to implement the method for determining an extremum based on secure multi-party computation according to the foregoing embodiments.

    [0238] According to one aspect of the present disclosure, a computer program product or a computer program is provided and includes computer instructions. The computer instructions are stored in a computer-readable storage medium. A processor of a computer device reads the computer instructions from the computer-readable storage medium and executes the computer instructions to enable the computer device to execute the method for determining an extremum based on secure multi-party computation in the foregoing various optional implementations.

    [0239] The term unit (and other similar terms such as subunit, module, submodule, etc.) in this disclosure may refer to a software unit, a hardware unit, or a combination thereof. A software unit (e.g., computer program) may be developed using a computer programming language. A hardware unit may be implemented using processing circuitry and/or memory. Each unit can be implemented using one or more processors (or processors and memory). Likewise, a processor (or processors and memory) can be used to implement one or more units. Moreover, each unit can be part of an overall unit that includes the functionalities of the unit.

    [0240] A person skilled in the art is to be aware that in the foregoing one or more examples, functions described in the embodiments of the present disclosure may be implemented by hardware, software, firmware, or any combination thereof. When implemented by using the software, the functions can be stored in the computer-readable medium or can be used as one or more instructions or codes in the computer-readable medium to be transmitted. The computer-readable medium includes a computer storage medium and a communication medium, where the communication medium includes any medium that facilitates a computer program to be transmitted from one place to another. The storage medium may be any available medium accessible to a general-purpose or dedicated computer.

    [0241] The foregoing descriptions are merely optional embodiments of the present disclosure, but are not intended to limit the present disclosure. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present disclosure shall fall within the scope of protection of the present disclosure.