on a recursive decoding algorithm for lattices
play

On a recursive decoding algorithm for lattices Annika Meyer - PowerPoint PPT Presentation

Feb 05, 2023 •230 likes •856 views

On a recursive decoding algorithm for lattices Annika Meyer Workshop on lattices, codes and modular forms Aachen, 27.09.2011 Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for

  1. On a recursive decoding algorithm for lattices Annika Meyer Workshop on lattices, codes and modular forms Aachen, 27.09.2011 Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 1 / 14

  2. Overview Introduction 1 Iterative lattice decoding 2 Upper bounds on the number of lattice points in a small sphere 3 Examples 4 Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 2 / 14

  3. Introduction Lattice Decoding: The Closest Vector Problem (CVP) r Given a lattice L in R n and x ∈ R n , the CVP consists in finding ℓ ∈ L such that ℓ ′ ∈ L | x − ℓ ′ | , | x − ℓ | = min where | · | denotes the usual Euclidian length. Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 3 / 14

  4. Introduction Lattice Decoding: The Closest Vector Problem (CVP) r Given a lattice L in R n and x ∈ R n , the CVP consists in finding ℓ ∈ L such that ℓ ′ ∈ L | x − ℓ ′ | , | x − ℓ | = min where | · | denotes the usual Euclidian length. r The CVP is NP hard in its exact version. Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 3 / 14

  5. Introduction Lattice Decoding: The Closest Vector Problem (CVP) r Given a lattice L in R n and x ∈ R n , the CVP consists in finding ℓ ∈ L such that ℓ ′ ∈ L | x − ℓ ′ | , | x − ℓ | = min where | · | denotes the usual Euclidian length. r The CVP is NP hard in its exact version. r Solving the CVP with approximation factor δ ≥ 1 ∈ R means finding ℓ ∈ L such that, for all ℓ ′ ∈ L , | x − ℓ | ≤ δ · | x − ℓ ′ | . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 3 / 14

  6. Introduction Lattice Decoding: The Closest Vector Problem (CVP) r Given a lattice L in R n and x ∈ R n , the CVP consists in finding ℓ ∈ L such that ℓ ′ ∈ L | x − ℓ ′ | , | x − ℓ | = min where | · | denotes the usual Euclidian length. r The CVP is NP hard in its exact version. r Solving the CVP with approximation factor δ ≥ 1 ∈ R means finding ℓ ∈ L such that, for all ℓ ′ ∈ L , | x − ℓ | ≤ δ · | x − ℓ ′ | . r The best known approximation factor for a deterministic polynomial time algorithm to solve the CVP approximately is 2 n ( log log n ) 2 / 2 log n (Schnorr 1985). Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 3 / 14

  7. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  8. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  9. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. (1) Let L ′ = � b 1 , . . . , b n − 1 � Z , then L = ∪ z ∈ Z z · b 1 + L ′ . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  10. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. (1) Let L ′ = � b 1 , . . . , b n − 1 � Z , then L = ∪ z ∈ Z z · b 1 + L ′ . (2) Choose H = zb 2 + L ′ ⊗ R closest to x and h ∈ H closest to x . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  11. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. (1) Let L ′ = � b 1 , . . . , b n − 1 � Z , then L = ∪ z ∈ Z z · b 1 + L ′ . (2) Choose H = zb 2 + L ′ ⊗ R closest to x and h ∈ H closest to x . (3) Iteratively, find an approximation y ′ of h − zb 2 in L ′ . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  12. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. (1) Let L ′ = � b 1 , . . . , b n − 1 � Z , then L = ∪ z ∈ Z z · b 1 + L ′ . (2) Choose H = zb 2 + L ′ ⊗ R closest to x and h ∈ H closest to x . (3) Iteratively, find an approximation y ′ of h − zb 2 in L ′ . (4) Output the approximation y = y ′ + zb 2 . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  13. Iterative lattice decoding Babai’s Nearest Plane Procedure (BNPP) Given a basis B = ( b 1 , . . . , b n ) of L and x ∈ R n , BNPP approximates x in L . An approximation factor 2 n / 2 is achieved if B is LLL reduced. (1) Let L ′ = � b 1 , . . . , b n − 1 � Z , then L = ∪ z ∈ Z z · b 1 + L ′ . (2) Choose H = zb 2 + L ′ ⊗ R closest to x and h ∈ H closest to x . (3) Iteratively, find an approximation y ′ of h − zb 2 in L ′ . (4) Output the approximation y = y ′ + zb 2 . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 4 / 14

  14. Iterative lattice decoding BNPP as an iterative decoding algorithm Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

  15. Iterative lattice decoding BNPP as an iterative decoding algorithm Let B ′ = ( b ′ 1 , . . . , b ′ n ) be the Gram Schmidt orthonormalisation of B and define an isometry ϕ : b ′ i �→ e n − i + 1 , where ( e 1 , . . . , e n ) is the standard basis of R n . Write Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

  16. Iterative lattice decoding BNPP as an iterative decoding algorithm Let B ′ = ( b ′ 1 , . . . , b ′ n ) be the Gram Schmidt orthonormalisation of B and define an isometry ϕ : b ′ i �→ e n − i + 1 , where ( e 1 , . . . , e n ) is the standard basis of R n . Write  ϕ ( b n )    α 1 , 1 . . . α 1 , n . . ... . .  =  .     . .   ϕ ( b 1 ) 0 α n , n Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

  17. Iterative lattice decoding BNPP as an iterative decoding algorithm Let B ′ = ( b ′ 1 , . . . , b ′ n ) be the Gram Schmidt orthonormalisation of B and define an isometry ϕ : b ′ i �→ e n − i + 1 , where ( e 1 , . . . , e n ) is the standard basis of R n . Write  ϕ ( b n )    α 1 , 1 . . . α 1 , n . . ... . .  =  .     . .   ϕ ( b 1 ) 0 α n , n With ϕ ( x ) = ( u 1 , . . . , u n ) , BNPP is the following: Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

  18. Iterative lattice decoding BNPP as an iterative decoding algorithm Let B ′ = ( b ′ 1 , . . . , b ′ n ) be the Gram Schmidt orthonormalisation of B and define an isometry ϕ : b ′ i �→ e n − i + 1 , where ( e 1 , . . . , e n ) is the standard basis of R n . Write  ϕ ( b n )    α 1 , 1 . . . α 1 , n . . ... . .  =  .     . .   ϕ ( b 1 ) 0 α n , n With ϕ ( x ) = ( u 1 , . . . , u n ) , BNPP is the following: (1) Find the optimal approximation ℓ 1 = z α 1 , 1 of u 1 in Z α 1 , 1 . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

  19. Iterative lattice decoding BNPP as an iterative decoding algorithm Let B ′ = ( b ′ 1 , . . . , b ′ n ) be the Gram Schmidt orthonormalisation of B and define an isometry ϕ : b ′ i �→ e n − i + 1 , where ( e 1 , . . . , e n ) is the standard basis of R n . Write  ϕ ( b n )    α 1 , 1 . . . α 1 , n . . ... . .  =  .     . .   ϕ ( b 1 ) 0 α n , n With ϕ ( x ) = ( u 1 , . . . , u n ) , BNPP is the following: (1) Find the optimal approximation ℓ 1 = z α 1 , 1 of u 1 in Z α 1 , 1 . (2) Iteratively, approximate ( u 2 − z α 1 , 2 , . . . , u n − z α 1 , n ) ∈ R n − 1 in L ′ = � ϕ ( b 2 ) , . . . , ϕ ( b n ) � Z with ℓ ′ . Annika Meyer ( Workshop on lattices, codes and modular forms Aachen, 27.09.2011) On a recursive decoding algorithm for lattices 5 / 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Non-Recursive In-Place FFT Algorithm Idea: "Unwind the in-place recursive algorithm and work

Non-Recursive In-Place FFT Algorithm Idea: "Unwind the in-place recursive algorithm and work

Non-Recursive In-Place FFT Algorithm Idea: "Unwind the in-place recursive algorithm and work bottom up from a bit-reversed input array in a "butterfly" pattern: - 1 - (non-recursive in-place FFT algorithm continued) Non-recursive

436 views • 5 slides
Multilevel LDPC Lattices with Efficient Encoding and Decoding and a Generalization of Construction

Multilevel LDPC Lattices with Efficient Encoding and Decoding and a Generalization of Construction

Multilevel LDPC Lattices with Efficient Encoding and Decoding and a Generalization of Construction D Danilo Silva Paulo R. B. da Silva Department of Electrical and Electronic Engineering Federal University of Santa Catarina (UFSC), Brazil

755 views • 63 slides
Python: Recursive Functions Recursive Functions Recall factorial function: Iterative Algorithm

Python: Recursive Functions Recursive Functions Recall factorial function: Iterative Algorithm

Python: Recursive Functions Recursive Functions Recall factorial function: Iterative Algorithm Loop construct (while) can capture computation in a set of state variables that update on each iteration through loop Recursive Functions

376 views • 22 slides
On Bounded Distance Decoding, Unique Shortest Vectors, and the Minimum Distance Problem Vadim

On Bounded Distance Decoding, Unique Shortest Vectors, and the Minimum Distance Problem Vadim

On Bounded Distance Decoding, Unique Shortest Vectors, and the Minimum Distance Problem Vadim Lyubashevsky Daniele Micciancio Lattices Lattice: A discrete additive subgroup of R n Lattices Basis: A set of linearly independent

1.33k views • 36 slides
CS 171: Introduction to Computer Science II Quicksort Outline MergeSort Recursive

CS 171: Introduction to Computer Science II Quicksort Outline MergeSort Recursive

CS 171: Introduction to Computer Science II Quicksort Outline MergeSort Recursive Algorithm (top-down) Analysis Improvements Non-recursive algorithm (bottom-up) Non-recursive algorithm (bottom-up) QuickSort

990 views • 43 slides
Compilers Recursive Descent Algorithm Alex Aiken RD Algorithm Let TOKEN be the type of

Compilers Recursive Descent Algorithm Alex Aiken RD Algorithm Let TOKEN be the type of

Compilers Recursive Descent Algorithm Alex Aiken RD Algorithm Let TOKEN be the type of tokens Special tokens INT, OPEN, CLOSE, PLUS, TIMES Let the global next point to the next input token Alex Aiken RD Algorithm Define boolean

87 views • 8 slides
A PROPORTIONATE AFFINE PROJECTION ALGORITHM USING FAST RECURSIVE FILTERING AND DICHOTOMOUS

A PROPORTIONATE AFFINE PROJECTION ALGORITHM USING FAST RECURSIVE FILTERING AND DICHOTOMOUS

A PROPORTIONATE AFFINE PROJECTION ALGORITHM USING FAST RECURSIVE FILTERING AND DICHOTOMOUS COORDINATE DESCENT ITERATIONS Felix Albu Valahia University of Targoviste Outline Motivation and objectives Development of the algorithm Simulation

668 views • 19 slides
Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M.

Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M.

Convolutional encoding Finite State Machine Channel models The Viterbi algorithm Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M. Brossier Coding and decoding with convolutional codes. The

1.37k views • 135 slides
Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M.

Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M.

Convolutional encoding Finite State Machine Channel models The Viterbi algorithm Coding and decoding with convolutional codes. The Viterbi Algorithm. J.-M. Brossier 2008 J.-M. Brossier Coding and decoding with convolutional codes. The

788 views • 61 slides
Powering a number (a bit easier than the recursive mystery question on the homework) Problem:

Powering a number (a bit easier than the recursive mystery question on the homework) Problem:

CS 3343 -- Spring 2006 Powering a number (a bit easier than the recursive mystery question on the homework) Problem: Compute a n , where n N . Naive algorithm: ( n ). Divide-and-conquer algorithm: (recursive squaring) a n/ 2 a n/ 2 if n

450 views • 3 slides
The LLL Algorithm for Lattices G. Eric Moorhouse, UW Math References Henri Cohen, A Course in

The LLL Algorithm for Lattices G. Eric Moorhouse, UW Math References Henri Cohen, A Course in

The LLL Algorithm for Lattices G. Eric Moorhouse, UW Math References Henri Cohen, A Course in Computational Al- gebraic Number Theory, Springer, 1993. A.J. Menezes et al., Handbook of Applied Cryp- tography, CRC Press, 1997. A.K. Lenstra, H.W.

199 views • 15 slides
Recursion n A problem solving technique where an algorithm is defined in terms of itself n A

Recursion n A problem solving technique where an algorithm is defined in terms of itself n A

1 Recursion n A problem solving technique where an algorithm is defined in terms of itself n A recursive method is a method that calls itself n A recursive algorithm breaks down the input or the search space and applies the same logic to a

649 views • 15 slides
MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05

MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05

MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05 Student Questions One more proof by strong induction List of review topics I dont plan to cover in class Continue Arithmetic Algorithms

286 views • 12 slides
MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05 HW 2

MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05 HW 2

MA/CSSE 473 Day 05 Factors and Primes Recursive division algorithm MA/CSSE 473 Day 05 HW 2 due tonight, 3 is due Monday Student Questions Asymptotic Analysis example: summation Review topics I dont plan to cover in class

520 views • 22 slides
Announcements PA1 available, due 01/28, 11:59p. Todays Plan Another sorting algorithm

Announcements PA1 available, due 01/28, 11:59p. Todays Plan Another sorting algorithm

Announcements PA1 available, due 01/28, 11:59p. Todays Plan Another sorting algorithm Runtime of recursive algorithms Correctness of recursive algorithms Warm-up Task: Given an array where 1 st and 2 nd halves are sorted, return

360 views • 8 slides
4 Recurrences As noted in Section 2.3.2, when an algorithm contains a recursive call to itself,

4 Recurrences As noted in Section 2.3.2, when an algorithm contains a recursive call to itself,

4 Recurrences As noted in Section 2.3.2, when an algorithm contains a recursive call to itself, its running time can often be described by a recurrence. A recurrence is an equation or inequality that describes a function in terms of its value on

330 views • 11 slides
CzeSL an error tagged corpus of Czech as a second language Barbora tindlov 1 Svatava

CzeSL an error tagged corpus of Czech as a second language Barbora tindlov 1 Svatava

CzeSL an error tagged corpus of Czech as a second language Barbora tindlov 1 Svatava kodov 1 Jirka Hana 2 Alexandr Rosen 2 1 Technical University, Liberec, Czech Republic 2 Charles University, Prague, Czech Republic PALC 2011

592 views • 37 slides
Effects of phonological contrast on phonetic variation in Hindi and English stops Ivy Hauser

Effects of phonological contrast on phonetic variation in Hindi and English stops Ivy Hauser

Effects of phonological contrast on phonetic variation in Hindi and English stops Ivy Hauser University of Massachusetts Amherst blogs.umass.edu/ihauser Workshop on Phonological Variation and its Interfaces November 22, 2018 0 Introduction

859 views • 71 slides
Colossians Series Lesson #80 November 18, 2012 Dean Bible Ministries www.deanbible.org Dr.

Colossians Series Lesson #80 November 18, 2012 Dean Bible Ministries www.deanbible.org Dr.

Colossians Series Lesson #80 November 18, 2012 Dean Bible Ministries www.deanbible.org Dr. Robert L. Dean, Jr. C OLOSSIANS : Jesus Christ is All-Sufficient The Family: Gods Training Team Colossians 3:2021; Ephesians 6: 1 4 Col.

230 views • 12 slides
On Lattices for Cryptography Jheyne N. Ortiz 1 Robson R. Araujo 2 Sueli I.R. Costa 2 Ricardo Dahab

On Lattices for Cryptography Jheyne N. Ortiz 1 Robson R. Araujo 2 Sueli I.R. Costa 2 Ricardo Dahab

On Lattices for Cryptography Jheyne N. Ortiz 1 Robson R. Araujo 2 Sueli I.R. Costa 2 Ricardo Dahab 1 Diego F. Aranha 1 1 - IC/Unicamp 2 - Imecc/Unicamp July 25, 2018 LAWCI - Latin American Week on Coding and Information Unicamp, Campinas - SP

876 views • 21 slides
BSA 2017 Convention Temp Photo Placeholder Chris Coughl Ch ris Coughlin in Please place your

BSA 2017 Convention Temp Photo Placeholder Chris Coughl Ch ris Coughlin in Please place your

BSA 2017 Convention Temp Photo Placeholder Chris Coughl Ch ris Coughlin in Please place your photo on top of the placeholder and email us a high resolution version of your EVP and Group President, photo so we can The Timken Company

411 views • 25 slides
1 Introduction Noise is a central problem facing a language learner. Any theory of language

1 Introduction Noise is a central problem facing a language learner. Any theory of language

Robust Lexical Acquisition Despite Extremely Noisy Input Jeffrey Mark Siskind, University of Toronto 1 Introduction Noise is a central problem facing a language learner. Any theory of language acquisition must explain how children robustly make

391 views • 12 slides
Markers of Academic Style: An Extended List E. Smirnova, E. Kostareva, References Biber, D.,

Markers of Academic Style: An Extended List E. Smirnova, E. Kostareva, References Biber, D.,

Markers of Academic Style: An Extended List E. Smirnova, E. Kostareva, References Biber, D., & Gray, B. (2016). Grammatical complexity in academic English: Linguistic change in writing . Cambridge University Press. Biber, D., Johansson,

426 views • 6 slides
Suggestions in British and American English: A corpus-linguistic study Ilka Flck

Suggestions in British and American English: A corpus-linguistic study Ilka Flck

Suggestions in British and American English: A corpus-linguistic study Ilka Flck University of Oldenburg 33 rd DGfS Annual Meeting (Workshop 1 Beyond Semantics) February 23-25, Gttingen Structure of the talk Corpora in

351 views • 14 slides

More recommend