algorithms in helib
play

Algorithms in HElib Shai Halevi and Victor Shoup - PowerPoint PPT Presentation

Jul 04, 2023 •518 likes •603 views

Algorithms in HElib Shai Halevi and Victor Shoup http://eprint.iacr.org/2014/106 Whats HElib? A software library implementation of homomorphic encryption (HE) Implements the ring-LWE variant of [BGV12] Written in C++, uses NTL for

  1. Algorithms in HElib Shai Halevi and Victor Shoup http://eprint.iacr.org/2014/106

  2. What’s HElib? • A software library implementation of homomorphic encryption (HE) • Implements the ring-LWE variant of [BGV12] • Written in C++, uses NTL for poly-arithmetic • Open source (GPL), available off https://github.com/shaih/HElib/ • Focused on effective use of “ ciphertext packing” [SV11] and the routing techniques from [GHS12]

  3. What’s Implemented in HElib? Low level: the cryptosystem itself • Useful analogy: “assembly language” for homomorphic computations • The HE schemes serves as a “hardware platform” • Defining the available operations and their cost Higher level: algorithms over this “platform” • Routing algorithms • Simple linear functions

  4. The HE “platform” • Each ciphertext encrypts a vector 𝑤 ∈ 𝐺 𝑜 • 𝐺 can be “any finite field” of our choice • 𝑜 is determined by the system parameters • Typical values are 𝑜 ∈ [100, 1000] • Operations are rotations, element-wise addition & multiplication • This is a SIMD environment • Not very different from Intel SSE etc.

  5. The HE “platform” • Cost measured in time, noise • Noise plays the role of circuit depth Operation Time cost Noise cost Constant Addition Cheap Cheap Addition Cheap Cheap Constant Mult. Cheap Moderate Multiplication Expensive Expensive Rotation Expensive Cheap

  6. Routing Procedures • Rotations  Arbitrary Permutations using “Generalized” Benes networks • Standard Benes works for size- 2 𝑜 networks • Has depth 2𝑜 , “cost” 4𝑜 • Two different generalizations: 𝑜 • Network size with depth 2𝑜 , “cost” 2 𝑏 𝑗 𝑏 𝑗 𝑗=1 𝑗 • Network size 𝑂 with depth 2 log 2 𝑂 , cost 4 log 2 𝑂 • Combining the two generalizations to optimize depth, cost

  7. Routing Procedures • Rotations  Arbitrary Permutations using “Generalized” Benes networks • Standard Benes works for size- 2 𝑜 networks • Has depth 2𝑜 , “cost” 4𝑜 • Two different generalizations: 𝑜 • Network size with depth 2𝑜 , “cost” 2 𝑏 𝑗 𝑏 𝑗 𝑗=1 𝑗 • Network size 𝑂 with depth 2 log 2 𝑂 , cost 4 log 2 𝑂 • Open: unify these two generalizations • May yield a 2x performance improvement

  8. Illustrative Timing Results Cyclotomic Vector Network Network Permutation Field size depth size time 𝑜 = 256 𝑛 = 4369 3 60 4.1 sec 7 35 3.6 sec 10 31 3.8 sec* 𝑜 = 630 𝑛 = 8191 5 37 5.0 sec 7 30 4.3 sec 9 28 4.0 sec 𝑛 = 21845 𝑜 = 1024 5 66 21.2 sec 7 45 18.3 sec* 9 41 16.7 sec* * Larger depth requires larger parameters

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

On dual lattice attacks against small-secret LWE and parameter choices in HElib and SEAL Martin

On dual lattice attacks against small-secret LWE and parameter choices in HElib and SEAL Martin

On dual lattice attacks against small-secret LWE and parameter choices in HElib and SEAL Martin R. Albrecht Information Security Group, Royal Holloway, University of London Learning with Errors or 1 Oded Regev. On lattices, learning with

586 views • 26 slides
Faster Homomorphic Linear Transformations in HElib Shai Halevi (IBM) Victor Shoup (IBM &

Faster Homomorphic Linear Transformations in HElib Shai Halevi (IBM) Victor Shoup (IBM &

Faster Homomorphic Linear Transformations in HElib Shai Halevi (IBM) Victor Shoup (IBM & NYU) Fully Homomorphic Encryption allows for arbitrary computation on encrypted data In this talk, the focus is on linear transformations . . . more

1.68k views • 92 slides
Greedy Algorithms Chapter 16 1 CPTR 430 Algorithms Greedy Algorithms Greedy Algorithms For

Greedy Algorithms Chapter 16 1 CPTR 430 Algorithms Greedy Algorithms Greedy Algorithms For

Greedy Algorithms Chapter 16 1 CPTR 430 Algorithms Greedy Algorithms Greedy Algorithms For some optimization problems, dynamic programming algorithms are overkill A greedy algorithm always makes a choice that looks best at the moment

1.09k views • 65 slides
Evolutionary Algorithms CS 478 - Evolutionary Algorithms 1 Evolutionary Computation/Algorithms

Evolutionary Algorithms CS 478 - Evolutionary Algorithms 1 Evolutionary Computation/Algorithms

Evolutionary Algorithms CS 478 - Evolutionary Algorithms 1 Evolutionary Computation/Algorithms Genetic Algorithms l Simulate natural evolution of structures via selection and reproduction, based on performance (fitness) l Type of

524 views • 30 slides
Graph Algorithms Chapter 22 1 CPTR 430 Algorithms Graph Algorithms Why Study Graph Algorithms?

Graph Algorithms Chapter 22 1 CPTR 430 Algorithms Graph Algorithms Why Study Graph Algorithms?

Graph Algorithms Chapter 22 1 CPTR 430 Algorithms Graph Algorithms Why Study Graph Algorithms? Mathematical graphs seem to be relatively specialized and abstract Why spend so much time and effort on algorithms for such an obscure area?

744 views • 47 slides
- - packing p a - packing algo- packing cking rithms algo- a l g o - theorems rithms

- - packing p a - packing algo- packing cking rithms algo- a l g o - theorems rithms

algorithmic composition dForm + IM WS2010 Inst. f. Arch. a. Media packing algorithms packing algorithms packing algorithms p a c k i n g packing algorithms packing algorithms algorithms packing packing algorithm 1 algorithms - -

39 views • 3 slides
Algorithms Chapter 3 Chapter Summary Algorithms n Example Algorithms n Algorithmic Paradigms

Algorithms Chapter 3 Chapter Summary Algorithms n Example Algorithms n Algorithmic Paradigms

Algorithms Chapter 3 Chapter Summary Algorithms n Example Algorithms n Algorithmic Paradigms Growth of Functions n Big- O and other Notation Complexity of Algorithms Algorithms Section 3.1 Section Summary Properties of Algorithms

847 views • 83 slides
Algorithms Theory Algorithms Theory 10 10 Greedy Algorithms G d Al ith Dr. Alexander

Algorithms Theory Algorithms Theory 10 10 Greedy Algorithms G d Al ith Dr. Alexander

Algorithms Theory Algorithms Theory 10 10 Greedy Algorithms G d Al ith Dr. Alexander Souza Winter term 11/12 Greedy algorithms 1 1. Introductory remarks Introductory remarks 2. Basic examples: The coin-changing problem

504 views • 19 slides
Randomized Algorithms Randomized Algorithms Two Types of Randomized Algorithms Two Types of

Randomized Algorithms Randomized Algorithms Two Types of Randomized Algorithms Two Types of

Randomized Algorithms Randomized Algorithms Two Types of Randomized Algorithms Two Types of Randomized Algorithms and and Some Complexity Classes Some Complexity Classes Speaker: Chuang-Chieh Lin Advisor: Professor Maw-Shang Chang National

910 views • 52 slides
The Role of Algorithms in Computing Chapter 1 1 CPTR 430 Algorithms The Role of Algorithms in

The Role of Algorithms in Computing Chapter 1 1 CPTR 430 Algorithms The Role of Algorithms in

The Role of Algorithms in Computing Chapter 1 1 CPTR 430 Algorithms The Role of Algorithms in Computing What is an Algorithm? Any well-defined computational procedure that takes some value (or set of values)its input and produces some

321 views • 13 slides
Algorithms X. Zhang Fordham Univ. 1 Real World applications of algorithms Algorithms for

Algorithms X. Zhang Fordham Univ. 1 Real World applications of algorithms Algorithms for

Algorithms X. Zhang Fordham Univ. 1 Real World applications of algorithms Algorithms for solving specific, complex, real world problems: Google's success is largely due to its PageRank algorithm, which determines importance"

1.03k views • 46 slides
Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for

Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for

Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for certain problems where finding the exact global optimum is required. Genetic Algorithms are non-deterministic. However, there are theories about

271 views • 5 slides
Genetic Algorithms Welcome to this introduction to Genetic Algorithms. The objective of this paper

Genetic Algorithms Welcome to this introduction to Genetic Algorithms. The objective of this paper

Jesse Anderson CSCI 446, Artificial Intelligence Michelle Van Dyne 11-16-2016 Genetic Algorithms Welcome to this introduction to Genetic Algorithms. The objective of this paper is to inform you, the reader, on Genetic Algorithms and give

564 views • 9 slides
Efficient Algorithms P and NP So far, we have developed algorithms for finding shortest

Efficient Algorithms P and NP So far, we have developed algorithms for finding shortest

Efficient Algorithms P and NP So far, we have developed algorithms for finding shortest paths in graphs, CISC5835, Algorithms for Big Data minimum spanning trees in graphs, CIS, Fordham Univ. matchings in bipartite graphs,

514 views • 8 slides
Algorithms in Nature Nature inspired algorithms http://www.cs.cmu.edu/~02317/ Ziv Bar-Joseph

Algorithms in Nature Nature inspired algorithms http://www.cs.cmu.edu/~02317/ Ziv Bar-Joseph

Algorithms in Nature Nature inspired algorithms http://www.cs.cmu.edu/~02317/ Ziv Bar-Joseph Matt Ruffalo zivbj@cs.cmu.edu mruffalo@andrew.cmu.edu GHC 7715 GHC 8006 Topics Introduction (1 Week) Classic algorithms (4 weeks)

1.68k views • 28 slides
Algorithms for Big Data CISC5835 Fordham Univ. Instructor: X. Zhang Lecture 1 Outline

Algorithms for Big Data CISC5835 Fordham Univ. Instructor: X. Zhang Lecture 1 Outline

Algorithms for Big Data CISC5835 Fordham Univ. Instructor: X. Zhang Lecture 1 Outline What is algorithm: word origin, first algorithms, algorithms of todays world Sequential algorithms, Parallel algorithms, approximation

332 views • 21 slides
Proving Confidentiality in a File System Using DiskSec (Poster #2) OSDI 18 Atalay Mert

Proving Confidentiality in a File System Using DiskSec (Poster #2) OSDI 18 Atalay Mert

Proving Confidentiality in a File System Using DiskSec (Poster #2) OSDI 18 Atalay Mert leri, Tej Chajed, Adam Chlipala, Frans Kaashoek, Nickolai Zeldovich MIT CSAIL Storage Systems Contain Confidential Data Users rely on the storage

796 views • 24 slides
Hierarchical Task Network (HTN) Planning Section 12.2 Sec. 12.2 p.1/23 Outline Primitive

Hierarchical Task Network (HTN) Planning Section 12.2 Sec. 12.2 p.1/23 Outline Primitive

Hierarchical Task Network (HTN) Planning Section 12.2 Sec. 12.2 p.1/23 Outline Primitive vs. non-primitive operators Example HTN planning algorithm Practical planners Additional references used for the slides: desJardins , M. (2001).

248 views • 23 slides
Off by Default! Hitesh Ballani, Yatin Chawathe, Sylvia Ratnasamy, Timothy Roscoe, Scott Shenker

Off by Default! Hitesh Ballani, Yatin Chawathe, Sylvia Ratnasamy, Timothy Roscoe, Scott Shenker

Off by Default! Hitesh Ballani, Yatin Chawathe, Sylvia Ratnasamy, Timothy Roscoe, Scott Shenker HotNets-IV, 2005 Internet, then and now Internet, circa 1975 Trust in the ends Universal reachability Routability implies reachability

767 views • 62 slides
The Enhanced Role of the U.S. Securities and Exchange Commission: An analysis of investigations

The Enhanced Role of the U.S. Securities and Exchange Commission: An analysis of investigations

Panel 2A The Enhanced Role of the U.S. Securities and Exchange Commission: An analysis of investigations in 2015, asset freezes, coordination with USCIS, notices to terminate Regional Centers, and other related issues John Tishler, Sheppard

412 views • 12 slides
Run-Time Composite Event Recognition Alexander Artikis, Marek Sergot and George Paliouras

Run-Time Composite Event Recognition Alexander Artikis, Marek Sergot and George Paliouras

Run-Time Composite Event Recognition Alexander Artikis, Marek Sergot and George Paliouras Institute of Informatics & Telecommunications, NCSR Demokritos, Greece Department of Computing, Imperial College London, UK

477 views • 25 slides
david.hoff@umb.edu 617-287-4308 Twitter: @davidhoff10 David Hoff Project Director Institute

david.hoff@umb.edu 617-287-4308 Twitter: @davidhoff10 David Hoff Project Director Institute

david.hoff@umb.edu 617-287-4308 Twitter: @davidhoff10 David Hoff Project Director Institute for Community Inclusion UMass Boston www.communityinclusion.org CMS WIOA Settings Rule Employment Integration and Inclusion DOJ Employment

187 views • 18 slides
Enhanced Performance Benchmarking and Supply Chain Carbon Accounting Environmental Performance

Enhanced Performance Benchmarking and Supply Chain Carbon Accounting Environmental Performance

Enhanced Performance Benchmarking and Supply Chain Carbon Accounting Environmental Performance Metrics Workshop Sponsored by AAPA and EDF Virginia Port Authority, Norfolk Virginia October 10, 2012 Todays Discussion Transportation and

460 views • 19 slides
Real-Time Rendering (Echtzeitgraphik) Michael Wimmer wimmer@cg.tuwien.ac.at Vortragender

Real-Time Rendering (Echtzeitgraphik) Michael Wimmer wimmer@cg.tuwien.ac.at Vortragender

Real-Time Rendering (Echtzeitgraphik) Michael Wimmer wimmer@cg.tuwien.ac.at Vortragender Michael Wimmer Associate Professor am Institut fr Computergraphik und Algorithmen (http://www.cg.tuwien.ac.at) Lehre: UE Einfhrung in die

598 views • 43 slides

More recommend