a simple framework for noise free construction of fully
play

A Simple Framework for Noise-Free Construction of Fully Homomorphic - PowerPoint PPT Presentation

Feb 24, 2024 •651 likes •1.24k views

A Simple Framework for Noise-Free Construction of Fully Homomorphic Encryption from a Special Class of Non-Commutative Groups Koji Nuida National Institute of Advanced Industrial Science and Technology (AIST), Japan (Japan Science and

  1. A Simple Framework for Noise-Free Construction of Fully Homomorphic Encryption from a Special Class of Non-Commutative Groups Koji Nuida National Institute of Advanced Industrial Science and Technology (AIST), Japan (Japan Science and Technology Agency (JST) PRESTO Researcher) Mathematics of Cryptography @ UCI September 1, 2015 (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 1/28

  2. Summary of Talk Proposal of FHE without bootstrapping, based on non-commutative groups (ePrint 2014/097) Homomorphic operators from commutator with rerandomized inputs Constructing underlying groups by group presentations (generators and their relations) “Obfuscating” group structure by random transformations of group presentation Candidate choice of groups Attacks for inappropriate groups (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 2/28

  3. Contents Introduction Idea for Homomorphic Operation Towards Secure Instantiation (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 3/28

  4. Contents Introduction Idea for Homomorphic Operation Towards Secure Instantiation (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 4/28

  5. Fully Homomorphic Encryption (FHE) PKE + “any computation on encrypted data” “Homomorphic operation” on ciphertexts In this talk: Plaintext m ∈ { 0 , 1 } , and Dec(Enc( m )) = m Dec(NOT( c )) = ¬ Dec( c ) Dec(AND( c 1 , c 2 )) = Dec( c 1 ) ∧ Dec( c 2 ) except negligible error prob. (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 5/28

  6. Example: [van Dijk et al. EC’10] Ciphertext for m ∈ { 0 , 1 } : c = pq + 2 r + m Dec( c ) = ( c mod p ) mod 2 Homomorphic + and × preserve shapes of ciphertexts, but “noise” r amplified (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 6/28

  7. Example: [van Dijk et al. EC’10] Ciphertext for m ∈ { 0 , 1 } : c = pq + 2 r + m Dec( c ) = ( c mod p ) mod 2 Homomorphic + and × preserve shapes of ciphertexts, but “noise” r amplified Finally yielding dec. failure! (Somewhat HE) Noise reduction required: “ Bootstrapping ” ([Gentry STOC’09]) (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 6/28

  8. Bootstrapping Opened the heavy door to FHE, but: Computationally inefficient (despite e.g., [Ducas–Micciancio EC’15]) Syntax less analogical to classical HE Problem of circular security (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 7/28

  9. Bootstrapping Opened the heavy door to FHE, but: Computationally inefficient (despite e.g., [Ducas–Micciancio EC’15]) Syntax less analogical to classical HE Problem of circular security Goal: FHE without bootstrapping No (acknowledged) solutions so far (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 7/28

  10. Non-Commutative Groups and Commutator We use finite non-commutative groups G Multiplicative, with identity element 1 = 1 G Commutator defined on G : [ g , h ] = g · h · g − 1 · h − 1 [ g , h ] = 1 if gh = hg Always [ g , h ] = 1 if G is commutative (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 8/28

  11. Strategy Outline 1 Realize homomorphic operators in group G By composing group operators in G 2 “Lift” the structure to large group G With “trapdoor” homomorphism ϕ : G ↠ G Homomorphic operators are “compatible” with ϕ , hence lifted to G 3 “Obfuscate” group structure of G (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 9/28

  12. Contents Introduction Idea for Homomorphic Operation Towards Secure Instantiation (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 10/28

  13. Commutator and AND Operator [ g , h ] = g · h · g − 1 · h − 1 ( g = 1 or h = 1) implies [ g , h ] = 1 (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 11/28

  14. Commutator and AND Operator [ g , h ] = g · h · g − 1 · h − 1 ( g = 1 or h = 1) implies [ g , h ] = 1 Similar to: ( b = 0 or b ′ = 0) implies b ∧ b ′ = 0 Starting point of this work (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 11/28

  15. Homomorphic NOT Operator c = ( c 1 , c 2 ) ∈ G × G associated to m ∈ { 0 , 1 } : “Class-0” if c 2 = 1, “Class-1” if c 2 = c 1 And c 1 ̸ = 1, to distinguish two classes Our NOT operator: c �→ ( c 1 , c 1 · ( c 2 ) − 1 ) Switching class-0 and class-1 (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 12/28

  16. Homomorphic AND Operator? Given: Class- m c and class- m ′ d Our homomorphic AND operator? ?? ( c , d ) �→ e , e i = [ c i , d i ] ( i = 1 , 2) ?? (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 13/28

  17. Homomorphic AND Operator? Given: Class- m c and class- m ′ d Our homomorphic AND operator? ?? ( c , d ) �→ e , e i = [ c i , d i ] ( i = 1 , 2) ?? e is almost class-( m ∧ m ′ ): m = 0 implies c 2 = 1, e 2 = 1 (0 ∧ m ′ = 0) m ′ = 0 implies d 2 = 1, e 2 = 1 ( m ∧ 0 = 0) m = m ′ = 1 implies c 2 = c 1 and d 2 = d 1 , so e 2 = e 1 (1 ∧ 1 = 1) (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 13/28

  18. Homomorphic AND Operator? Given: Class- m c and class- m ′ d Our homomorphic AND operator? ?? ( c , d ) �→ e , e i = [ c i , d i ] ( i = 1 , 2) ?? e is almost class-( m ∧ m ′ ): m = 0 implies c 2 = 1, e 2 = 1 (0 ∧ m ′ = 0) m ′ = 0 implies d 2 = 1, e 2 = 1 ( m ∧ 0 = 0) m = m ′ = 1 implies c 2 = c 1 and d 2 = d 1 , so e 2 = e 1 (1 ∧ 1 = 1) But e 1 ̸ = 1 not guaranteed (e.g., c 1 = d 1 ) (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 13/28

  19. Homomorphic AND Operator ToDo: Avoid commuting c 1 , d 1 in inputs (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 14/28

  20. Homomorphic AND Operator ToDo: Avoid commuting c 1 , d 1 in inputs Solution: “Rerandomize” the inputs as e 1 = [ g · c 1 · ( g ) − 1 , d 1 ] e 2 = [ g · c 2 · ( g ) − 1 , d 2 ] ( g ∈ G common and uniformly random) e 2 still OK; g · 1 · ( g ) − 1 = 1, common g used (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 14/28

  21. Homomorphic AND Operator ToDo: Avoid commuting c 1 , d 1 in inputs Solution: “Rerandomize” the inputs as e 1 = [ g · c 1 · ( g ) − 1 , d 1 ] e 2 = [ g · c 2 · ( g ) − 1 , d 2 ] ( g ∈ G common and uniformly random) e 2 still OK; g · 1 · ( g ) − 1 = 1, common g used e 1 will be OK if G is appropriate (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 14/28

  22. Requirement: Commutator-Separable Groups Definition G is commutator-separable, if there is an exceptional subset 1 ∈ X ⊂ G with: (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 15/28

  23. Requirement: Commutator-Separable Groups Definition G is commutator-separable, if there is an exceptional subset 1 ∈ X ⊂ G with: | X | / | G | negligible (so is 1 / | G | ) Correctness of Enc (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 15/28

  24. Requirement: Commutator-Separable Groups Definition G is commutator-separable, if there is an exceptional subset 1 ∈ X ⊂ G with: | X | / | G | negligible (so is 1 / | G | ) Correctness of Enc For any x , y ∈ G \ X , Pr[ [ gxg − 1 , y ] ∈ X ] ≤ neg . where g ∈ G is uniformly random AND keeps c 1 ̸∈ X (hence c 1 ̸ = 1) (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 15/28

  25. Requirement: Commutator-Separable Groups Definition G is commutator-separable, if there is an exceptional subset 1 ∈ X ⊂ G with: | X | / | G | negligible (so is 1 / | G | ) Correctness of Enc For any x , y ∈ G \ X , Pr[ [ gxg − 1 , y ] ∈ X ] ≤ neg . where g ∈ G is uniformly random AND keeps c 1 ̸∈ X (hence c 1 ̸ = 1) Examples: SL 2 ( F q ), PSL 2 ( F q ), 1 / q neg. (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 15/28

  26. Examples of G Pr[ [ gxg − 1 , y ] ∈ X ] ≤ | X | · | Z G ( x ) | · | Z G ( y ) | , | G | where Z G ( x ) = { z ∈ G | xz = zx } (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 16/28

  27. Examples of G Pr[ [ gxg − 1 , y ] ∈ X ] ≤ | X | · | Z G ( x ) | · | Z G ( y ) | , | G | where Z G ( x ) = { z ∈ G | xz = zx } | SL 2 ( F q ) | = q ( q 2 − 1) For G = SL 2 ( F q ), | Z G ( x ) | ≤ 2 q for x ̸ = ± I (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 16/28

  28. Examples of G Pr[ [ gxg − 1 , y ] ∈ X ] ≤ | X | · | Z G ( x ) | · | Z G ( y ) | , | G | where Z G ( x ) = { z ∈ G | xz = zx } | SL 2 ( F q ) | = q ( q 2 − 1) For G = SL 2 ( F q ), | Z G ( x ) | ≤ 2 q for x ̸ = ± I Hence commutator-separable, with X = {± I } So is PSL 2 ( F q ) = SL 2 ( F q ) / {± I } , X = 1 (c) Koji Nuida September 1, 2015 Noise-Free FHE from Non-Commutative Groups 16/28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Noise Explorer Fully automated modeling, analysis and verification for arbitrary Noise protocols

Noise Explorer Fully automated modeling, analysis and verification for arbitrary Noise protocols

Noise Explorer Fully automated modeling, analysis and verification for arbitrary Noise protocols IACR Real World Crypto Nadim Kobeissi Symposium 2019 Karthikeyan Bhargavan San Jose, California Noise Protocol Framework: What is it? A

586 views • 23 slides
Module-2c: Two Port Noise Modelling 20 July 2018 16:40 Shot Noise vs. Flicker Noise Simple

Module-2c: Two Port Noise Modelling 20 July 2018 16:40 Shot Noise vs. Flicker Noise Simple

Module-2c: Two Port Noise Modelling 20 July 2018 16:40 Shot Noise vs. Flicker Noise Simple Temperature Sensor Modules Page 1 Reference: Prof. Ali Niknejad, Two Port Noise Analysis, 2015 Why do we refer noise to input? Modules Page 2 noise

310 views • 7 slides
GIS for Noise Simple GIS Tools to Improve Noise Analysis Presented by Kevin Keller TRB ADC 40

GIS for Noise Simple GIS Tools to Improve Noise Analysis Presented by Kevin Keller TRB ADC 40

GIS for Noise Simple GIS Tools to Improve Noise Analysis Presented by Kevin Keller TRB ADC 40 Summer Meeting July 23, 2007 San Luis Obispo, CA GIS Geographic Information System Geographic Related to the surface of the earth

726 views • 29 slides
Safety Awareness Training for Noise and Hearing for the Construction Industry Wha hat t you

Safety Awareness Training for Noise and Hearing for the Construction Industry Wha hat t you

Safety Awareness Training for Noise and Hearing for the Construction Industry Wha hat t you ou wi will ll learn rn to today ay Why awareness of noise hazards is important How to recognize loud noise levels How to reduce

839 views • 46 slides
MELBOURNE METRO RAIL PROJECT Construction: noise Operation: noise and vibration Dave Anderson

MELBOURNE METRO RAIL PROJECT Construction: noise Operation: noise and vibration Dave Anderson

MELBOURNE METRO RAIL PROJECT Construction: noise Operation: noise and vibration Dave Anderson 1 Outline Peer Review Summary of noise and vibration assessment Environmental Performance Requirements Findings and

450 views • 20 slides
d 4 x g [ RF 1 ( ) R + RF Towards Ghost free and singularity free construction of

d 4 x g [ RF 1 ( ) R + RF Towards Ghost free and singularity free construction of

d 4 x g [ RF 1 ( ) R + RF Towards Ghost free and singularity free construction of gravity Anupam Mazumdar R F 5 ( ) R + Lancaster University R Warren Siegel, Tirthabir Biswas

970 views • 33 slides
Construction Noise at Construction Noise at Night, Best Practices & Night, Best Practices

Construction Noise at Construction Noise at Night, Best Practices & Night, Best Practices

Construction Noise at Construction Noise at Night, Best Practices & Night, Best Practices & Human Reaction Human Reaction David S. George David S. George Noise Abatement Coordinator Noise Abatement Coordinator City of Seattle City

349 views • 11 slides
Identifiability of dynamic networks with noisy and noise-free nodes Paul Van den Hof Coworkers:

Identifiability of dynamic networks with noisy and noise-free nodes Paul Van den Hof Coworkers:

Identifiability of dynamic networks with noisy and noise-free nodes Paul Van den Hof Coworkers: Harm Weerts, Arne Dankers 27 September 2016, ERNSI meeting, Cison di Valmarino, Italy Dynamic network r i external excitation v i process noise w i

364 views • 32 slides
All-Digital PLL Frequency and Phase Noise Degradation Measurements Using Simple On-Chip

All-Digital PLL Frequency and Phase Noise Degradation Measurements Using Simple On-Chip

All-Digital PLL Frequency and Phase Noise Degradation Measurements Using Simple On-Chip Monitoring Circuits Gyusung Park, Bongjin Kim*, Minsu Kim, Vijay Reddy** and Chris H. Kim University of Minnesota, Minneapolis, MN, USA *Nanyang

302 views • 26 slides
SIMPLE Grid Framework Mayank Sharma (CERN, speaker) Maarten Litmaath (CERN) Eraldo Silva Junior

SIMPLE Grid Framework Mayank Sharma (CERN, speaker) Maarten Litmaath (CERN) Eraldo Silva Junior

SIMPLE Grid Framework Mayank Sharma (CERN, speaker) Maarten Litmaath (CERN) Eraldo Silva Junior (CBPF, Brazil) 15/11/18 SIMPLE Framework: PyParis 2018 1 $>whoami Software Engineer, CERN. Developer of SIMPLE Grid Framework.

488 views • 28 slides
Coating Noise Measurements LIGO SURF 2016 Subham Vidyant Mentors : Johannes Eichholz,

Coating Noise Measurements LIGO SURF 2016 Subham Vidyant Mentors : Johannes Eichholz,

Reference System for Cryogenic Coating Noise Measurements LIGO SURF 2016 Subham Vidyant Mentors : Johannes Eichholz, Christopher Wipf, Rana X Adhikari Advanced LIGO Noise Budget A Simple Model of Coating Noise Brownian Noise :-

368 views • 19 slides
Overview of Germanys activities relating to underwater noise in the framework of the

Overview of Germanys activities relating to underwater noise in the framework of the

Overview of Germanys activities relating to underwater noise in the framework of the implementation of the MSFD Joint HELCOM/BIAS Workshop, November 26 th 2014, Helsinki Jens Fischer, Maria Boethling, Jochen Kning , Ilona Bscher and Kai

269 views • 14 slides
Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on

Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on

Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on intensity, duration, and area impacted S ource: FAA Noise Contour Map 2 ICAO Aircraft Certification - Noise Reference Points (1476 ft.) (6562

670 views • 24 slides
The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave

The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave

The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave amplifiers Enrico Rubiola, Rodolphe Boudot, Yannick Gruson FEMTO-ST Institute, Besanon, France CNRS and Universit de Franche Comt TimeNav 07

731 views • 27 slides
Spectro-Perfectionism: An Algorithmic Framework for Photon Noise-Limited Extraction of Optical

Spectro-Perfectionism: An Algorithmic Framework for Photon Noise-Limited Extraction of Optical

Spectro-Perfectionism: An Algorithmic Framework for Photon Noise-Limited Extraction of Optical Fiber Spectroscopy Adam S. Bolton The University of Utah Department of Physics & Astronomy Exoplanet PRVs - PSU - 2010 Aug 19 Beware of... o

933 views • 56 slides
NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home,

NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home,

LIFE NEEDS SOUND NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home, at leisure and at work If noise is too loud and we are exposed for too long it can damage our hearing and afgect our safety at

249 views • 14 slides
Nearby SNe with KamLAND Koji Ishidoshiro (Tohoku Univ.) Revealing the history of the universe

Nearby SNe with KamLAND Koji Ishidoshiro (Tohoku Univ.) Revealing the history of the universe

Nearby SNe with KamLAND Koji Ishidoshiro (Tohoku Univ.) Revealing the history of the universe with underground particle and nuclear research 2019 Betelgeuse (~200pc) Antares Betelgeuse (~170pc) (~200pc) Nearby red-supergiant Next SN

334 views • 29 slides
Brane Brain (Neuroscience) (Superstring theory) 2 Deep Learning cat AdS/CFT [Maldacena

Brane Brain (Neuroscience) (Superstring theory) 2 Deep Learning cat AdS/CFT [Maldacena

KIAS, 26 March, 2018 Cquest, Sogang u., 29 March, 2018 MIT, CTP, 4 Apr, 2018 MPI, AEI, 13 Apr, 2018 H ET group, Osaka, 30 May, 2018 DLAP2018 workshop, 1 June, 2018 Deep Learning and AdS/CFT Koji Hashimoto (Osaka u) ArXiv:1802.08313 w/ S.

405 views • 27 slides
Systems and Symmetry Breaking Koji Umemoto (YITP) Based on Arpan Bhattacharyya (YITP), Alexander

Systems and Symmetry Breaking Koji Umemoto (YITP) Based on Arpan Bhattacharyya (YITP), Alexander

QIST 2019 June 6th, 2019 Entanglement of Purification in Many Body Systems and Symmetry Breaking Koji Umemoto (YITP) Based on Arpan Bhattacharyya (YITP), Alexander Jahn (Freie U.) Tadashi Takayanagi (YITP) and KU [1902.02369] =

529 views • 33 slides
Designing materials with machine learning and quantum annealing Koji Tsuda University of Tokyo /

Designing materials with machine learning and quantum annealing Koji Tsuda University of Tokyo /

Designing materials with machine learning and quantum annealing Koji Tsuda University of Tokyo / NIMS / RIKEN Automatic Materials Design Experimental Design Machine Simulation Experiments Learning (DFT etc) Data Agenda Bayesian

489 views • 30 slides
An extended ensemble Monte Carlo study for a simple glass model . . . . . Koji Hukushima

An extended ensemble Monte Carlo study for a simple glass model . . . . . Koji Hukushima

Outline . . An extended ensemble Monte Carlo study for a simple glass model . . . . . Koji Hukushima mailto:hukusima@phys.c.u-tokyo.ac.jp The University of Tokyo, Komaba, Graduate school of Arts and Sciences 3 September, 2009 This

1k views • 25 slides
Nonparametric analysis of monotone choice Natalia Lazzati John Quah Koji Shirai November, 2018

Nonparametric analysis of monotone choice Natalia Lazzati John Quah Koji Shirai November, 2018

Nonparametric analysis of monotone choice Natalia Lazzati John Quah Koji Shirai November, 2018 Natalia Lazzati, John Quah, Koji Shirai () Nonparametric analysis of monotone choice 11/18 1 / 27 Motivation Revealed preference theory is often

385 views • 27 slides
Nonparametric Analysis of Monotone Choice Natalia Lazzati, John K.-H. Quah, and Koji Shirai 1 /

Nonparametric Analysis of Monotone Choice Natalia Lazzati, John K.-H. Quah, and Koji Shirai 1 /

Nonparametric Analysis of Monotone Choice Natalia Lazzati, John K.-H. Quah, and Koji Shirai 1 / 23 Introduction Empirical investigation of consumer demand often uses a nonparametric approach. Relies on qualitative features of demand derived

591 views • 27 slides
Sensor Fixation and Liquid Nitrogen Testing Tan Yuhang, Shi Xin tanyuhang@ihep.ac.cn 2019.6.27

Sensor Fixation and Liquid Nitrogen Testing Tan Yuhang, Shi Xin tanyuhang@ihep.ac.cn 2019.6.27

Sensor Fixation and Liquid Nitrogen Testing Tan Yuhang, Shi Xin tanyuhang@ihep.ac.cn 2019.6.27 2019/6/27 1 Sensor fixation This week I used glue again to fix th e sensor. After gel remover, there is still a lot of glue on the sensor

214 views • 7 slides

More recommend